Re: [FD] typeorm CVE-2022-33171

Someone should tell Snyk about the risks of "Supply Chain vulnerabilities" ... (and yes this is a vulnerability, nice find!) LoL'ing at Maintainer. Cheers, @haxel0rd. ___ Sent through the Full Disclosure mailing list

[FD] Trovent Security Advisory 2110-01 / Insecure data storage in Polar Flow Android application

# Trovent Security Advisory 2110-01 # # Insecure data storage in Polar Flow Android application ### Overview Advisory ID: TRSA-2110-01 Advisory version: 1.0 Advisory status: Public Advisory URL:

[FD] APPLE-SA-2022-08-18-1 Safari 15.6.1

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 APPLE-SA-2022-08-18-1 Safari 15.6.1 Safari 15.6.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213414. WebKit Available for: macOS Big Sur and macOS Catalina Impact:

[FD] APPLE-SA-2022-08-17-1 iOS 15.6.1 and iPadOS 15.6.1

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 APPLE-SA-2022-08-17-1 iOS 15.6.1 and iPadOS 15.6.1 iOS 15.6.1 and iPadOS 15.6.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213412. Kernel Available for: iPhone 6s and

[FD] APPLE-SA-2022-08-17-2 macOS Monterey 12.5.1

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 APPLE-SA-2022-08-17-2 macOS Monterey 12.5.1 macOS Monterey 12.5.1 addresses the following issues. Information about the security content is also available at https://support.apple.com/HT213413. Kernel Available for: macOS Monterey Impact: An

[FD] [CVE-2022-2536] Transposh <= 1.0.8.1 “tp_translation” Authorization Bypass

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION === Product:Transposh WordPress Translation Vendor URL: https://wordpress.org/plugins/transposh-translation-filter-for-wordpress/ Type: Incorrect Authorization [CWE-863] Date