CVE-2026-2731

creationtimestamp| type| source ---|---|--- 2026-02-20 03:27:16+00:00| seen| https://bsky.app/profile/cyber-news-fi.bsky.social/post/3mfb5zqtokv2h...

CVE-2024-2731

Users with low privileges all permissions deselected in the administrator permissions settings can view certain pages that expose sensitive information such as company names, users' names and surnames, stage names, and monitoring campaigns and their descriptions. In addition, unprivileged users c...

CVE-2022-2731

Cross-site Scripting XSS - Reflected in GitHub repository openemr/openemr prior to 7.0.0.1...

CVE-2025-2731

creationtimestamp| type| source ---|---|--- 2025-03-25 04:23:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8590 2025-03-25 04:48:25+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114221259483812837 2025-03-25 05:00:34+00:00|...

CVE-2025-2731 H3C Magic BE18000 HTTP POST Request getDualbandSync command injection

A vulnerability was found in H3C Magic NX15, Magic NX30 Pro, Magic NX400, Magic R3010 and Magic BE18000 up to V100R014. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/wizard/getDualbandSync of the component HTTP POST Request Handler...

Advisory ROSA-SA-2025-2731

Software: PackageKit 1.1.12 OS: ROSA Virtualization 3.0 packageevrstring: PackageKit-1.1.12-7.0.1.rv30 CVE-ID: CVE-2024-0217 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A use-after-free vulnerability in PackageKitd allows an attacker to access freed memory and potentially execute arbitrary code...

CVE-2013-2731

creationtimestamp| type| source ---|---|--- 2025-02-14 21:08:31+00:00| seen| Telegram/1NSIX1wu2gyUOfYjusC-VT-KGW0oSSja3s2e2DaPm70aZ1Y9...

MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass', 'Description' = %q This module bypasses basic authentication for Internet Informatio...

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHEL 9 : Red Hat OpenStack Platform 17.1 (python-django) (RHSA-2024:2731)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:2731 advisory. Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as...

CVE-2024-2731

creationtimestamp| type| source ---|---|--- 2024-04-12 10:00:49+00:00| seen| https://t.me/arpsyndicate/4584...

CVE-2024-2731 Improper Access Control Issues Lead to Sensitive Data Exposure in Mautic

Users with low privileges all permissions deselected in the administrator permissions settings can view certain pages that expose sensitive information such as company names, users' names and surnames, stage names, and monitoring campaigns and their descriptions. In addition, unprivileged users c...

CVE-2024-2731 Improper Access Control Issues Lead to Sensitive Data Exposure in Mautic

Users with low privileges all permissions deselected in the administrator permissions settings can view certain pages that expose sensitive information such as company names, users' names and surnames, stage names, and monitoring campaigns and their descriptions. In addition, unprivileged users c...

EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2023-2729)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local...

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-2652)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to cra...

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-2694)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A NULL pointer dereference flaw was found in Libtiff's LZWDecode function in the libtiff/tiflzw.c file. This flaw allows a local attacker to cra...

SUSE: Security Advisory (SUSE-SU-2023:4869-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:4869-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2023-2731: Fix null pointer deference in LZWDecode bsc1211478. - CVE-2023-1916: Fix out-of-bounds read in extractImageSection bsc1210231. - CVE-2023-26965: Fix heap-based use after free in loadImage bsc1212398. - CVE-2022-40090: Fix infinite...

SUSE: Security Advisory (SUSE-SU-2023:4736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libtiff security update

4.4.0-10 - Fix CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 - Resolves: CVE-2023-26965 CVE-2023-3316 CVE-2023-26966 CVE-2023-3576 4.4.0-9 - Fix CVE-2023-2731 - Resolves: CVE-2023-2731...