Meet Rassvet, Russia’s Answer to Starlink

With the launch of the first 16 satellites, Russia begins construction of a network for satellite internet that aims to cover the entire country by 2030. But getting there won’t be easy...

EUVD-2007-4734

Malware in sbrugna...

CVE-2025-2030

A vulnerability was found in Seeyon Zhiyuan Interconnect FE Collaborative Office Platform up to 20250224. It has been rated as critical. Affected by this issue is some unknown functionality of the file /security/addUser.jsp. The manipulation of the argument groupId leads to sql injection. The...

CVE-2025-2030

creationtimestamp| type| source ---|---|--- 2025-03-06 17:10:54+00:00| seen| https://t.me/cvedetector/19703 2025-03-10 06:37:55+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6980 2025-03-10 14:45:04+00:00| seen| Telegram/ut7RZDjULwMIq7soUROyDzLd9IDW4Q9hbLH-K8BryoCLE39z...

CVE-2025-2030 Seeyon Zhiyuan Interconnect FE Collaborative Office Platform addUser.jsp sql injection

A vulnerability was found in Seeyon Zhiyuan Interconnect FE Collaborative Office Platform up to 20250224. It has been rated as critical. Affected by this issue is some unknown functionality of the file /security/addUser.jsp. The manipulation of the argument groupId leads to sql injection. The...

CVE-2025-2030 Seeyon Zhiyuan Interconnect FE Collaborative Office Platform addUser.jsp sql injection

A vulnerability was found in Seeyon Zhiyuan Interconnect FE Collaborative Office Platform up to 20250224. It has been rated as critical. Affected by this issue is some unknown functionality of the file /security/addUser.jsp. The manipulation of the argument groupId leads to sql injection. The...

CVE-2025-2030

The CVE-2025-2030 entry concerns Seeyon Zhiyuan Interconnect FE Collaborative Office Platform (up to 20250224). The root cause is SQL injection in the /security/addUser.jsp functionality triggered by manipulating the groupId parameter. The impact described across sources is remote exploitation wi...

Linux Distros Unpatched Vulnerability : CVE-2007-2030

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lharc.c in lha does not securely create temporary files, which might allow local users to read or write files by creating a file before LHA is invoked...

Ethereum’s Layer 2 Solutions Could Outrun the Main Blockchain by 2030

According to recent reports, Ethereum’s Layer 2 solutions could reach an impressive $1 trillion market capitalization by 2030.…...

SUSE: Security Advisory (SUSE-SU-2024:2030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Too Much Escaping Backfires, Allows Shortcode-Based XSS Vulnerability in Contact Form Entries WordPress Plugin

🎉 Did you know were running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! On February 24th, 2024, during our second Bug Bounty Extravaganza...

CVE-2024-2030

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

CVE-2024-2030 Database for Contact Form 7, WPforms, Elementor forms <= 1.3.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via shortcode

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

CVE-2024-2030

The CVE-2024-2030 entry covers a stored XSS in the WordPress plugin set “Database for Contact Form 7, WPforms, Elementor forms” (contact-form-entries) up to version 1.3.3. The underlying issue is insufficient input sanitization and output escaping for user-supplied attributes in the plugin’s shor...

WordPress Contact Form Entries Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)

Software Contact Form Entries Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2030 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5485073f02fc Credits Krzysztof Zając...

CVE-2023-2030

creationtimestamp| type| source ---|---|--- 2024-01-12 15:26:33+00:00| seen| https://t.me/ctinow/167314 2024-01-15 15:42:10+00:00| seen| https://t.me/itsecnews/3978 2024-01-15 16:20:06+00:00| seen| https://t.me/truesecator/5292 2024-02-02 17:11:15+00:00| seen| https://t.me/ctinow/178157...

CVE-2023-2030

CVE-2023-2030 affects GitLab CE/EE versions from 12.2 up to 16.5.5 (and 16.6 up to 16.6.3, 16.7 up to 16.7.1). The issue allows an attacker to potentially modify the metadata of signed commits. The vulnerability’s CVSS3.1 base score is 5.3 (MEDIUM) with network attack vector, and no privileges re...

CVE-2023-2030 Improper Verification of Cryptographic Signature in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which an attacker could potentially modify the metadata of signed commits...

CVE-2023-2030 Improper Verification of Cryptographic Signature in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which an attacker could potentially modify the metadata of signed commits...

FreeBSD : Gitlab -- vulnerabilities (4c8c2218-b120-11ee-90ec-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4c8c2218-b120-11ee-90ec-001b217b3468 advisory. - An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5....