CVE-2026-28454

OpenClaw versions prior to 2026.2.2 fail to validate webhook secrets in Telegram webhook mode must be enabled, allowing unauthenticated HTTP POST requests to the webhook endpoint that trust attacker-controlled JSON payloads. Remote attackers can forge Telegram updates by spoofing message.from.id...

CVE-2026-28454

creationtimestamp| type| source ---|---|--- 2026-03-06 12:01:04+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgfbbeyupb2h...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-28454 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-28454 Source advisory: OSV:GHSA-FHVM-J76F-QMJV...

CVE-2022-28454

Limbas 4.3.36.1319 is vulnerable to Cross Site Scripting XSS...

CVE-2023-28454

creationtimestamp| type| source ---|---|--- 2024-07-27 18:04:50+00:00| seen| Telegram/jHCDPEpVRgq5D6laer-oTMtl5KFvgMyq4zL2NDeZWOt9o...

Security Updates for Microsoft Office Products C2R (April 2021)

The Microsoft office Product is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Office Remote Code Execution Vulnerability CVE-2021-28449 - Microsoft Word Remote Code Execution Vulnerability CVE-2021-28453 - Microsoft Excel Remote Code Execution...

CVE-2022-28454

Limbas 4.3.36.1319 is vulnerable to Cross Site Scripting XSS...

CVE-2022-28454

Limbas 4.3.36.1319 is vulnerable to Cross Site Scripting XSS...

CVE-2022-28454

creationtimestamp| type| source ---|---|--- 2022-04-28 01:28:33+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2056 2022-04-29 00:29:22+00:00| seen| https://t.me/cibsecurity/41609...

Security Updates for Microsoft Office Online Server and Microsoft Office Web Apps (April 2021)

The Microsoft Office Web Apps installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists. An unauthenticated, local attacker can exploit this to bypass authentication and execute unauthorized...

CVE-2021-28454

CVE-2021-28454 = Microsoft Excel Remote Code Execution Vulnerability in Office suites. Root cause described as a vulnerability in Excel that allows code execution with the privileges of the logged-in user (UI: REQUIRED, vector: LOCAL). Affected products include various Office versions that includ...

Description of the security update for Excel 2013: April 13, 2021 (KB4504735)

Description of the security update for Excel 2013: April 13, 2021 KB4504735 Note: There may be some side effects after you install this update. For more information, see KB5003251. Summary This security update resolves a Microsoft Excel information disclosure vulnerability, and Excel Remote Code...

Security Updates for Microsoft Excel Products (April 2021)

The Microsoft Excel Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - Microsoft Office Remote Code Execution Vulnerability CVE-2021-28449 - Microsoft Excel Remote Code Execution Vulnerability CVE-2021-28451, CVE-2021-28454, CVE-2021-28456 Note that...