CVE-2026-28090

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Gamezone gamezone allows PHP Local File Inclusion.This issue affects Gamezone: from n/a through = 1.1.11...

CVE-2025-28090

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF in the Collection Custom Interface feature...

CVE-2025-28090

creationtimestamp| type| source ---|---|--- 2025-03-29 00:26:56+00:00| seen| https://t.me/cvedetector/21479 2025-03-31 19:31:01+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9741 2025-03-31 21:49:01+00:00| seen|...

CVE-2025-28090

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF in the Collection Custom Interface feature...

CVE-2025-28090

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF in the Collection Custom Interface feature...

CVE-2025-28090

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery SSRF in the Collection Custom Interface feature...

CVE-2025-28090

CVE-2025-28090 affects maccms10 v2025.1000.4047 with a Server-Side Request Forgery (SSRF) in the Collection Custom Interface feature. Root cause is an SSRF in that feature, enabling the server to make unintended requests. CVSS 3.1 base score 9.1 (CRITICAL) with network attack vector, no user inte...

CVE-2024-28090

The CVE-2024-28090 issue affects Technicolor TC8715D devices (TC8715D-01.EF.04.38.00-180405-S-FF9-D) where a remote attacker in Wi‑Fi proximity can exploit a stored XSS in the dyn_dns.asp page via the User name field. Reported by multiple sources (NVD/NVD-derived descriptions, CNVD, Red Hat, CNVD...

CVE-2023-28090

creationtimestamp| type| source ---|---|--- 2023-04-25 22:25:16+00:00| seen| https://t.me/cibsecurity/62832 2025-02-06 02:39:19+00:00| seen| Telegram/oTYfMNeDe0a117QqszsX0eIz9jUj7IaVXZSSXsoExlcOgeX...

CVE-2023-28090

An HPE OneView appliance dump may expose SNMPv3 read credentials...

openSUSE: Security Advisory for tor (openSUSE-SU-2021:0461-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for tor (moderate)

openSUSE Security Update: Security update for tor Announcement ID: openSUSE-SU-2021:0474-1 Rating: moderate References: 1183726 Cross-References: CVE-2021-28089 CVE-2021-28090 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes two vulnerabilities is now available. Description:...

Fedora 33 : tor (2021-e68317166d)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-e68317166d advisory. - Tor before 0.4.5.7 allows a remote participant in the Tor directory protocol to exhaust CPU resources on a target, aka TROVE-2021-001...

openSUSE Security Update : tor (openSUSE-2021-461)

This update for tor fixes the following issues : tor was updated to 0.4.5.7 - https://lists.torproject.org/pipermail/tor-announce/2021-March/000216.html - Fix 2 denial of service security issues boo1183726 + Disable the dumpdesc function that we used to dump unparseable information to disk...

Fedora: Security Advisory for tor (FEDORA-2021-e68317166d)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-28090

Tor before 0.4.5.7 allows a remote attacker to cause Tor directory authorities to exit with an assertion failure, aka TROVE-2021-002...

CVE-2021-28090

Tor before 0.4.5.7 allows a remote attacker to cause Tor directory authorities to exit with an assertion failure, aka TROVE-2021-002...

CVE-2021-28090

CVE-2021-28090 affects Tor up to version 0.4.5.7, where a bug in appending detached signatures to a pending consensus document could be exploited to crash a directory authority via an assertion failure (TROVE-2021-002). Open-source advisories and Nessus/Gentoo/OpenSUSE entries confirm this and re...

[SECURITY] [DSA 4871-1] tor security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4871-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 16, 2021 https://www.debian.org/security/faq -...