X

Vous n'êtes pas connecté

Maroc Maroc - THECYBERTHRONE.IN - A La Une - 08/12/2024 11:01

Django was affected by CVE-2024-53907 and CVE-2024-53908

  The Django team has released Django 5.1.4, Django 5.0.10, and Django 4.2.17 versions to address two security vulnerabilities. The first vulnerability tracked as CVE-2024-53907 with a CVSS score of 7.5 is a DoS vulnerability in the django.utils.html.strip_tags() method and striptags template filter. According to the advisory, “certain inputs containing large sequences of nested incomplete […]

Articles similaires

Sorry! Image not available at this time

Attackers can bypass middleware auth checks by exploiting critical Next.js flaw

securityaffairs.co - 24/Mar 11:22

A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of Next.js...

Sorry! Image not available at this time

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

securityaffairs.co - 26/Mar 07:07

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released...

Sorry! Image not available at this time

Apache VCL was affected by Twin vulnerabilities

thecyberthrone.in - 28/Mar 01:31

Apache VCL (Virtual Computing Lab) is a widely-used, open-source platform that provides cloud-based access to virtual computing environments....

Sorry! Image not available at this time

U.S. CISA adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 27/Mar 23:02

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog. The U.S....

Sorry! Image not available at this time

U.S. CISA adds Sitecore CMS and XP, and GitHub Action flaws to its Known Exploited Vulnerabilities catalog

securityaffairs.co - 27/Mar 12:30

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Sitecore CMS and XP, and GitHub Action flaws to its Known Exploited Vulnerabilities...

Sorry! Image not available at this time

Mozilla fixed critical Firefox vulnerability CVE-2025-2857

securityaffairs.co - 28/Mar 09:51

Mozilla addressed a critical vulnerability, tracked as CVE-2025-2857, impacting its Firefox browser for Windows. Mozilla has released security updates...

Sorry! Image not available at this time

CVE-2025-20229 and CVE-2025-20231 impacts Splunk

thecyberthrone.in - 27/Mar 13:26

As the digital landscape continues to evolve, vulnerabilities in widely-used software systems remain a critical threat. Two such vulnerabilities,...

Sorry! Image not available at this time

Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload

itsecuritynews.info - 27/Mar 04:15

Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...

Sorry! Image not available at this time

Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload

itsecuritynews.info - 27/Mar 04:15

Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...

Sorry! Image not available at this time

Google fixed the first actively exploited Chrome zero-day since the start of the year

securityaffairs.co - 26/Mar 07:46

Google fixed a flaw in the Chrome browser for Windows that was actively exploited in attacks targeting organizations in Russia. Google has released...

Les derniers communiqués

  • Aucun élément