26 matches found
CVE-2026-35230
creationtimestamp| type| source ---|---|--- 2026-04-21 23:24:04+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk24uz5hbr2s 2026-04-21 23:30:11+00:00| seen| Telegram/14RDzCjaAGLQIuKBJtHoIYde60oDRnqUnuM1SZUlRS4U4fg 2026-04-22 12:50:28+00:00| seen|...
CVE-2026-35230
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...
UBUNTU-CVE-2026-35230
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...
CVE-2026-35230
Vulnerability in Oracle VM VirtualBox (Core) affecting version 7.2.6. A local high-privilege attacker can compromise the VirtualBox instance, with potential scope changes affecting additional products. CVSS 3.1 base score 7.5 (HIGH) for confidentiality, integrity, and availability impacts. No exp...
CVE-2026-35230
...
KLA90996 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in Core can be...
MAL-2025-35230 Malicious code in test-mlw2-drill-slopy (npm)
The package test-mlw2-drill-slopy was found to contain malicious code...
CVE-2024-35230 Welcome and About GeoServer pages communicate version and revision information
GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. In affected versions the welcome and about page includes version and revision information about the software in use including library and components used. This information is sensitive...
CVE-2024-35230 Welcome and About GeoServer pages communicate version and revision information
GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. In affected versions the welcome and about page includes version and revision information about the software in use including library and components used. This information is sensitive...
CVE-2024-35230
CVE-2024-35230 affects GeoServer (Java) where the welcome and about pages disclose version and revision information of the server and components. This information exposure can aid fingerprinting of the running software. The issue has been patched in version 2.26.0; users should upgrade to 2.26.0 ...
Ubuntu: Security Advisory (USN-6751-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3390-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3390-1] zabbix security update
Debian LTS Advisory DLA-3390-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost April 12, 2023 https://wiki.debian.org/LTS Package : zabbix Version : 1:4.0.4+dfsg-1+deb10u1 CVE ID : CVE-2019-15132 CVE-2020-15803 CVE-2021-27927 CVE-2022-24349 CVE-2022-24917...
SUSE: Security Advisory (SUSE-SU-2022:3101-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:3101-1 Security update for zabbix
This update for zabbix fixes the following issues: - CVE-2022-35230: Javascript embedded in links for graphs page will be executed bsc1201290...
CVE-2022-35230
creationtimestamp| type| source ---|---|--- 2022-07-06 14:14:20+00:00| seen| https://t.me/cibsecurity/45630...
CVE-2022-35230
CVE-2022-35230 affects the Zabbix frontend (graphs page). An authenticated user can craft a link containing reflected JavaScript, which other users may execute; the payload runs only if the victim’s CSRF token is present and is periodically rotated. This enables client-side JavaScript execution w...
CVE-2022-35230 Reflected XSS in graphs page of Zabbix Frontend
An authenticated user can create a link with reflected Javascript code inside it for the graphs page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict...
CVE-2021-35230
creationtimestamp| type| source ---|---|--- 2021-10-22 16:39:16+00:00| seen| https://t.me/cibsecurity/31019...
CVE-2021-35230
As a result of an unquoted service path vulnerability present in the Kiwi CatTools Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the affected service or uninstall entry...