CVE-2026-2778

creationtimestamp| type| source ---|---|--- 2026-02-25 00:02:18+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfnevqoyme27 2026-02-28 02:01:54+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfv4yf4dfo2t...

CVE-2026-2778

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component...

DEBIAN-CVE-2026-2778

Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

MiracleLinux 8 : java-11-openjdk-11.0.7.10-1.el8 (AXSA:2020-214:06)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-214:06 advisory. OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 OpenJDK: Incorrect type checks in MethodType.readObject Libraries,...

ECHO-7061-2778-31E0

Bulletin has no description...

CVE-2024-2778

A vulnerability was found in Campcodes Online Marriage Registration System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be launched...

CVE-2022-2778

In affected versions of Octopus Deploy it is possible to bypass rate limiting on login using null bytes...

CVE-2010-2778

Cross-site scripting XSS vulnerability in WebAccess in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to inject arbitrary web script or HTML via a crafted message, related to a "Javascript XSS exploit."...

CVE-2025-2778

creationtimestamp| type| source ---|---|--- 2025-05-07 14:15:11+00:00| seen| https://infosec.exchange/users/shadowserver/statuses/114466967388160257 2025-05-07 14:16:50+00:00| seen| https://bsky.app/profile/shadowserver.bsky.social/post/3lolll3ln2k2p 2025-05-07 14:16:52+00:00| seen|...

AlmaLinux 8 : nodejs:20 (ALSA-2024:2778)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:2778 advisory. c-ares: Out of bounds read in aresreadline CVE-2024-25629 nghttp2: CONTINUATION frames DoS CVE-2024-28182 nodejs: using the fetch function to retrieve...

CVE-2024-2778

CVE-2024-2778 affects Campcodes Online Marriage Registration System 1.0, specifically the /admin/search.php endpoint. The vulnerability arises from unsanitized input in the searchdata parameter, enabling cross-site scripting (XSS). Exploitation may be performed remotely and the exploit has been d...

CVE-2023-2778 Rockwell Automation FactoryTalk Transaction Manager Vulnerable to Denial-Of-Service

A denial-of-service vulnerability exists in Rockwell Automation FactoryTalk Transaction Manager. This vulnerability can be exploited by sending a modified packet to port 400. If exploited, the application could potentially crash or experience a high CPU or memory usage condition, causing...

CVE-2023-2778

CVE-2023-2778 affects Rockwell Automation’s FactoryTalk Transaction Manager . A denial-of-service vulnerability exists due to handling of access to port 400, allowing a remote attacker to send a modified packet that can cause the application to crash or consume excessive CPU/memory, leading to in...

CVE-2023-2778 Rockwell Automation FactoryTalk Transaction Manager Vulnerable to Denial-Of-Service

A denial-of-service vulnerability exists in Rockwell Automation FactoryTalk Transaction Manager. This vulnerability can be exploited by sending a modified packet to port 400. If exploited, the application could potentially crash or experience a high CPU or memory usage condition, causing...

Rockwell Automation FactoryTalk Transaction Manager

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: FactoryTalk Transaction Manager Vulnerability: Uncontrolled Resource Consumption. 2. RISK EVALUATION Successful exploitation of this vulnerability could cause the...

SUSE CVE-2006-2778

The crypto.signText function in Mozilla Firefox and Thunderbird before 1.5.0.4 allows remote attackers to execute arbitrary code via certain optional Certificate Authority name arguments, which causes an invalid array index and triggers a buffer overflow...

SUSE CVE-2019-2778

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.7.26 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

CVE-2022-2778

In affected versions of Octopus Deploy it is possible to bypass rate limiting on login using null bytes...

CVE-2022-2778

CVE-2022-2778 affects Octopus Deploy. The connected documents describe a vulnerability that allows bypassing login rate limiting by using null bytes, enabling potential repeated login attempts without proper throttling. The description consistently ties this to Octopus Deploy implementations and ...

CVE-2022-2778

In affected versions of Octopus Deploy it is possible to bypass rate limiting on login using null bytes...