85 matches found
MINI-2428-MRC6-PFW6
Bulletin has no description...
CVE-2026-2428
creationtimestamp| type| source ---|---|--- 2026-02-27 04:25:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfsujguooy2h 2026-02-27 04:25:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfsukebi762k 2026-02-27 05:23:59+00:00| seen|...
EUVD-2015-7727
Malware in sbrugna...
EUVD-2025-2428
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2016-2428
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libAACdec/src/aacdecdrc.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-05-01 does not properly limi...
CVE-2025-2428
creationtimestamp| type| source ---|---|--- 2025-07-10 09:25:23+00:00| seen| https://poliverso.org/objects/0477a01e-4ebdede6-5217a3193b0d7a46...
CVE-2023-2428
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2012-2428
Integer overflow in the server in xArrow before 3.4.1 allows remote attackers to execute arbitrary code via a crafted packet that triggers an out-of-bounds read operation...
SUSE CVE-2011-2428
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service browser crash via unspecified vectors, related to a "logic error issue."...
Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2024-2428)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CGA-2428-2RR3-5X8W
Bulletin has no description...
Advisory ROSA-SA-2024-2428
software: djvulibre 3.5.28 WASP: ROSA-CHROME packageevrstring: djvulibre-3.5.28-4 CVE-ID: CVE-2021-3500 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A flaw was discovered in djvulibre. A stack overflow in DJVU::DjVuDocument::getdjvufile via a created djvu file may cause the application to crash and...
CVE-2024-2428 The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS
The Ultimate Video Player For WordPress WordPress plugin before 2.2.3 does not have proper capability check when updating its settings via a REST route, allowing Contributor and above users to update them. Furthermore, due to the lack of escaping in one of the settings, this also allows them to...
CVE-2024-2428 The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS
The Ultimate Video Player For WordPress WordPress plugin before 2.2.3 does not have proper capability check when updating its settings via a REST route, allowing Contributor and above users to update them. Furthermore, due to the lack of escaping in one of the settings, this also allows them to...
Amazon Linux 2 : dbus (ALAS-2024-2428)
The version of dbus installed on the remote host is prior to 1.10.24-7. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2428 advisory. D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon...
GitLab 15.0 < 15.1.6 / 15.2 < 15.2.4 / 15.3 < 15.3.2 (CVE-2022-2428)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A crafted tag in the Jupyter Notebook viewer in GitLab EE/CE affecting all versions before 15.1.6, 15.2 to 15.2.4, and 15.3 to 15.3.2 allows an attacker to issue arbitrary HTTP requests CVE-2022-2428...
CVE-2023-2428
creationtimestamp| type| source ---|---|--- 2023-04-30 07:28:28+00:00| seen| https://t.me/cibsecurity/63117 2025-01-30 19:12:34+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/3506...
CVE-2023-2428 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.13...
CVE-2023-2428
This CVE refers to phpMyFAQ prior to version 3.1.13, where a stored XSS vulnerability exists in the name field of the add question module in thorsten/phpmyfaq. The underlying issue is a stored XSS in user-supplied input that is kept in the database and rendered without proper sanitization, enabli...
SUSE CVE-2015-7829
Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows mishandle junctions in the Synchronizer directory, which allows attackers to delete...