Autore: Angelo Barbosa

A vulnerability was found in Tencent WeChat 8.0.37. It has been rated as critical. Affected by this issue is some unknown functionality of the component web-view. The manipulation leads to permission issues. This vulnerability is handled as CVE-2024-40433. The attack can only be done within the local network. There is no exploit...

A vulnerability was found in opengeos streamlit-geospatial. It has been declared as critical. Affected by this vulnerability is the function gpd.read_file of the file pages/9_????_Vector_Data_Visualization.py. The manipulation of the argument url leads to server-side request forgery. This vulnerability is known as CVE-2024-41120. The attack can be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this...

A vulnerability was found in opengeos streamlit-geospatial. It has been classified as critical. Affected is the function get_layers of the file pages/7_????_Web_Map_Service.py. The manipulation of the argument url leads to server-side request forgery. This vulnerability is traded as CVE-2024-41118. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this...

A vulnerability was found in xdg-desktop-portal-hyprland up to 1.3.2 and classified as critical. This issue affects some unknown processing of the component App ID Handler. The manipulation leads to os command injection. The identification of this vulnerability is CVE-2024-42029. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected...

A vulnerability has been found in opengeos streamlit-geospatial and classified as very critical. This vulnerability affects the function eval of the file 8_????️_Raster_Data_Visualization.py. The manipulation of the argument vis_params leads to improper input validation. This vulnerability was named CVE-2024-41119. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this...