15 matches found
CVE-2026-28355
creationtimestamp| type| source ---|---|--- 2026-02-27 23:33:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfuuo7pufx2y...
CVE-2026-28355 "PWA" Canarytoken Vulnerable to Stored Self Cross-Site Scripting
Canarytokens help track activity and actions on a network. Versions prior to sha-7ff0e12 have a Self Cross-Site Scripting vulnerability in the "PWA" Canarytoken, whereby the Canarytoken's creator can attack themselves or someone they share the link with. The creator of a PWA Canarytoken can inser...
CVE-2022-28355
randomUUID in Scala.js before 1.10.0 generates predictable values...
CVE-2025-28355
Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery CSRF allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none...
CVE-2025-28355
Volmarg Personal Management System 1.4.65 is vulnerable to Cross Site Request Forgery CSRF allowing attackers to execute arbitrary code and obtain sensitive information via the SameSite cookie attribute defaults value set to none...
CVE-2022-28355
creationtimestamp| type| source ---|---|--- 2022-04-03 00:20:58+00:00| seen| https://t.me/cibsecurity/40065...
CVE-2022-28355
randomUUID in Scala.js before 1.10.0 generates predictable values...
CVE-2022-28355
randomUUID in Scala.js before 1.10.0 generates predictable values...
CVE-2022-28355
CVE-2022-28355 concerns Scala.js prior to 1.10.0, where randomUUID generates predictable values due to insecure encryption in the randomUUID implementation. The vulnerability affects Scala.js’s code generation/runtime relying on UUID generation. The publicly documented fix is to upgrade to Scala....
CVE-2021-28355 Remote Procedure Call Runtime Remote Code Execution Vulnerability
...
CVE-2021-28355
Technical details for CVE-2021-28355 are not publicly available in the provided documents; monitor for updates.
KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...
KB5001342: Windows 10 version 1809 / Windows Server 2019 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072, CVE-2021-28310 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Windows Event Tracing Elevati...
KB5001389: Windows Server 2008 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...