integratus systems

Exchange Platform Services
 
  • Join Now-Sign Up
  • Log In
Forgot Password integratus systems

Reset Password

IS Security Alerts Advisories

  • CVE-2023-44270
    An issue was discovered in PostCSS before 8.4.31. It affects linters using PostCSS to parse external Cascading Style Sheets (CSS). There may be r discrepancies, as demonstrated by @font-face{ font:(r/*);} ... read more
  • 91.07407
    Modified (30)Adware/Agent!AndroidAdware/AndrMonitor!AndroidAdware/Androlua!AndroidAdware/Autoins!AndroidAdware/Fyben!AndroidAdware/Hiddad!AndroidAdware/Jailbreak_AGen!OSXAdware/Kuguo!AndroidAdware/MobiDash!AndroidAdware/Mobtool!AndroidAdware/SMSFlooder_Agent!AndroidAdware/SMSreg!AndroidAdware/ScamApp!AndroidAdware/SpyLoan!AndroidAdware/XoloSale!AndroidAndroid/Agent.BAT!tr.spyAndroid/Agent.BIR!trAndroid/Agent.CGS!tr.spyAndroid/Agent.CNA!tr.spyAndroid/Agent.HQS!trAndroid/Agent.IDL!trAndroid/Agent.LFH!trAndroid/Agent.LGG!trAndroid/Banker.BZN!tr.spyAndroid/Facestealer.EU!tr.spyAndroid/PossibleThreatAndroid/SpyMax.AB!tr.spyRiskware/Application!AndroidRiskware/Spamtool!AndroidiOS/Jailbreak.Z!tr ... read more
  • 91.07413
    Modified (16)Adware/Fyben!AndroidAdware/PhoneLeash!AndroidAdware/SMSreg!AndroidAdware/SpyLoan!AndroidAdware/Umpay!AndroidAndroid/Agent.AOY!tr.dldrAndroid/Agent.CWE!tr.spyAndroid/Agent.FAG!trAndroid/Agent.KJL!trAndroid/Agent.VZ!tr.dldrAndroid/Banker.BOF!tr.spyAndroid/Banker.BYN!tr.spyAndroid/Banker.BZU!tr.spyAndroid/Shedun.L!trAndroid/SmsSpy.WQ!tr.spyRiskware/Application!Android ... read more
  • 91.07414
    Modified (16)Adware/AdPush!AndroidAdware/AdsWo!AndroidAdware/Fyben!AndroidAdware/Galleye!AndroidAdware/Hawks!AndroidAdware/Hiddad!AndroidAdware/MobiDash!AndroidAdware/ScamApp!AndroidAdware/SpyLoan!AndroidAndroid/Agent.BIR!trAndroid/Agent.FAG!trAndroid/Agent.LFH!trAndroid/Agent.LGG!trAndroid/Banker.BYN!tr.spyAndroid/Banker.CAA!tr.spyAndroid/Hiddad.BAX!tr ... read more
  • 91.07412
    Modified (22)Adware/AdPush!AndroidAdware/Agent!AndroidAdware/AndrMonitor!AndroidAdware/Autoins!AndroidAdware/Domob!AndroidAdware/Fyben!AndroidAdware/HyPay!AndroidAdware/Inmobi!AndroidAdware/Kuguo!AndroidAdware/RecmAds!AndroidAdware/SMSreg!AndroidAdware/Secapk!AndroidAdware/SpyLoan!AndroidAdware/TiFamily!AndroidAndroid/Agent.CEM!tr.spyAndroid/Agent.CGS!tr.spyAndroid/Agent.CUI!tr.spyAndroid/Agent.CVI!tr.spyAndroid/Agent.DQA!trAndroid/Banker.BYN!tr.spyAndroid/PossibleThreatRiskware/Application!Android ... read more
  • 91.07411
    Modified (13)Adware/Agent!AndroidAdware/Fyben!AndroidAdware/Hiddad!AndroidAdware/Kuguo!AndroidAdware/SMSreg!AndroidAdware/Secapk!AndroidAdware/SpyLoan!AndroidAndroid/Agent.CGS!tr.spyAndroid/Agent.CWJ!tr.spyAndroid/Agent.LOT!trAndroid/Coe.I!tr.spyAndroid/Obfus.TT!trRiskware/Application!Android ... read more
  • 91.07410
    Newly Added (1)Android/Agent.LUQ!trModified (17)Adware/Agent!AndroidAdware/Hiddad!AndroidAdware/SpyLoan!AndroidAndroid/Agent.CWE!tr.spyAndroid/Agent.ERM!trAndroid/Agent.ESI!trAndroid/Agent.LFH!trAndroid/Agent.LGG!trAndroid/Agent.LUM!trAndroid/Banker.BRP!tr.spyAndroid/Cerberus.BL!tr.spyAndroid/Clicker.PD!trAndroid/FakeWallet.AH!trAndroid/PossibleThreatAndroid/SmsSpy.WQ!tr.spyAndroid/SpyMax.BE!tr.spyRiskware/Application!Android ... read more
  • CVE-2023-43655
    Composer is a dependency manager for PHP. Users publishing a composer.phar to a public web-accessible server where the composer.phar can be executed as a php file may be subject to ... read more
  • CVE-2023-5285
    A vulnerability classified as critical was found in Tongda OA 2017. Affected by this vulnerability is an unknown functionality of the file general/hr/recruit/recruitment/delete.php. The manipulation of the argument RECRUITMENT_ID leads ... read more
  • CVE-2023-5287
    ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file ... read more
  • CVE-2023-5293
    A vulnerability, which was classified as critical, was found in ECshop 4.1.5. Affected is an unknown function of the file /admin/leancloud.php. The manipulation of the argument id leads to sql ... read more
  • CVE-2022-35908
    Cambium Enterprise Wi-Fi System Software before 6.4.2 does not sanitize the ping host argument in device-agent. ... read more
  • CVE-2023-5283
    A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as critical. This issue affects some unknown processing of the file teacher_signup.php. The manipulation of the ... read more
  • CVE-2023-5284
    A vulnerability classified as critical has been found in SourceCodester Engineers Online Portal 1.0. Affected is an unknown function of the file upload_save_student.php. The manipulation of the argument uploaded_file leads ... read more
  • CVE-2023-5286
    A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file add_category.php of the ... read more
  • CVE-2023-41326 (glpi)
    GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. A logged ... read more
  • CVE-2023-41324 (glpi)
    GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. An API ... read more
  • How to land a corporate board seat as a CISO
    ... read more
  • CVE-2023-39410 | Apache Avro Java SDK fino 1.11.2 escalazione di privilegi
    È stata rilevata una vulnerabilità di livello problematico in Apache Avro Java SDK fino 1.11.2. É interessato una funzione sconosciuta. La manipolazione di un input sconosciuto se causa una vulnerabilità ... read more
  • CVE-2023-5313 | phpkobo Ajax Poll Script 3.18 ajax-poll.php vulnerabilità sconosciuta
    In phpkobo Ajax Poll Script 3.18 è stato trovato un punto critico di livello problematico. É interessato una funzione sconosciuta del file ajax-poll.php del componente Poll Handler. Attraverso l'influenza di ... read more
  • CVE-2023-43655 | Composer composer.phar escalazione di privilegi (GHSA-jm6m-4632-36hf)
    Un punto di criticita di livello problematico è stato rilevato in Composer. Da questa vulnerabilità è interessato una funzione sconosciuta del file composer.phar. La manipolazione di un input sconosciuto se ... read more
  • CVE-2023-5312 | DedeCMS 5.7.111 baidunews.php escalazione di privilegi
    In DedeCMS 5.7.111 è stata rilevato un punto critico di livello critico. Riguarda una funzione sconosciuta del file baidunews.php. Per causa della manipolazione di un input sconosciuto se causa una ... read more
  • CVE-2023-26218 | TIBCO Nimbus fino 10.6.0 Web Client cross site scripting
    Un punto critico di livello problematico è stato rilevato in TIBCO Nimbus fino 10.6.0. É interessato una funzione sconosciuta del componente Web Client. Mediante la manipolazione di un input sconosciuto ... read more
  • CVE-2023-3024 | Silicon Labs Gecko SDK Bluetooth LE Stack rivelazione di un 'informazione
    In Silicon Labs Gecko SDK stata rilevata una vulnerabilità di livello problematico. Da questa vulnerabilità è interessato una funzione sconosciuta del componente Bluetooth LE Stack. Attraverso la manipolazione di un ... read more
  • 91.07406
    Modified (7)Adware/Fyben!AndroidAndroid/Agent.EPS!trAndroid/Agent.KJD!trAndroid/Agent.LFH!trAndroid/FakeApp.JX!trAndroid/FakeWallet.DC!trRiskware/Application!Android ... read more
  • 91.07405
    Modified (6)Adware/SMSreg!AndroidAdware/SpyLoan!AndroidAndroid/Agent.CGS!tr.spyAndroid/Agent.CNU!tr.spyAndroid/Agent.CSG!tr.spyAndroid/Hiddad.BAX!tr ... read more
  • CVE-2023-43263 (froala_editor)
    A Cross-site scripting (XSS) vulnerability in Froala Editor v.4.1.1 allows attackers to execute arbitrary code via the Markdown component. ... read more
  • CVE-2023-41888 (glpi)
    GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. The lack ... read more
  • CVE-2023-43872 (cmsmadesimple)
    A File upload vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS). ... read more
  • CVE-2023-42453 (synapse)
    Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. Users were able to forge read receipts for any event (if they knew the room ID and ... read more
  • CVE-2023-43874 (e107_cms)
    Multiple Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Copyright and Author fields in the ... read more
  • CVE-2023-43234 (dedebiz)
    DedeBIZ v6.2.11 was discovered to contain multiple remote code execution (RCE) vulnerabilities at /admin/file_manage_control.php via the $activepath and $filename parameters. ... read more
  • CVE-2023-43878 (ritecms)
    Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu. ... read more
  • CVE-2023-4260 (zephyr)
    Potential off-by-one buffer overflow vulnerability in the Zephyr fuse file system. ... read more
  • CVE-2023-43873 (e107_cms)
    A Cross Site Scripting (XSS) vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Name filed in the Manage Menu. ... read more
  • CVE-2023-43876 (october)
    A Cross-Site Scripting (XSS) vulnerability in installation of October v.3.4.16 allows an attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost field. ... read more
  • CVE-2023-42460 (vyper)
    Vyper is a Pythonic Smart Contract Language for the EVM. The `_abi_decode()` function does not validate input when it is nested in an expression. Uses of `_abi_decode()` can be constructed ... read more
  • CVE-2023-4262 (zephyr)
    Possible buffer overflow  in Zephyr mgmt subsystem when asserts are disabled ... read more
  • CVE-2023-43871 (wbce_cms)
    A File upload vulnerability in WBCE v.1.6.1 allows a local attacker to upload a pdf file with hidden Cross Site Scripting (XSS). ... read more
  • CVE-2023-4264 (zephyr)
    Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem. ... read more
  • CVE-2023-4747 | DedeCMS 5.7.110 /uploads/tags.php tag_alias sql injection
    A vulnerability classified as critical was found in DedeCMS 5.7.110. This vulnerability affects unknown code of the file /uploads/tags.php. The manipulation of the argument tag_alias leads to sql injection. This ... read more
  • CVE-2023-4741 | IBOS OA 4.5.5 Delete Logs ?r=diary/default/del sql injection
    A vulnerability has been found in IBOS OA 4.5.5 and classified as critical. This vulnerability affects unknown code of the file ?r=diary/default/del of the component Delete Logs Handler. The manipulation ... read more
  • CVE-2023-4744 | Tenda AC8 16.03.34.06_cn_TDC01 formSetDeviceName stack-based overflow
    A vulnerability was found in Tenda AC8 16.03.34.06_cn_TDC01. It has been declared as critical. Affected by this vulnerability is the function formSetDeviceName. The manipulation leads to stack-based buffer overflow. This ... read more
  • CVE-2023-4745 | Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform /importexport.php sql injection
    A vulnerability was found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent Management Platform up to 20230822. It has been rated as critical. Affected by this issue is some ... read more
  • CVE-2023-4743 | Dreamer CMS up to 4.1.3 ueditorConfig file access
    A vulnerability was found in Dreamer CMS up to 4.1.3. It has been classified as problematic. Affected is an unknown function of the file /upload/ueditorConfig?action=config. The manipulation leads to files ... read more
  • CVE-2023-4742 | IBOS OA 4.5.5 export&uid=X sql injection
    A vulnerability was found in IBOS OA 4.5.5 and classified as critical. This issue affects some unknown processing of the file ?r=dashboard/user/export&uid=X. The manipulation leads to sql injection. The identification ... read more
  • CVE-2023-5301 | DedeCMS 5.7.111 album_add.php AddMyAddon albumUploadFiles erweiterte Rechte
    In DedeCMS 5.7.111 wurde eine Schwachstelle entdeckt. Sie wurde als kritisch eingestuft. Es geht um die Funktion AddMyAddon der Datei album_add.php. Durch das Manipulieren des Arguments albumUploadFiles mit unbekannten Daten ... read more
  • CVE-2023-5304 | Online Banquet Booking System 1.0 Service Booking /book-services.php message Cross Site Scripting
    In Online Banquet Booking System 1.0 wurde eine Schwachstelle gefunden. Sie wurde als problematisch eingestuft. Dabei geht es um eine nicht genauer bekannte Funktion der Datei /book-services.php der Komponente Service ... read more
  • CVE-2023-5305 | Online Banquet Booking System 1.0 Contact Us Page /mail.php message Cross Site Scripting
    Eine Schwachstelle wurde in Online Banquet Booking System 1.0 gefunden. Sie wurde als problematisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei /mail.php der Komponente Contact ... read more
  • CVE-2023-5303 | Online Banquet Booking System 1.0 Account Detail /view-booking-detail.php username Cross Site Scripting
    Es wurde eine Schwachstelle in Online Banquet Booking System 1.0 gefunden. Sie wurde als problematisch eingestuft. Es geht dabei um eine nicht klar definierte Funktion der Datei /view-booking-detail.php der Komponente ... read more

integratus systems © 2023

KAVI IS iCOMMEX Platform v 02.25 Saturday, September 30, 2023

Login

Login to integratus systems Exchange Platform Services

Forgot password?
Register Now

Hello

  • Your Account Type is
  • Your Mail Id is
  • Your Username is

Security Briefing Search

PDF Library Search

Search

Reset Password

Reset Password

You have no permission to access this content