CVE-2026-23993

creationtimestamp| type| source ---|---|--- 2026-01-21 22:12:37+00:00| seen| https://bsky.app/profile/pentesterlab.com/post/3mcxowc2c6k23 2026-01-22 18:15:58+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3mczs65vv7c2t 2026-02-02 00:26:19+00:00| seen|...

PT-2026-3899

Name of the Vulnerable Software and Affected Versions HarbourJwt affected versions not specified Description A JWT authentication bypass exists in HarbourJwt due to an issue with algorithm handling. Specifically, unsupported algorithms can lead to an empty signature, allowing forged tokens to pas...

CVE-2025-23993

creationtimestamp| type| source ---|---|--- 2026-01-08 11:04:30+00:00| seen| https://gist.github.com/Darkcrai86/dcaa77fb0d471bb6845bd247de69bc12 2026-01-08 18:14:03+00:00| seen| Telegram/QyFpM2X3HRwxFyvKWHhAGriV3mvzlfutO8QeREOhFaNbkdw 2026-01-10 03:09:13+00:00| seen|...

CVE-2025-23993

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in RiceTheme Felan Framework felan-framework allows SQL Injection.This issue affects Felan Framework: from n/a through = 1.1.3...

CVE-2023-23993

Cross-Site Request Forgery CSRF vulnerability in LionScripts.Com LionScripts: IP Blocker Lite plugin = 11.1.1 versions...

CVE-2022-23993

/usr/local/www/pkg.php in pfSense CE before 2.6.0 and pfSense Plus before 22.01 uses $REQUEST'pkgfilter' in a PHP echo call, causing XSS...

CVE-2023-23993

creationtimestamp| type| source ---|---|--- 2023-07-10 20:24:10+00:00| seen| https://t.me/cibsecurity/66264...

CVE-2023-23993

CVE-2023-23993 is a CSRF vulnerability in LionScripts: IP Blocker Lite plugin for WordPress, affecting versions <= 11.1.1. The vulnerability allows unauthenticated attackers to perform unintended actions on behalf of an authenticated user; patch status in provided sources is not clearly fixed ...

WordPress IP Blocker Lite Plugin <= 11.1.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software IP Blocker Lite Type Plugin Vulnerable versions = 11.1.1 Fixed in N/A OWASP Top 10 A2: Broken Authentication Classification Cross Site Request Forgery CSRF CVE CVE-2023-23993 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 2e95c38e38bb Credits Mika Required...

Mageia: Security Advisory (MGASA-2021-0189)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-23993

creationtimestamp| type| source ---|---|--- 2022-01-26 22:19:47+00:00| seen| https://t.me/cibsecurity/36338...

CVE-2022-23993

CVE-2022-23993 concerns pfSense CE (pre-2.6.0) and pfSense Plus (pre-22.01). The vulnerability arises from how pfSense serves /usr/local/www/pkg.php, where $_REQUEST['pkg_filter'] is echoed, enabling a cross-site scripting (XSS) condition. The issue is rooted in user input being reflected in a PH...

CVE-2022-23993

/usr/local/www/pkg.php in pfSense CE before 2.6.0 and pfSense Plus before 22.01 uses $REQUEST'pkgfilter' in a PHP echo call, causing XSS...

Ubuntu: Security Advisory (USN-4995-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-23993

CVE-2021-23993 affects Thunderbird: an attacker can cause encryption to fail by crafting an OpenPGP key with a subkey that has an invalid self-signature. When a user imports such a key, Thunderbird may attempt to use the invalid subkey, but the RNP library rejects it, leading to a DoS on sending ...

openSUSE Security Update : MozillaThunderbird (openSUSE-2021-580)

This update for MozillaThunderbird fixes the following issues : - Mozilla Thunderbird was updated to version 78.9.1 MFSA 2021-12,MFSA 2021-13, bsc1183942, bsc1184536 - CVE-2021-23981: Texture upload into an unbound backing buffer resulted in an out-of-bound read - CVE-2021-23982: Internal network...

Debian DSA-4897-1 : thunderbird - security update

Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code or information disclosure. In addition a number of security issues were addressed in the OpenPGP support. C Tenable Network Security, Inc. The descriptive text and package checks in this...

[SECURITY] [DLA 2632-1] thunderbird security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2632-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort April 22, 2021 https://wiki.debian.org/LTS -...

openSUSE: Security Advisory for MozillaThunderbird (openSUSE-SU-2021:0580-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS: Security Advisory for thunderbird (CESA-2021:1192)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...