An authentication bypass security issue exists within FactoryTalk Historian Site Edition. By continually sending requests to the login endpoint, an attacker may obtain a valid authentication token.
A security issue exists within 1769 CompactLogix controllers due to the missing validation of sequence numbers and source IP addresses in the CIP protocol. This allows attacker to abuse the exposed Connection ID’s visible on the web interface to perform denial-of-service attacks, resulting in a mino...
Dell Peripheral Manager, versions prior to 1.7.3, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious dll., leading to arbitrary code execution.
Astro: XSS via Unescaped Attribute Names in Spread Props
Astro: Host header SSRF in prerendered error page fetch
@astrojs/netlify broadens Astro image.remotePatterns in Netlify Image CDN config
Natural Language Toolkit (NLTK): URL-Encoded Path Traversal in nltk.data.load() Allows Arbitrary Local File Read
hono: Body Limit Middleware can be bypassed on AWS Lambda by understating `Content-Length`
hono: Lambda@Edge adapter keeps only the last value of a repeated request header, dropping the rest
hono: CORS Middleware reflects any Origin with credentials when `origin` defaults to the wildcard
hono: Path traversal in `serve-static` on Windows via encoded backslash (`%5C`)
hono: AWS Lambda adapter merges multiple `Set-Cookie` headers into one value, dropping cookies on ALB single-header and Lattice
pypdf: Possible infinite loop when processing outlines/bookmarks in writer
pypdf: Possible infinite loop when retrieving fonts for layout-mode text extraction
Astro: Reflected XSS via unescaped slot name
pypdf: Possible large memory usage for form XObjects during text extraction
pypdf: Inefficient decoding of FlateDecode PNG predictor streams
A session fixation vulnerability has been identified in osTicket v1.18.2. This security flaw allows an attacker to hijack a victim’s account by keeping the initial session identifier (OSTSESSID) active after a successful login. The issue lies in the fact that the application does not invalidate t...
Firefox for iOS preserved cookies set on the initial PDF request across cross-origin HTTP redirects in TemporaryDocument, allowing a malicious site to inject arbitrary cookies into requests to an unrelated target domain. This vulnerability was fixed in Firefox for iOS 152.0.
Firefox for iOS used partial domain matching when attaching cookies to PDF requests, allowing a malicious site on a suffix domain to receive cookies belonging to the target site. This vulnerability was fixed in Firefox for iOS 152.0.