MODERATE

[parse-url] parse-url parses http URLs incorrectly, making it vulnerable to host name spoofing

parse-url prior to 8.1.0 is vulnerable to Misinterpretation of Input. parse-url parses certain http or https URLs incorrectly, identifying the URL’s protocol as ssh. It may also parse the host name incorrectly.
References

https://nvd.nist.gov/vuln/det…

[smarty/smarty] Smarty Cross-site Scripting vulnerability in pages that use smarty_function_mailto

In Smarty before 3.1.47 and 4.x before 4.2.1, libs/plugins/function.mailto.php allows cross-site scripting. A web page that uses smarty_function_mailto, and that could be parameterized using GET or POST input parameters, could allow injection of JavaSc…

[pimcore/pimcore] Pimcore vulnerable to stored stored Cross-site Scripting via`properties` when creating new users

Pimcore prior to 10.5.6 is vulnerable to stored cross-site scripting. This occurs when an attacker injects a payload when adding properties for a new user.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-3211
https://github.com/pimcore/pimcore/co…

[typo3/cms-core] TYPO3 HTML Sanitizer Bypasses Cross-Site Scripting Protection

[matrix-appservice-irc] matrix-appservice-irc vulnerable to IRC mode parameter confusion

Impact
IRC allows you to specify multiple modes in a single mode command. Due to a bug in the underlying matrix-org/node-irc library, affected versions of matrix-appservice-irc perform parsing of such modes incorrectly, potentially resulting in the wro…

[parse-url] Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url

Server-Side Request Forgery (SSRF) in GitHub repository ionicabizau/parse-url prior to 8.1.0.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-2900
https://github.com/ionicabizau/parse-url/commit/b88c81df8f4c5168af454eaa4f92afa9349e4e13
https://hu…

[feehi/cms] Feehi CMS host header injection vulnerability may allow attacker to spoof a particular header

A Host Header Injection vulnerability in Feehi CMS 2.1.1 may allow an attacker to spoof a particular header. This can be exploited by abusing password reset emails.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-38796
https://www.youtube.com/wat…

[wonder:wonder] Project Wonder WebObjects vulnerable to Arbitrary HTTP Header Injection and Cross-site Scripting

Project Wonder WebObjects 1.0 through 7.3 is vulnerable to Arbitrary HTTP Header injection and URL- or Header-based XSS reflection in all web-server adaptor interfaces. A patch for this issue is available at commit number b0d2d74f13203268ea254b02552600…

[github.com/ouqiang/gocron] ouqiang gocron Cross-site scripting vulnerability

Cross site scripting (XSS) vulnerability in ouqiang gocron through 1.5.3, allows attackers to execute arbitrary code via scope.row.hostname in web/vue/src/pages/taskLog/list.vue.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-40365
https://githu…

[unisharp/laravel-filemanager] UniSharp Laravel Filemanager directory traversal vulnerability

UniSharp laravel-filemanager (aka Laravel Filemanager) through 2.5.1 allows download?working_dir=%2F.. directory traversal to read arbitrary files, as exploited in the wild in June 2022.
References

https://nvd.nist.gov/vuln/detail/CVE-2022-40734
https…

トピトピニュース

Featured

[org.keycloak:keycloak-core] Stored Cross-Site Scripting (XSS) in Keycloak via groups dropdown

[baserproject/basercms] baserproject/basercms vulnerable to cross-site scripting (XSS) vulnerability

[org.postgresql:postgresql] TemporaryFolder on unix-like systems does not limit access to created files

[com.h2database:h2] Password exposure in H2 Database