An attacker can exploit any user of a vulnerable instance to access the internal metadata server or other unauthenticated URLs. FlyteConsole prior to version 0.52.0 is vulnerable to server-side request forgery (SSRF) when FlyteConsole is open to the general internet. Reflected Cross-Site Scripting (XSS) vulnerability in Internet Marketing Dojo WP Affiliate Links plugin elements.īluedon Information Security Technologies Co.,Ltd Internet Access Detector v1.0 was discovered to contain an information leak which allows attackers to access the contents of the password file via unspecified vectors.įlyteConsole is the web user interface for the Flyte platform. There are no known workarounds for this vulnerability. This issue has been addressed in commit `77e04f4af` which is included in the `1.0.0b1.1.2` release. The user input isn't (fully) sanitized after submission.
All text fields on the webpage are vulnerable to XSS attacks. Meldekarten generator is an open source project to create a program, running locally in the browser without the need for an internet-connection, to create, store and print registration cards for volunteers.
0 kommentar(er)
