Tagged: Cybersecurity Alert

Synel Terminals – CWE-494: Download of Code Without Integrity Check Date published : 2023-09-03 https://www.gov.il/en/Departments/faq/cve_advisories

7Twenty BOT – CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’). Date published : 2023-09-03 https://www.gov.il/en/Departments/faq/cve_advisories

Farsight Tech Nordic AB ProVide version 14.5 – Multiple XSS vulnerabilities (CWE-79) can be exploited by a user with administrator privilege. Date published : 2023-09-03 https://www.gov.il/en/Departments/faq/cve_advisories

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Elastic Email Sender plugin

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in SuiteDash :: ONE Dashboard® Client Portal : SuiteDash Direct Login plugin

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in QualityUnit Post Affiliate Pro plugin

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WP OnlineSupport, Essential Plugin Audio Player with Playlist Ultimate plugin

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Realwebcare WRC Pricing Tables plugin

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Visualmodo Borderless plugin

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Exifography plugin

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.1846. Date published : 2023-09-02 https://github.com/vim/vim/commit/4c6fe2e2ea62469642ed1d80b16d39e616b25cf5 https://huntr.dev/bounties/688e4382-d2b6-439a-a54e-484780f82217

Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1847. Date published : 2023-09-02 https://github.com/vim/vim/commit/889f6af37164775192e33b233a90e86fd3df0f57 https://huntr.dev/bounties/fc83bde3-f621-42bd-aecb-8c1ae44cba51

Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833. Date published : 2023-09-02 https://github.com/vim/vim/commit/816fbcc262687b81fc46f82f7bbeb1453addfe0c https://huntr.dev/bounties/e1ce0995-4df4-4dec-9cd7-3136ac3e8e71

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848. Date published : 2023-09-02 https://github.com/vim/vim/commit/ced2c7394aafdc90fb7845e09b3a3fee23d48cb1 https://huntr.dev/bounties/9fc7dced-a7bb-4479-9718-f956df20f612