Tagged: Cybersecurity Alert

Sparx Pro Cloud Server is vulnerable to Broken Access Control within communication with the database. Due to lack of permission checks, any low privileged user can run arbitrary SQL queries within database user context....

Sparx Pro Cloud Server requires authentication based on requested URL. An attacker can omit the “model” query parameter and send the model name only in the binary blob in POST request allowing SQL query execution without authentication....

Sparx Enterprise Architect software has a security feature that limits user’s actions to those specified in the role. An authenticated attacker can modify the Enterprise Architect client behavior (e.g. using a debugger) and log...

Sparx Pro Cloud Server is vulnerable to a Race Condition in the /data_api/dl_internal_artifact.php endpoint. The application downloads the properties of the object pointed by guid parameter and saves loaded content in current location (__DIR__) under the...

Any guest can cause xenstored to crash by issuing a XS_RESET_WATCHES command within a transaction due to an assert() triggering. In case xenstored was built with NDEBUG #defined nothing bad will happen, as assert()...

The adjustments made for XSA-379 as well as those subsequently becoming XSA-387 still left a race window, when a HVM or PVH guest does a grant table version change from v2 to v1 in...

The Contest Gallery plugin for WordPress is vulnerable to SQL Injection via the ‘form_input’ parameter in versions up to, and including, 28.1.6. This is due to insufficient escaping on the user supplied parameter and...

The Piotnet Forms plugin for WordPress is vulnerable to arbitrary file upload due to missing file type validation in the ‘piotnetforms_ajax_form_builder’ function in all versions up to, and including, 2.1.40. The plugin uses an...

In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt – Fix handling of MAY_BACKLOG requests MAY_BACKLOG requests can return EBUSY. Handle them by checking for that value and filtering out EINPROGRESS...

Missing Authorization vulnerability in Brainstorm Force Presto Player allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Presto Player: from n/a through 4.1.3. More information : https://patchstack.com/database/wordpress/plugin/presto-player/vulnerability/wordpress-presto-player-plugin-4-1-3-broken-access-control-vulnerability?_s_id=cve

A flaw was found in Keycloak. An authenticated client could exploit an Insecure Direct Object Reference (IDOR) vulnerability in the Authorization Services Protection API endpoint. By knowing or obtaining a resource’s unique identifier (UUID)...

A flaw was found in Keycloak. A remote, unauthenticated attacker can send a specially crafted XML input to the Security Assertion Markup Language (SAML) endpoint. This malicious input can cause high CPU usage and...

A flaw was found in Keycloak’s URL validation logic during redirect operations. By crafting a malicious request, an attacker could bypass validation to redirect users to unauthorized URLs, potentially leading to the exposure of...

A session fixation vulnerability was found in Keycloak’s login-actions endpoints. An unauthenticated attacker could exploit this flaw by pre-creating an authentication session and tricking a victim into visiting a maliciously crafted link. By leveraging...