101 matches found
CVE-2026-1811
The CVE-2026-1811 entry concerns bolo-blog bolo-solo up to version 2.6.4. The vulnerability lies in the Filename Handler’s importFromMarkdown function (BackupService.java). Manipulating the File argument can trigger path traversal, with a remote attack vector. Public exploitation has been publish...
CVE-2025-1811
A vulnerability was found in AT Software Solutions ATSVD up to 3.4.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /login.aspx of the component Login Endpoint. The manipulation of the argument txtUsuario leads to sql injection. The attac...
EUVD-2010-1811
Malware in sbrugna...
CVE-2021-1811
A logic issue was addressed with improved state management. This issue is fixed in iTunes 12.11.3 for Windows, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave, iCloud for Windows 12.3, macOS Big Sur 11.3, watchOS 7.4, tvOS 14.5, iOS 14.5 and iPadOS 14.5. Processing a maliciousl...
CVE-2024-1811
creationtimestamp| type| source ---|---|--- 2025-03-20 15:40:18+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lkszub6ubo2v...
CVE-2025-1811
creationtimestamp| type| source ---|---|--- 2025-03-02 09:29:20+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6091 2025-03-02 10:30:21+00:00| seen| Telegram/DnR08jUVHhOgLSrPRCgRVAW-PG6tJZROb7alGwAeSUmZUo 2025-03-02 11:47:01+00:00| seen|...
CVE-2025-1811
A vulnerability was found in AT Software Solutions ATSVD up to 3.4.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /login.aspx of the component Login Endpoint. The manipulation of the argument txtUsuario leads to sql injection. The attac...
CVE-2025-1811 AT Software Solutions ATSVD Login Endpoint login.aspx sql injection
A vulnerability was found in AT Software Solutions ATSVD up to 3.4.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /login.aspx of the component Login Endpoint. The manipulation of the argument txtUsuario leads to sql injection. The attac...
CVE-2025-1811 AT Software Solutions ATSVD Login Endpoint login.aspx sql injection
A vulnerability was found in AT Software Solutions ATSVD up to 3.4.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /login.aspx of the component Login Endpoint. The manipulation of the argument txtUsuario leads to sql injection. The attac...
Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering
The threat actors linked to the Black Basta ransomware have been observed switching up their social engineering tactics, distributing a different set of payloads such as Zbot and DarkGate since early October 2024. "Users within the target environment will be email bombed by the threat actor, whic...
Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw
Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as a zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 CVSS score: 7.8, an elevati...
Cybercriminals Exploiting Microsoft's Quick Assist Feature in Ransomware Attacks
The Microsoft Threat Intelligence team said it has observed a threat actor it tracks under the name Storm-1811 abusing the client management tool Quick Assist to target users in social engineering attacks. "Storm-1811 is a financially motivated cybercriminal group known to deploy Black Basta...
CVE-2024-1811 OpenText ArcSight Platform Remote Vulnerability
A potential vulnerability has been identified in OpenText ArcSight Platform. The vulnerability could be remotely exploited...
CVE-2024-1811
CVE-2024-1811 affects OpenText ArcSight Platform. Connected PT-2024-18327 documentation indicates versions up to 24.1.0 are affected and that the issue could be remotely exploited, potentially enabling remote code execution. Affected software is OpenText ArcSight Platform; root cause details are ...
openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0092-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Rocky Linux 8 : libvncserver (RLSA-2021:1811)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1811 advisory. - An issue was discovered in LibVNCServer before 0.9.13. There is an information leak of uninitialized memory contents in the libvncclient/rfbproto.c...
Amazon Linux AMI : php56-pecl-imagick (ALAS-2023-1811)
The version of php56-pecl-imagick installed on the remote host is prior to 3.4.4-2.16. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1811 advisory. ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds....
Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2023-1811)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2023:0092-1 Rating: important References: 1210126 1210478 Cross-References: CVE-2023-1810 CVE-2023-1811 CVE-2023-1812 CVE-2023-1813 CVE-2023-1814 CVE-2023-1815 CVE-2023-1816 CVE-2023-1817 CVE-2023-1818 CVE-2023-18...
Ubuntu: Security Advisory (USN-6021-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...