CVE-2026-28681

creationtimestamp| type| source ---|---|--- 2026-03-06 06:04:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgend7unkc2k 2026-03-06 08:07:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgeu6w36ns2f 2026-03-06 08:09:25+00:00| seen|...

CVE-2021-28681

Pion WebRTC before 3.0.15 didn't properly tear down the DTLS Connection when certificate verification failed. The PeerConnectionState was set to failed, but a user could ignore that and continue to use the PeerConnection. A WebRTC implementation shouldn't allow the user to continue if verificatio...

CVE-2024-28681

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/plusedit.php...

CVE-2022-28681

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

CVE-2023-28681

creationtimestamp| type| source ---|---|--- 2025-02-25 19:23:41+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5352...

CVE-2024-28681

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/plusedit.php...

CVE-2024-28681

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/plusedit.php...

CVE-2024-28681

DedeCMS v5.7 is affected by a Cross-Site Request Forgery (CSRF) vulnerability exposed via the /dede/plus_edit.php endpoint. The issue is documented across multiple sources (NVD, Red Hat, PRION, CNNVD, CVE listing, and OpenVAS) as a CSRF in the DedeCMS 5.7 series; no remote code execution or authe...

CVE-2024-28681

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/plusedit.php...

CVE-2023-28681

Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

CVE-2023-28681

CVE-2023-28681 affects Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier. The vulnerability arises because the plugin’s XML parser is not configured to prevent XML external entity (XXE) attacks, which can allow an attacker to cause the Jenkins controller/server-side processing to reveal s...

CVE-2023-28681

Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

CVE-2023-28681

Jenkins Visual Studio Code Metrics Plugin 1.7 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

CVE-2022-28681

creationtimestamp| type| source ---|---|--- 2022-07-18 22:39:58+00:00| seen| https://t.me/cibsecurity/46495...

CVE-2022-28681

CVE-2022-28681 affects Foxit PDF Reader 11.2.1.53537. The flaw is in the deletePages method: JavaScript actions can read past the end of an allocated object, and, with other vulnerabilities, may enable code execution in the process context. Exploitation requires user interaction (visiting a malic...

KLA12530 Multiple vulnerabilities in Foxit Reader

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability can be exploited remotely ...

CVE-2021-28681

creationtimestamp| type| source ---|---|--- 2021-03-18 06:36:54+00:00| seen| https://t.me/cibsecurity/25075...

CVE-2021-28681

CVE-2021-28681 affects Pion WebRTC before 3.0.15. The vulnerability arises when a DTLS connection isn’t properly torn down after certificate verification fails; the PeerConnectionState is set to failed, but a user could continue to use the PeerConnection. Impact reported: data channel communicati...