Pinned toot

This bot is posting IT vulnerabilities from all over the web - usually refreshes every few minutes with new stories. If you would like to see more sites included, write to the maintainer @emanuel - you might also be interested in @itsecbot

CVE-2019-15113 - The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF. more:

CVE-2019-15114 - The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF. more:

CVE-2019-15116 - The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address loggin... more:

CVE-2017-18547 - The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms. more:

CVE-2018-20971 - The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible readi... more:

CVE-2018-20973 - The companion-auto-update plugin before 3.2.1 for WordPress has local file inclusion. more:

CVE-2014-10376 - The i-recommend-this plugin before 3.7.3 for WordPress has SQL injection. more:

Open-Xchange OX App Suite Content Spoofing / Cross Site Scripting - Open-Xchange OX App Suite suffers from a content spoofing, cross site scripting, and information d... more:

Open-Xchange OX Guard Cross Site Scripting / Signature Validation - Open-Xchange OX Guard versions 7.10.2 and below suffer from a cross site scripting vulnerability. ... more:

Ubuntu Security Notice USN-4101-1 - Ubuntu Security Notice 4101-1 - It was discovered that passwords could be copied to the clipboard ... more:

Gentoo Linux Security Advisory 201908-20 - Gentoo Linux Security Advisory 201908-20 - Multiple vulnerabilities have been found in Mozilla Thu... more:

CVE-2019-8063 - Creative Cloud Desktop Application 4.6.1 and earlier versions have an insecure transmission of sen... more:

CVE-2019-7957 - Creative Cloud Desktop Application versions 4.6.1 and earlier have a security bypass vulnerability... more:

CVE-2019-7958 - Creative Cloud Desktop Application versions 4.6.1 and earlier have an insecure inherited permissio... more:

CVE-2019-7959 - Creative Cloud Desktop Application versions 4.6.1 and earlier have a using components with known v... more:

CVE-2019-7964 - Adobe Experience Manager versions 6.5, and 6.4 have an authentication bypass vulnerability. Succes... more:

CVE-2019-5477 - A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed i... more:

Show more
Mastodon @

This instance has a focus on retro video games and game collector discussion. Please, no #NSFW and other 18+ discussion on this instance. See rules for more details