Someone should tell Snyk about the risks of "Supply Chain vulnerabilities"
...
(and yes this is a vulnerability, nice find!)
LoL'ing at Maintainer.
Cheers, @haxel0rd.
___
Sent through the Full Disclosure mailing list
# Trovent Security Advisory 2110-01 #
#
Insecure data storage in Polar Flow Android application
###
Overview
Advisory ID: TRSA-2110-01
Advisory version: 1.0
Advisory status: Public
Advisory URL:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2022-08-18-1 Safari 15.6.1
Safari 15.6.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT213414.
WebKit
Available for: macOS Big Sur and macOS Catalina
Impact:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2022-08-17-1 iOS 15.6.1 and iPadOS 15.6.1
iOS 15.6.1 and iPadOS 15.6.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT213412.
Kernel
Available for: iPhone 6s and
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
APPLE-SA-2022-08-17-2 macOS Monterey 12.5.1
macOS Monterey 12.5.1 addresses the following issues.
Information about the security content is also available at
https://support.apple.com/HT213413.
Kernel
Available for: macOS Monterey
Impact: An
RCE Security Advisory
https://www.rcesecurity.com
1. ADVISORY INFORMATION
===
Product:Transposh WordPress Translation
Vendor URL:
https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/
Type: Incorrect Authorization [CWE-863]
Date