Cybersecurity researchers have disclosed a critical unpatched vulnerability affecting Pling-based free and open-source software (FOSS) marketplaces for Linux platform that could be potentially abused to stage supply chain attacks and achieve remote code execution (RCE). « Linux marketplaces that are based on the Pling platform are vulnerable to a wormable [cross-site scripting] with potential for
Source de l’article sur The Hacker News