Security
Headlines
HeadlinesLatestCVEs

Tag

#git

CVE-2023-43891: CVE/netis_N3/command injection in changing password feature.md at main · adhikara13/CVE

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability in the Changing Username and Password function. This vulnerability is exploited via a crafted payload.

CVE
Open in Source
#vulnerability#git
CVE-2023-44011: Vulnerability-Disclosures/2023/CVE-2023-44011 at main · Vietsunshine-Electronic-Solution-JSC/Vulnerability-Disclosures

An issue in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the layout.master skin file at the Skin management component.

CVE-2023-44012: Vulnerability-Disclosures/2023/CVE-2023-44012 at main · Vietsunshine-Electronic-Solution-JSC/Vulnerability-Disclosures

Cross Site Scripting vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the helpkey parameter in the Help.aspx component.

GHSA-56fm-hfp3-x3w3: Wallabag user can disable 2FA unintentionally

## Impact wallabag was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily disable 2FA through `/config/otp/app/disable` and `/config/otp/email/disable`. This vulnerability has a CVSSv3.1 score of 4.3. **You should upgrade your instance to version 2.6.7 or higher.** ## Resolution These endpoints now require POST method. ## Credits We would like to thank @dhina016 for reporting this issue through huntr.dev. Reference: https://huntr.dev/bounties/4c446fe7-2a44-4907-b0cf-4ab77d75c487/

GHSA-j9gq-w73w-9h6c: pretix potential IP address spoofing vulnerability

An issue was discovered in pretix before 2023.7.1. Incorrect parsing of configuration files causes the application to trust unchecked X-Forwarded-For headers even though it has not been configured to do so. This can lead to IP address spoofing by users of the application.

CVE-2023-43361: GitHub - xiph/vorbis-tools: Command-line tools for creating and playing Ogg Vorbis files.

Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary code and cause a denial of service during the conversion of wav files to ogg files.

CVE-2023-43268: GitHub - Fliggyaaa/DeYue-remote-vehicle-management-system

Deyue Remote Vehicle Management System v1.1 was discovered to contain a deserialization vulnerability.

CVE-2023-44008: Vulnerability-Disclosures/2023/CVE-2023-44008 at main · Vietsunshine-Electronic-Solution-JSC/Vulnerability-Disclosures

File Upload vulnerability in mojoPortal v.2.7.0.0 allows a remote attacker to execute arbitrary code via the File Manager function.

CVE-2023-43297: CVE-reports/CVE-2023-43297.md at main · syz913/CVE-reports

An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.

GHSA-8fxr-qfr9-p34w: TorchServe Server-Side Request Forgery vulnerability

## Impact **Remote Server-Side Request Forgery (SSRF)** **Issue**: TorchServe default configuration lacks proper input validation, enabling third parties to invoke remote HTTP download requests and write files to the disk. This issue could be taken advantage of to compromise the integrity of the system and sensitive data. This issue is present in versions `0.1.0` to `0.8.1`. **Mitigation**: The user is able to load the model of their choice from any URL that they would like to use. The user of TorchServe is responsible for configuring both the [allowed_urls](https://github.com/pytorch/serve/blob/b3eced56b4d9d5d3b8597aa506a0bcf954d291bc/docs/configuration.md?plain=1#L296) and specifying the model URL to be used. A pull request to warn the user when the default value for `allowed_urls` is used has been merged - https://github.com/pytorch/serve/pull/2534. TorchServe release `0.8.2` includes this change. ## Patches ## TorchServe release 0.8.2 includes fixes to address the previou...