An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_common in libfreerdp/crypto/crypto.c.
Published at: May 22, 2020 at 02:15PM
View on website
Etiqueta: government
New vulnerability on the NVD: CVE-2020-13412 (controller)
An issue was discovered in Aviatrix Controller before 5.4.1204. An API call on the web interface lacked a session token check to control access, leading to CSRF.
Published at: May 22, 2020 at 05:15PM
View on website
New vulnerability on the NVD: CVE-2018-21234
Jodd before 5.0.4 performs Deserialization of Untrusted JSON Data when setClassMetadataName is set.
Published at: May 21, 2020 at 07:15PM
View on website
New vulnerability on the NVD: CVE-2019-20803
Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcategory id parameter, which is mishandled for g_preview_theme.
Published at: May 21, 2020 at 06:15PM
View on website
New vulnerability on the NVD: CVE-2019-20804
Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/themes URI, leading to compromise of the admin account.
Published at: May 21, 2020 at 06:15PM
View on website
Educ Arte Económico 