Skip to content

TechMedia

Header Image
Archive

Month: August 2018

2 Posts

Featured

Posted byWpmaster
[ember-source] ember-source Cross-site Scripting vulnerability
Posted byWpmaster
[rest-client] rest-client vulnerable to Session Fixation

[ember-source] ember-source Cross-site Scripting vulnerability

  • Posted inMODERATE
  • Posted byWpmaster
  • 08/29/201801/26/2023

Cross-site scripting (XSS) vulnerability in the link-to helper in Ember.js 1.2.x before 1.2.2, 1.3.x before 1.3.2, and 1.4.x before 1.4.0-beta.6, when used in non-block form, allows remote attackers to inject arbitrary web script or HTML via the title …

[rest-client] rest-client vulnerable to Session Fixation

  • Posted inCRITICAL
  • Posted byWpmaster
  • 08/14/201810/14/2022

REST client for Ruby (aka rest-client) versions 1.6.1.a until 1.8.0 allow remote attackers to conduct session fixation attacks or obtain sensitive cookie information by leveraging passage of cookies set in a response to a redirect.
References

https://…

TechMedia
WordPress theme by componentz

Archives

2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30
Hit enter to search or ESC to close