14 matches found
MAL-2025-28440 Malicious code in orange-victor-juliet-azolk (npm)
The package orange-victor-juliet-azolk was found to contain malicious code...
CVE-2022-28440
An arbitrary file upload vulnerability in UCMS v1.6 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2023-28440
creationtimestamp| type| source ---|---|--- 2023-04-19 00:29:26+00:00| seen| https://t.me/cibsecurity/62388...
CVE-2023-28440
CVE-2023-28440 affects Discourse: an admin-authenticated request can trigger a long-running operation, leading to a denial of service (availability impact) in affected builds. Public records identify the vulnerability as a Denial of Service via the admin theme import route, with mitigation by upg...
CVE-2023-28440 Denial of service via admin theme import route in Discourse
Discourse is an open source platform for community discussion. In affected versions a maliciously crafted request from a Discourse administrator can lead to a long-running request and eventual timeout. This has the greatest potential impact in shared hosting environments where admins are untruste...
CVE-2023-28440 Denial of service via admin theme import route in Discourse
Discourse is an open source platform for community discussion. In affected versions a maliciously crafted request from a Discourse administrator can lead to a long-running request and eventual timeout. This has the greatest potential impact in shared hosting environments where admins are untruste...
CVE-2021-28440
Windows Installer Elevation of Privilege Vulnerability...
CVE-2021-28440
Technical details about CVE-2021-28440 are not publicly provided in the supplied documents. No affected products, root cause, exploit status, or remediation specifics are included here. Monitor for updates in connected sources.
KB5001389: Windows Server 2008 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...
KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...
CVE-2020-28440
creationtimestamp| type| source ---|---|--- 2020-12-11 20:35:47+00:00| seen| https://t.me/cibsecurity/20361 2020-12-11 20:46:05+00:00| seen| https://t.me/cibsecurity/20381 2020-12-11 21:25:19+00:00| seen| https://t.me/cibsecurity/20400 2020-12-11 22:04:39+00:00| seen| https://t.me/cibsecurity/204...
CVE-2020-28440
All versions of package corenlp-js-interface are vulnerable to Command Injection via the main function...
CVE-2020-28440
CVE-2020-28440 affects the npm package corenlp-js-interface . All versions are vulnerable to Command Injection via the main function . Public sources (SNYK, NVD, CVE records) describe that a crafted input can be executed by the package when invoked through its main entry. The SNYK entry provides ...
CVE-2020-28440 Command Injection
All versions of package corenlp-js-interface are vulnerable to Command Injection via the main function...