20 matches found
CVE-2026-28353
creationtimestamp| type| source ---|---|--- 2026-03-07 10:34:06+00:00| seen| https://bsky.app/profile/secqube.com/post/3mghmurimoz27 2026-05-19 18:03:18+00:00| seen| https://bsky.app/profile/astral100.bsky.social/post/3mm7xzamcq72w 2026-05-20 02:49:55+00:00| seen|...
CVE-2026-28353
Trivy Vulnerability Scanner is a VS Code extension that helps find vulnerabilities. In Trivy VSCode Extension version 1.8.12, which was distributed via OpenVSX marketplace was compromised and contained malicious code designed to leverage local AI coding agent to collect and exfiltrate sensitive...
CVE-2024-28353
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smbadminname in the apply.cgi interface, thereby gaining root shell privileges...
CVE-2022-28353
In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL aka external.php?url= is vulnerable to XSS...
CVE-2024-28353
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smbadminname in the apply.cgi interface, thereby gaining root shell privileges...
CVE-2024-28353
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smbadminname in the apply.cgi interface, thereby gaining root shell privileges...
CVE-2024-28353
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands into the post request parameters usapps.config.smbadminname in the apply.cgi interface, thereby gaining root shell privileges...
CVE-2024-28353
CVE-2024-28353 affects the TRENDnet TEW-827DRU router (firmware 2.10B01). The issue is a command injection in the apply.cgi interface where an attacker can inject commands through the post parameter usapps.config.smb_admin_name, potentially gaining root shell privileges. Connected sources confirm...
CVE-2023-28353
CVE-2023-28353 affects Faronics Insight 10.0.19045 on Windows. An unauthenticated attacker can upload arbitrary files to any location on the Teacher Console computer, enabling multiple exploitation paths including achievable code execution and the potential to chain with other flaws to run a DLL ...
CVE-2022-28353
creationtimestamp| type| source ---|---|--- 2023-04-16 07:27:22+00:00| seen| https://t.me/cibsecurity/62253...
CVE-2022-28353
In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL aka external.php?url= is vulnerable to XSS...
CVE-2022-28353
In the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL aka external.php?url= is vulnerable to XSS...
CVE-2022-28353
The CVE-2022-28353 entry concerns the MyBB External Redirect Warning Plugin (version 1.3). The vulnerability is an XSS in the redirect URL parameter external.php?url=, allowing injected scripts when users follow the redirect. The affected component is the redirect handling code for external.php, ...
MyBB External Redirect Warning 1.3 Cross Site Scripting
Exploit Title: MyBB External Redirect Warning Plugin 1.3 – Cross-Site Scripting Date: February 1, 2021 Author: 0xB9 Twitter: @0xB9sec Software Link: https://community.mybb.com/mods.php?action=view&pid=493 Version: 1.3 Tested On: Windows 10 CVE: CVE-2022-28353 Description: This plugin notifies the...
CVE-2021-28353
Remote Procedure Call Runtime Remote Code Execution Vulnerability...
CVE-2021-28353
Technical details for CVE-2021-28353 are not provided in the connected documents. Monitor for updates; no public details (impact, affected products, or remediation) are included in the supplied material.
CVE-2021-28353 Remote Procedure Call Runtime Remote Code Execution Vulnerability
...
KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...
KB5001389: Windows Server 2008 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...
KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...