18 matches found
CVE-2025-28869
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in shauno NextGEN Gallery Voting nextgen-gallery-voting allows Reflected XSS.This issue affects NextGEN Gallery Voting: from n/a through = 2.7.6...
CVE-2025-28869 WordPress NextGEN Gallery Voting plugin <= 2.7.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in shauno NextGEN Gallery Voting nextgen-gallery-voting allows Reflected XSS.This issue affects NextGEN Gallery Voting: from n/a through = 2.7.6...
CVE-2025-28869 WordPress NextGEN Gallery Voting plugin <= 2.7.6 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in shauno NextGEN Gallery Voting nextgen-gallery-voting allows Reflected XSS.This issue affects NextGEN Gallery Voting: from n/a through = 2.7.6...
CVE-2025-28869
NextGEN Gallery Voting has a Reflected XSS vulnerability (CVE-2025-28869) that affects NextGEN Gallery Voting: from n/a through 2.7.6. The description specifies improper neutralization of input during web page generation as the root cause. The connected documents do not provide technical details ...
CVE-2024-28869 vulnerabilities
Vulnerabilities for packages: traefik...
CVE-2024-28869
Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of...
CVE-2024-28869 vulnerabilities
Vulnerabilities for packages: traefik-fips, traefik...
CVE-2024-28869 Possible denial of service vulnerability with Content-length header in Traefik
Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of...
CVE-2024-28869 Possible denial of service vulnerability with Content-length header in Traefik
Traefik is an HTTP reverse proxy and load balancer. In affected versions sending a GET request to any Traefik endpoint with the "Content-length" request header results in an indefinite hang with the default configuration. This vulnerability can be exploited by attackers to induce a denial of...
CVE-2024-28869
Technical details about CVE-2024-28869 are not publicly available in the provided Connected documents. The initial description lists vulnerable Traefik versions and fixes, but no additional technical specifics or exploit information are present here. Monitor for updates.
CVE-2023-28869
creationtimestamp| type| source ---|---|--- 2024-01-01 08:26:45+00:00| seen| https://t.me/ctinow/161228...
CVE-2023-28869
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28869
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28869
The CVE affects NCP Secure Enterprise Client, specifically versions prior to 12.22, where the Support Assistant feature can be abused to read arbitrary files by creating a symbolic link. The underlying issue is tied to the Support Assistant component in the client, enabling an attacker with netwo...
CVE-2023-28869
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
CVE-2023-28869
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link...
CVE-2022-28869 Address Bar Spoofing Vulnerability in F-Secure SAFE Browser for Android
A vulnerability affecting F-Secure SAFE browser was discovered. A maliciously crafted website could make a phishing attack with address bar spoofing as the browser did not show full URL, such as port number...
CVE-2022-28869
CVE-2022-28869 affects F-Secure SAFE browser (Android in CVE records) where the browser does not display the full URL, such as the port number, enabling address-bar spoofing. This could allow phishing attacks via malicious sites exploiting the UI omission. The vulnerability description consistent...