111 matches found
CVE-2026-2680
creationtimestamp| type| source ---|---|--- 2026-02-26 16:22:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfrm64by7w2o...
CVE-2026-2680 Multiple vulnerabilities in A3factura software
Reflected Cross-Site Scripting XSS on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.wolterskluwer.es//incomes/salesDeliveryNotes' endpoint, which could allow an attacker to execute arbitrary code in the victim's browser...
MiracleLinux 9 : qemu-kvm-8.0.0-16.el9.1.ML.1 (AXSA:2023-7001:07)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7001:07 advisory. QEMU: hcd-ehci: DMA reentrancy issue incomplete fix for CVE-2021-3750 CVE-2023-2680 Tenable has extracted the preceding description block directly from the...
CVE-2019-2680
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.28 and prior to 6.0.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...
CVE-2017-2680
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment Layer 2. Human interaction is required to recover the systems. PROFIBUS interfaces are not affected...
EUVD-2019-8850
Malware in sbrugna...
EUVD-2019-8851
Malware in sbrugna...
EUVD-2019-8848
Malware in sbrugna...
EUVD-2019-8852
Malware in sbrugna...
EUVD-2019-8849
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-2680
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.2.28 and...
CVE-2020-2680
Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While th...
CVE-2019-19224
A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to download the configuration binary file settings by submitting a rom-0 GET request without being authenticated on the admin interface...
CVE-2019-19226
A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to enable or disable MAC address filtering by submitting a crafted Forms/WlanMacFilter1 POST request without being authenticated on the admin interface...
CVE-2019-19225
A Broken Access Control vulnerability in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an attacker to change DNS servers without being authenticated on the admin interface by submitting a crafted Forms/dns1 POST request...
CVE-2019-19222
A Stored XSS issue in the D-Link DSL-2680 web administration interface Firmware EU1.03 allows an authenticated attacker to inject arbitrary JavaScript code into the info.html administration page by sending a crafted Forms/wirelessautonetwork1 POST request...
CVE-2025-2680 PHPGurukul Bank Locker Management System edit-assign-locker.php sql injection
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /edit-assign-locker.php?ltid=1. The manipulation of the argument mobilenumber leads to sql injection. The attack can ...
CVE-2025-2680
PHPGurukul Bank Locker Management System 1.0 is affected by a SQL injection in the file /edit-assign-locker.php?ltid=1, caused by improper handling of the mobilenumber parameter. The vulnerability is exploitable remotely, and public exploits have been disclosed. No remediation details are provide...
Linux Distros Unpatched Vulnerability : CVE-2004-2680
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - modpython libapache2-mod-python 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to...
Amazon Linux 2 : python-idna (ALAS-2024-2680)
The version of python-idna installed on the remote host is prior to 2.4-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2680 advisory. python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode CVE-2024-3651 Tenable has extract...