Posts about Vulnerability
- SQL injection in YABOOK port administration allows authentication bypass
- Remote code execution and elevation of local privileges in Mitel Unify OpenStage and OpenScape VoIP phones
- Nothing new, still broken, insecure by default since then: Python's e-mail libraries and certificate verification
- Wind River VxWorks tarExtract directory traversal vulnerability (CVE-2023-38346)
- IT-Sicherheit beim elektronischen Gesundheitsdossier im Fürstentum Liechtenstein
- Busybox cpio directory traversal vulnerability (CVE-2023-39810)
- Credit card statement disclosure vulnerability in Viseca's eXpense portal