This is copied from SAP Note 566090 FAQ for Immediate TO creation: Immediate TO creation for posting change notices only works if, when selecting the stocks, the system can determine the stock for which a transfer posting is to be carried out. For example: The posting change change makes a ...
In onPackageRemoved of AccessibilityManagerService.java, there is a possibility to automatically grant accessibility services due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Pro...
Open Redirect in GitHub repository btcpayserver/btcpayserver prior to 1.7.6. gonzxph/CVE-2023-0748 CVE-2023-0860 (2023-02-16) Improper Restriction of Excessive Authentication Attempts in GitHub repository modoboa/modoboa-installer prior to 2.0.4. 0xsu3ks/CVE-2023-0860 CVE-2023-0861 (202...
Go to file Code This branch is 2226 commits behind nomi-sec/PoC-in-GitHub:master. Folders and files NameName Last commit message Last commit date Latest commit motikan2010-bot Auto Update 2023/07/10 06:48:42Jul 10, 2023 fd08574· Jul 10, 2023 History5,188 Commits 1999 1999 Auto Upd...
Open Redirect in GitHub repository btcpayserver/btcpayserver prior to 1.7.6. gonzxph/CVE-2023-0748 CVE-2023-0860 (2023-02-16) Improper Restriction of Excessive Authentication Attempts in GitHub repository modoboa/modoboa-installer prior to 2.0.4. 0xsu3ks/CVE-2023-0860 CVE-2023-0861 (202...
An issue has been discovered in GitLab affecting all versions starting from 13.7 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. A specially crafted Kroki diagram could lead to a stored XSS on the client side which allows attackers...
In most cases, the attack requires the attacker to provide both the certificate chain and CRL, neither of which need to have a valid signature. If the attacker only controls one of these inputs, the other input must already contain an X.400 address as a CRL distribution point, which is ...
Affected is an unknown function of the component User Creation Handler. The manipulation of the argument First Name/Middle Name/Last Name leads to cross site scripting. It is possible to launch the attack remotely. VDB-211014 is the identifier assigned to this vulnerability. lohith19/CVE-2022-...
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution. TurtleARM/CVE-2023-0179-PoC H4K6/CVE-...
However, in this case, the BIO chain\nis not properly cleaned up and the BIO passed by the caller still retains\ninternal pointers to the previously freed filter BIO. If the caller then goes on\nto call BIO_pop() on the BIO then a use-after-free will occur. This will most\nlikely ...