CVE-2026-25956

Frappe is a full-stack web application framework. Prior to 14.99.14 and 15.94.0, an attacker could craft a malicious signup URL for a frappe site which could lead to an open redirect or reflected XSS, depending on the crafted payload when a user signs up. This vulnerability is fixed in 14.99.14 a...

CVE-2024-25956

Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...

CVE-2023-25956

creationtimestamp| type| source ---|---|--- 2023-02-24 14:49:21+00:00| seen| https://t.me/cibsecurity/58868 2023-02-24 21:27:53+00:00| seen| Telegram/Lw7u-Xk6xSteuBiwyNzWX2LNGzfySroFN8WyCw6GBv2i6to...

CVE-2023-25956

Generation of Error Message Containing Sensitive Information vulnerability in the Apache Airflow AWS Provider. This issue affects Apache Airflow AWS Provider versions before 7.2.1...

CVE-2023-25956

The CVE-2023-25956 issue is a vulnerability in the Apache Airflow AWS Provider (pre-7.2.1) described as a generation of an error message that contains sensitive information, leading to information disclosure. Multiple connected sources corroborate affected versions (

CVE-2021-25956

creationtimestamp| type| source ---|---|--- 2021-08-17 18:15:47+00:00| seen| https://t.me/cibsecurity/27426...

CVE-2021-25956

Dolibarr vulnerability CVE-2021-25956 affects Dolibarr versions 3.3.beta1_20121221 through 13.0.2. The issue arises when admin users with Modify access can change other users’ details but the system fails to validate an existing Login name during renaming, allowing the password for a similarly na...