In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.
Published at: August 10, 2020 at 10:15AM
View on website
Etiqueta: government
New vulnerability on the NVD: CVE-2020-13295
For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.
Published at: August 10, 2020 at 10:15AM
View on website
New vulnerability on the NVD: CVE-2020-12777
A function in Combodo iTop contains a vulnerability of Broken Access Control, which allows unauthorized attacker to inject command and disclose system information.
Published at: August 09, 2020 at 11:15PM
View on website
New vulnerability on the NVD: CVE-2020-12778
Combodo iTop does not validate inputted parameters, attackers can inject malicious commands and launch XSS attack.
Published at: August 09, 2020 at 11:15PM
View on website
New vulnerability on the NVD: CVE-2020-12779
Combodo iTop contains a stored Cross-site Scripting vulnerability, which can be attacked by uploading file with malicious script.
Published at: August 09, 2020 at 11:15PM
View on website
Educ Arte Económico 