19 matches found
PT-2026-46955
Six live production platforms were compromised during responsible disclosure testing. LiteLLM CVE-2026-30623, Critical, patched, Windsurf CVE-2026-30615, Critical, reported, Bisheng CVE-2026-33224, Critical, patched, and DocsGPT CVE-2026-26015, Critical, patched…...
PT-2026-34552
CVE-2026-30623 vulnerability via Anthropic's MCP SDK has been fixed since v1.83.6-nightly. Please refer to our blog post for more details. https://t.co/ImGk2mGYug...
EUVD-2021-17543
Malware in sbrugna...
CVE-2024-30623
Tenda FH1205 v2.0.0.7775 has a stack overflow vulnerability in the page parameter from fromDhcpListClient function...
CVE-2025-30623
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rachel Cherry wA11y – The Web Accessibility Toolbox wa11y allows Stored XSS.This issue affects wA11y – The Web Accessibility Toolbox: from n/a through = 1.0.3...
CVE-2024-30623
Tenda FH1205 v2.0.0.7775 has a stack overflow vulnerability in the page parameter from fromDhcpListClient function...
CVE-2023-30623
creationtimestamp| type| source ---|---|--- 2023-04-25 02:35:45+00:00| published-proof-of-concept| https://t.me/cibsecurity/62782...
CVE-2023-30623 Arbitrary command injection in embano1/wip
embano1/wip is a GitHub Action written in Bash. Prior to version 2, the embano1/wip action uses the github.event.pullrequest.title parameter in an insecure way. The title parameter is used in a run statement - resulting in a command injection vulnerability due to string interpolation. This...
CVE-2023-30623
CVE-2023-30623 concerns the GitHub Action embano1/wip (Bash). Before version 2, it insecurely uses the PR title from github.event.pull_request.title in a run statement, enabling command injection via string interpolation. This can let an attacker who creates a PR trigger code execution on GitHub ...
CVE-2022-30623
creationtimestamp| type| source ---|---|--- 2022-07-18 16:36:19+00:00| seen| https://t.me/cibsecurity/46436...
CVE-2022-30623 Chcnav - P5E GNSS Authentication bypass
The server checks the user's cookie in a non-standard way, and a value is entered in the cookie value name of the status and its value is set to true to bypass the identification with the system using a username and password...
CVE-2022-30623
CVE-2022-30623 affects Chcnav P5E GNSS. The vulnerability arises from non-standard cookie handling: an attacker can set a cookie value name (status) to true to bypass system authentication (username/password). This results in authentication bypass with impacts described as high confidentiality, i...
CVE-2021-30623
Chromium: CVE-2021-30623 Use after free in Bookmarks...
CVE-2021-30623
Chromium: CVE-2021-30623 Use after free in Bookmarks...
UBUNTU-CVE-2021-30623
Chromium: CVE-2021-30623 Use after free in Bookmarks...
CVE-2021-30623
CVE-2021-30623 is a use-after-free in Chromium's Bookmarks code. The connected feeds identify Chromium/Chromium-based Chrome involvement and note the issue among Chrome security fixes; one Fedora entry references a chromium update addressing this family of fixes. The materials do not provide expl...
CVE-2021-30623
Chromium: CVE-2021-30623 Use after free in Bookmarks...
Chromium: CVE-2021-30623 Use after free in Bookmarks
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
KLA12270 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use after...