101 matches found
CVE-2026-21730
Verba is affected by a Stored Cross-Site Scripting XSS vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and password combination, the supplied username value is recorded in the application logs. Due to lack of...
CVE-2026-21730
Verba is affected by a Stored Cross-Site Scripting XSS vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and password combination, the supplied username value is recorded in the application logs. Due to lack of...
CVE-2026-21730 Stored XSS in Verba
Verba is affected by a Stored Cross-Site Scripting XSS vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and password combination, the supplied username value is recorded in the application logs. Due to lack of...
CVE-2026-21730 Stored XSS in Verba
Verba is affected by a Stored Cross-Site Scripting XSS vulnerability within its login logging mechanism. When an unauthenticated remote attacker attempts to log in using an incorrect username and password combination, the supplied username value is recorded in the application logs. Due to lack of...
Fedora 43 : dotnet10.0 (2026-eadd724963)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-eadd724963 advisory. Update to .NET SDK 10.0.106 and Runtime 10.0.6 Fixes: CVE-2026-26171, CVE-2026-32178, CVE-2026-32203, CVE-2026-33116 Release Notes: - SDK:...
Important: Red Hat Security Advisory: .NET 10.0 security update
An update for .NET 10.0 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Important: Red Hat Security Advisory: .NET 10.0 security update
An update for .NET 10.0 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...
.NET 10.0 security update
10.0.106-1.0.1 - Add support for Oracle Linux 10.0.106-1 - Update to .NET SDK 10.0.106 and Runtime 10.0.6 - Resolves: RHEL-163381...
.NET 10.0 security update
10.0.106-1.0.1 - Add support for Oracle Linux 10.0.106-1 - Update to .NET SDK 10.0.106 and Runtime 10.0.6 - Resolves: RHEL-163384...
GHSA-37GX-XXP4-5RGX Microsoft Security Advisory CVE-2026-33116 – .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...
HTTP Response Splitting
Overview Affected versions of this package are vulnerable to HTTP Response Splitting via the MailAddressParser.TryParseAddress function due to improper neutralisation of CRLF sequences. An attacker can impersonate another user or entity by sending specially crafted data over the network...
2026-04 .NET 10.0.6 Security Update for x86 Client (KB5086095)
2026-04 .NET 10.0.6 Security Update for x86 Client KB5086095...
2026-04 .NET 10.0.6 Security Update for x64 Client (KB5086095)
2026-04 .NET 10.0.6 Security Update for x64 Client KB5086095...
2026-04 .NET 10.0.6 Security Update for x64 Server (KB5086095)
2026-04 .NET 10.0.6 Security Update for x64 Server KB5086095...
WordPress plugin The Moneytizer 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripti...
MAL-2025-48556 Malicious code in qwant-search-extension (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b62fa18764e78b78ad37bea56c978df2cba57aa015e3b3eb13b0fc74e05678b1 The OpenSSF Package Analysis project identified...
EUVD-2023-26853
Malicious code in bioql PyPI...
EUVD-2022-4502
Malicious code in bioql PyPI...
EUVD-2022-4924
Malicious code in bioql PyPI...
EUVD-2022-2385
Malicious code in bioql PyPI...