CVE-2026-0708

creationtimestamp| type| source ---|---|--- 2026-03-17 03:16:07+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-0708 2026-03-18 21:46:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhehkudtez2u 2026-05-11 18:37:08+00:00| seen|...

Photon OS 5.0: Linux PHSA-2025-5.0-0708

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0708. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2025-5.0-0708

Updates of 'linux-esx', 'linux' packages of Photon OS have been released...

Splunk Enterprise 9.1.0 < 9.1.9, 9.2.0 < 9.2.6, 9.3.0 < 9.3.5, 9.4.0 < 9.4.2 (SVD-2025-0708)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-0708 advisory. - In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform versions below 9.3.2411.103,...

CVE-2025-0708

A vulnerability was found in fumiao opencms 2.2. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/model/addOrUpdate of the component Add Model Management Page. The manipulation of the argument 模板前缀 leads to cross site scripting. The attack can be...

CVE-2024-0708

The Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.7.2. This makes it possible for unauthenticated attackers to access landing pages that may not be public...

CVE-2020-0708

A remote code execution vulnerability exists when the Windows Imaging Library improperly handles memory.To exploit this vulnerability, an attacker would first have to coerce a victim to open a specially crafted file.The security update addresses the vulnerability by correcting how the Windows...

CVE-2013-0708

Cross-site scripting XSS vulnerability in dopvCOMET 0009b allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header, which is not properly handled during display of the access log...

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan

Cybersecurity researchers have flagged a new malicious campaign related to the North Korean state-sponsored threat actor known as Kimsuky that exploits a now-patched vulnerability impacting Microsoft Remote Desktop Services to gain initial access. The activity has been named Larva-24005 by the...

CVE-2025-0708

creationtimestamp| type| source ---|---|--- 2025-01-24 20:04:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2995 2025-01-24 21:56:23+00:00| seen| https://t.me/cvedetector/16342...

CVE-2025-0708 fumiao opencms Add Model Management Page addOrUpdate cross site scripting

A vulnerability was found in fumiao opencms 2.2. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/model/addOrUpdate of the component Add Model Management Page. The manipulation of the argument 模板前缀 leads to cross site scripting. The attack can be...

CVE-2025-0708 fumiao opencms Add Model Management Page addOrUpdate cross site scripting

A vulnerability was found in fumiao opencms 2.2. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/model/addOrUpdate of the component Add Model Management Page. The manipulation of the argument 模板前缀 leads to cross site scripting. The attack can be...

CVE-2019-0708 BlueKeep Microsoft Remote Desktop Remote Code Execution Check

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CVE-2019-0708 BlueKeep Microsoft Remote Desktop RCE Check', 'Description' = %q This module checks a range of hosts for the CVE-2019-0708...

RHEL 8 : Release of OpenShift Serverless Client kn 1.27.0 (Moderate) (RHSA-2023:0708)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:0708 advisory. Red Hat OpenShift Serverless Client kn 1.27.0 provides a CLI to interact with Red Hat OpenShift Serverless 1.27.0. The kn CLI is delivered a...

CVE-2024-0708

CVE-2024-0708 relates to the WordPress plugin Landing Page Cat (Coming Soon Page, Maintenance Page & Squeeze Pages). Affected versions are

WordPress Landing Page Cat Plugin <= 1.7.2 is vulnerable to Sensitive Data Exposure

Software Landing Page Cat Type Plugin Vulnerable versions = 1.7.2 Fixed in 1.7.3 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-0708 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 9cdc23335541 Credits Nathaniel Oh 0x4n3 Requir...

Malicious code in wlwz-2312-0708 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ddbbb58e61c2fe33507e3541e0ff81e5af96693f2ef80e849dba8320748edc07 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

surabayaspineclinic.com Cross Site Scripting vulnerability OBB-3659094

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

WordPress Metform Elementor Contact Form Builder Plugin < 3.3.1 Multiple Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpmet:metformelementorcontactformbuilder"; if description...

WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Metform Elementor Contact Form Builder Type Plugin Vulnerable versions = 3.3.0 Fixed in 3.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0708 Patch priority Low CVSS severity Low 6.5 Developer Wpmet PSID d2490fc4db6a Credits Ramuel Gall...