CVE-2025-12592

Legacy Vivotek Device firmware uses default credetials for the root and user login accounts...

CVE-2025-12592

creationtimestamp| type| source ---|---|--- 2025-11-19 13:09:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5yd7yytym26 2025-11-19 15:14:10+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115577012235338015...

CVE-2024-12592 Sellsy <= 2.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Sellsy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testSellsy' shortcode in all versions up to, and including, 2.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

Evernote Web Clipper Cross-Site Scripting (CVE-2019-12592)

A cross-site scripting vulnerability exists in Evernote Web Clipper Extension. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary commands on the affected system...

CVE-2019-12592

CVE-2019-12592 affects the Evernote Web Clipper Chrome extension (pre-7.11.1). The vulnerability arises from a mis-handled URL construction in the extension’s iframe/injection framework, allowing a remote site to inject scripts via postMessage and inject a payload into all frames, effectively cau...

Critical Flaw Reported in Popular Evernote Extension for Chrome Users

Cybersecurity researchers discover a critical flaw in the popular Evernote Chrome extension that could have allowed hackers to hijack your browser and steal sensitive information from any website you accessed. Evernote is a popular service that helps people taking notes and organize their to-do...

CVE-2018-12592

Polycom RealPresence Web Suite before 2.2.0 does not block a user's video for a few seconds upon joining a meeting when the user has explicitly chosen to turn off the video using a specific option. During those seconds, a meeting invitee may unknowingly be on camera with other participants able t...

CVE-2018-12592

CVE-2018-12592 affects Polycom RealPresence Web Suite prior to 2.2.0. The issue is that the system fails to block a user’s video for a few seconds when joining a meeting if the user has explicitly disabled video via a specific option, potentially exposing an active video stream to other participa...

CVE-2018-12592

Polycom RealPresence Web Suite before 2.2.0 does not block a user's video for a few seconds upon joining a meeting when the user has explicitly chosen to turn off the video using a specific option. During those seconds, a meeting invitee may unknowingly be on camera with other participants able t...

TrackerCam PHP Argument Buffer Overflow

No description provided by source. $Id: trackercamphpargoverflow.rb 9262 2010-05-09 17:45:00Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and...

CVE-2020-12592

CVE-2020-12592 entry is rejected/not used as described in the Initial Description.