CVE-2026-0776

Discord Client Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Discord Client. An attacker must first obtain the ability to execute low-privileged code on the target system in...

CVE-2026-0776

creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-040/ 2026-04-08 14:18:48+00:00| seen| https://www.thezdi.com/blog/2026/4/8/nodejs-trust-falls-dangerous-module-resolution-on-windows 2026-06-10 19:00:12+00:00|...

CVE-2024-0776

A vulnerability, which was classified as problematic, has been found in LinZhaoguan pb-cms 2.0. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation with the input leads to cross site scripting. The attack may be launched remotely. The exploit ha...

CVE-2020-0776

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles file operations.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique...

Photon OS 3.0: Tpm2 PHSA-2024-3.0-0776

An update of the tpm2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0776. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2024-3.0-0776

Updates of 'tpm2-tools' packages of Photon OS have been released...

RHEL 8 : jenkins and jenkins-2-plugins (RHSA-2024:0776)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0776 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

CVE-2024-0776

CVE-2024-0776 affects LinZhaoguan pb-cms 2.0, specifically the Comment Handler component. A cross-site scripting vulnerability is triggered by manipulating input, e.g. , with remote exploitation reportedly possible and the exploit disclosed publicly. Multiple connected sources corroborate the iss...

CVE-2024-0776 LinZhaoguan pb-cms Comment cross site scripting

A vulnerability, which was classified as problematic, has been found in LinZhaoguan pb-cms 2.0. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation with the input leads to cross site scripting. The attack may be launched remotely. The exploit ha...

printeradvance.com.ar Improper Access Control vulnerability OBB-3781286

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Baicells Nova

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Baicells Equipment: Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 Vulnerability: Command injection 2. RISK EVALUATION Successful exploitation of this vulnerability could allow commands performed...

SUSE CVE-2007-0776

Heap-based buffer overflow in the cairopeninit function in Mozilla Firefox 2.x before 2.0.0.2, Thunderbird before 1.5.0.10, and SeaMonkey before 1.0.8 allows remote attackers to execute arbitrary code via a large stroke-width attribute in the clipPath element in an SVG file...

SUSE CVE-2013-0776

Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allow man-in-the-middle attackers to spoof the address bar by operating a proxy server that provides a 407 HTTP status code accompanied by web...

CVE-2023-0776 Remote Code Execution in Baicells QRTB Platform

Baicells Nova 436Q, Nova 430E, Nova 430I, and Neutrino 430 LTE TDD eNodeB devices with firmware through QRTB 2.12.7 are vulnerable to remote shell code exploitation via HTTP command injections. Commands are executed using pre-login execution and executed with root permissions. The following metho...

CVE-2023-0776

Baicells Nova 436Q, Nova 430E, Nova 430I and Neutrino 430 LTE TDD eNodeB devices with firmware up to QRTB 2.12.7 are vulnerable to remote shell code execution via HTTP command injections. Affected firmware versions may execute commands with root privileges in pre-login context. Baicells indicates...

CVE-2022-0776

creationtimestamp| type| source ---|---|--- 2022-03-01 12:23:59+00:00| seen| https://t.me/cibsecurity/38252...

CVE-2022-0776

Cross-site Scripting XSS - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0...

CVE-2022-0776 Cross-site Scripting (XSS) - DOM in hakimel/reveal.js

Cross-site Scripting XSS - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0...

CVE-2022-0776

The CVE-2022-0776 issue affects reveal.js prior to version 4.3.0 and is described as a DOM-based Cross-Site Scripting (XSS) vulnerability that can be exposed via postMessage handling. Multiple connected sources confirm the vulnerability stems from insufficient input validation/output in Reveal.js...

CVE-2022-0776 Cross-site Scripting (XSS) - DOM in hakimel/reveal.js

Cross-site Scripting XSS - DOM in GitHub repository hakimel/reveal.js prior to 4.3.0...