A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of Next.js...
Vous n'êtes pas connecté
- English
- Français
- عربي
- Español
- Deutsch
- Português
- русский язык
- Català
- Italiano
- Nederlands, Vlaams
- Norsk
- فارسی
- বাংলা
- اردو
- Azərbaycan dili
- Bahasa Indonesia
- Հայերեն
- Ελληνικά
- Bosanski jezik
- українська мова
- Íslenska
- Türkmen, Түркмен
- Türkçe
- Shqip
- Eesti keel
- magyar
- Қазақ тілі
- Kalaallisut ; kalaallit oqaasii
- Lietuvių kalba
- Latviešu valoda
- македонски јазик
- Монгол
- Bahasa Melayu ; بهاس ملايو
- ဗမာစာ
- Slovenščina
- тоҷикӣ ; toğikī ; تاجیکی
- ไทย
- O'zbek ; Ўзбек ; أۇزبېك
- Tiếng Việt
- ភាសាខ្មែរ
- རྫོང་ཁ
- Soomaaliga ; af Soomaali
Maroc - THECYBERTHRONE.IN - A La Une - 08/12/2024 11:01
Django was affected by CVE-2024-53907 and CVE-2024-53908
The Django team has released Django 5.1.4, Django 5.0.10, and Django 4.2.17 versions to address two security vulnerabilities. The first vulnerability tracked as CVE-2024-53907 with a CVSS score of 7.5 is a DoS vulnerability in the django.utils.html.strip_tags() method and striptags template filter. According to the advisory, “certain inputs containing large sequences of nested incomplete […]
Articles similaires
Authentication bypass CVE-2025-22230 impacts VMware Windows Tools
securityaffairs.co - 26/Mar 07:07
Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released...
Apache VCL was affected by Twin vulnerabilities
thecyberthrone.in - 28/Mar 01:31
Apache VCL (Virtual Computing Lab) is a widely-used, open-source platform that provides cloud-based access to virtual computing environments....
U.S. CISA adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog
securityaffairs.co - 27/Mar 23:02
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog. The U.S....
U.S. CISA adds Sitecore CMS and XP, and GitHub Action flaws to its Known Exploited Vulnerabilities catalog
securityaffairs.co - 27/Mar 12:30
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Sitecore CMS and XP, and GitHub Action flaws to its Known Exploited Vulnerabilities...
Mozilla fixed critical Firefox vulnerability CVE-2025-2857
securityaffairs.co - 28/Mar 09:51
Mozilla addressed a critical vulnerability, tracked as CVE-2025-2857, impacting its Firefox browser for Windows. Mozilla has released security updates...
CVE-2025-20229 and CVE-2025-20231 impacts Splunk
thecyberthrone.in - 27/Mar 13:26
As the digital landscape continues to evolve, vulnerabilities in widely-used software systems remain a critical threat. Two such vulnerabilities,...
Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload
itsecuritynews.info - 27/Mar 04:15
Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...
Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload
itsecuritynews.info - 27/Mar 04:15
Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...
Google fixed the first actively exploited Chrome zero-day since the start of the year
securityaffairs.co - 26/Mar 07:46
Google fixed a flaw in the Chrome browser for Windows that was actively exploited in attacks targeting organizations in Russia. Google has released...
Les derniers communiqués
-
Aucun élément