86 matches found
MINI-PR2C-2428-65R8
Bulletin has no description...
MINI-2428-MRC6-PFW6
Bulletin has no description...
CVE-2026-2428
creationtimestamp| type| source ---|---|--- 2026-02-27 04:25:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfsujguooy2h 2026-02-27 04:25:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfsukebi762k 2026-02-27 05:23:59+00:00| seen|...
EUVD-2015-7727
Malware in sbrugna...
EUVD-2025-2428
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-2428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libAACdec/src/aacdecdrc.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not properly limi...
CVE-2025-2428
creationtimestamp| type| source ---|---|--- 2025-07-10 09:25:23+00:00| seen| https://poliverso.org/objects/0477a01e-4ebdede6-5217a3193b0d7a46...
CVE-2023-2428
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2012-2428
Integer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via a crafted packet that triggers an out-of-bounds read operation...
SUSE CVE-2011-2428
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service browser crash via unspecified vectors, related to a "logic error issue."...
Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2024-2428)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CGA-2428-2RR3-5X8W
Bulletin has no description...
Advisory ROSA-SA-2024-2428
software: djvulibre 3.5.28 WASP: ROSA-CHROME packageevrstring: djvulibre-3.5.28-4 CVE-ID: CVE-2021-3500 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A flaw was discovered in djvulibre. A stack overflow in DJVU::DjVuDocument::getdjvufile via a created djvu file may cause the application to crash and...
CVE-2024-2428 The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS
The Ultimate Video Player For WordPress WordPress plugin before 2.2.3 does not have proper capability check when updating its settings via a REST route, allowing Contributor and above users to update them. Furthermore, due to the lack of escaping in one of the settings, this also allows them to...
CVE-2024-2428 The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS
The Ultimate Video Player For WordPress WordPress plugin before 2.2.3 does not have proper capability check when updating its settings via a REST route, allowing Contributor and above users to update them. Furthermore, due to the lack of escaping in one of the settings, this also allows them to...
Amazon Linux 2 : dbus (ALAS-2024-2428)
The version of dbus installed on the remote host is prior to 1.10.24-7. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2428 advisory. D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon...
GitLab 15.0 < 15.1.6 / 15.2 < 15.2.4 / 15.3 < 15.3.2 (CVE-2022-2428)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issue arbitrary HTTP requests CVE-2022-2428...
CVE-2023-2428
creationtimestamp| type| source ---|---|--- 2023-04-30 07:28:28+00:00| seen| https://t.me/cibsecurity/63117 2025-01-30 19:12:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3506...
CVE-2023-2428 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2023-2428
This CVE refers to phpMyFAQ prior to version 3.1.13, where a stored XSS vulnerability exists in the name field of the add question module in thorsten/phpmyfaq. The underlying issue is a stored XSS in user-supplied input that is kept in the database and rendered without proper sanitization, enabli...