SUSE: Security Advisory (SUSE-SU-2026:1257-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2026-1257)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-1257

creationtimestamp| type| source ---|---|--- 2026-01-24 10:15:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md5ybqmnum2j 2026-01-24 11:35:33+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md64pynkad23...

CVE-2026-1257

CVE-2026-1257 affects the WordPress Administrative Shortcodes plugin (versions

EUVD-2026-1257

EUVD-2026-1257...

Amazon Linux 2023 : pam, pam-devel (ALAS2023-2025-1257)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1257 advisory. A flaw was found in linux-pam. The pamnamespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to...

McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information

Exploit Title: McAfee Agent 5.7.6 - Insecure Storage of Sensitive Information Date: 24 June 2025 Exploit Author: Keenan Scott Vendor Homepage: hxxps://www.mcafee.com/ Software Download: N/A Unable to find Version: Arguments CmdletBinding param string$DbSource =...

CVE-2020-1257

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1278, CVE-2020-1293...

CVE-2019-1257

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1295, CVE-2019-1296...

CVE-2025-1257

creationtimestamp| type| source ---|---|--- 2025-03-13 08:55:43+00:00| seen| https://t.me/cvedetector/20194 2025-03-14 14:45:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7572 2025-07-15 17:19:41+00:00| seen| https://t.me/YAHChannel/967 2025-08-13 13:26:34+00:00| see...

CVE-2025-1257 Allocation of Resources Without Limits or Throttling in GitLab

An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2. A vulnerability in certain GitLab instances could allow an attacker to cause a denial of service condition by manipulating specific API inputs...

CVE-2025-1257

Removed by vendor...

GitLab 12.3 < 17.7.7 / 17.8 < 17.8.5 / 17.9 < 17.9.2 (CVE-2025-1257)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue was discovered in GitLab EE affecting all versions starting with 12.3 before 17.7.7, 17.8 prior to 17.8.5, and 17.9 prior to 17.9.2. A vulnerability in certain GitLab instances could allow an...

Linux Distros Unpatched Vulnerability : CVE-2012-1257

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pidgin 2.10.0 uses DBUS for certain cleartext communication, which allows local users to obtain sensitive information via a dbus session monitor. CVE-2012-1257...

CVE-2024-1257

creationtimestamp| type| source ---|---|--- 2024-02-06 21:26:38+00:00| seen| https://t.me/ctinow/180332 2024-02-10 08:16:27+00:00| seen| https://t.me/ctinow/182463 2024-03-01 08:11:31+00:00| seen| https://t.me/ctinow/197376...

CVE-2024-1257

A vulnerability was found in Jspxcms 10.2.0. It has been classified as problematic. Affected is an unknown function of the file /ext/collect/findtext.do. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...

CVE-2024-1257

CVE-2024-1257 affects Jspxcms 10.2.0. The vulnerability is in the function/file /ext/collect/find_text.do and enables cross-site scripting. Exploitation is possible remotely, and public exploit information exists. The linked sources confirm XSS impact but do not provide concrete exploit details b...

153.139.240.227 Cross Site Scripting vulnerability OBB-3478353

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-1257

CVE-2023-1257 affects Moxa UC Series devices. The vulnerability arises from improper physical access control, enabling an attacker with physical access to restart the device, access BIOS, alter bootloader/command-line options, and reach the terminal to modify authentication files and create a new...

CVE-2023-1257 CVE-2023-1257

An attacker with physical access to the affected Moxa UC Series devices can initiate a restart of the device and gain access to its BIOS. Command line options can then be altered, allowing the attacker to access the terminal. From the terminal, the attacker can modify the device’s authentication...