EUVD-2006-3875

Malware in sbrugna...

CVE-2025-1349

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.4 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...

CVE-2025-1349

creationtimestamp| type| source ---|---|--- 2025-06-18 16:43:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18781 2025-06-18 19:59:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrvsbzxtzu2p...

CVE-2025-1349

IBM Sterling B2B Integrator and IBM Sterling File Gateway versions 6.0.0.0–6.1.2.6 and 6.2.0.0–6.2.0.4 are affected by a stored cross-site scripting (XSS) vulnerability in the Dashboard UI, allowing a privileged user to inject arbitrary JavaScript into the Web UI and potentially disclose credenti...

CVE-2025-1349 IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.4 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...

CVE-2025-1349 IBM Sterling B2B Integrator and IBM Sterling File Gateway cross-site scripting

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.4 is vulnerable to stored cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...

Security Bulletin: Dashboard UI of IBM Sterling B2B Integrator and IBM Sterling File Gateway are vulnerable to Stored Cross-Site Scripting (CVE-2025-1349)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the stored cross-site scripting vulnerability. Vulnerability Details CVEID:CVE-2025-1349 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition is vulnerable to stored cross-site scripting. This vulnerability allo...

CVE-2024-1349

The EmbedPress – Embed PDF, YouTube, Google Docs, Vimeo, Wistia Videos, Audios, Maps & Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 3.9.8 due to insufficient input...

CVE-2023-1349

A vulnerability, which was classified as problematic, has been found in Hsycms 3.1. Affected by this issue is some unknown functionality of the file controller\cate.php of the component Add Category Module. The manipulation of the argument title leads to cross site scripting. The attack may be...

CVE-2022-1349

The WPQA Builder Plugin WordPress plugin before 5.2, used as a companion plugin for the Discy and Himer , does not validate that the value passed to the imageid parameter of the ajax action wpqaremoveimage belongs to the requesting user, allowing any users with privileges as low as Subscriber to...

CVE-2020-1349

A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka 'Microsoft Outlook Remote Code Execution Vulnerability'...

Important: git

Issue Overview: A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite arbitrary paths. An attacker can abuse this flaw if they can control the input passed to the fast-import command by using the export-marks feature and overwri...

Linux Distros Unpatched Vulnerability : CVE-2019-1349

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution...

RHEL 7 : git (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - git: Recursive submodule cloning allows using git directory twice with synonymous directory name written ...

CVE-2024-1349

creationtimestamp| type| source ---|---|--- 2024-03-06 19:51:46+00:00| seen| https://t.me/ctinow/201720...

CVE-2024-1349

CVE-2024-1349 concerns the WordPress plugin EmbedPress (Embed PDF, YouTube, Google Docs, Vimeo, Wistia, etc.). Public records confirm a Stored Cross-Site Scripting vulnerability via the plugin’s shortcodes in versions up to 3.9.8 due to insufficient input sanitization and output escaping on user-...

BELL-CVE-2019-1349 CVE-2019-1349 does not affect BellSoft software

Bulletin has no description...

CVE-2023-1349

CVE-2023-1349 affects Hsycms 3.1, specifically the Add Category Module’s file path controller/cate.php. The vulnerability arises from manipulation of the argument title , enabling cross-site scripting. The issue is executable remotely, and the exploit has been disclosed publicly. Multiple sources...

Amazon Linux 2 : git (ALAS-2023-1943)

The version of git installed on the remote host is prior to 2.23.1-0. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1943 advisory. A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite...

RHEL 7 : rh-git218-git (RHSA-2020:0002)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0002 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a...