43 matches found
CVE-2026-7728
creationtimestamp| type| source ---|---|--- 2026-05-04 07:10:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkz4k4l3vs2p...
CVE-2026-7728 ryanjoachim mcp-rtfm MCP update_doc path traversal
A vulnerability was identified in ryanjoachim mcp-rtfm 0.1.0. This vulnerability affects the function getdoccontent/readdoc/updatedoc of the component MCP Interface. Such manipulation of the argument docFile leads to path traversal. The attack can be launched remotely. The exploit is publicly...
CVE-2026-7728
CVE-2026-7728 affects ryanjoachim/mcp-rtfm 0.1.0. The vulnerability exists in MCP Interface functions get_doc_content, read_doc, and update_doc, where manipulating the docFile argument enables path traversal. It can be exploited remotely, and a public exploit is available. A patch is identified a...
EUVD-2016-5501
Malware in sbrugna...
MAL-2025-7728 Malicious code in @crabas0npm2/voluptate-aut-ullam (npm)
The package @crabas0npm2/voluptate-aut-ullam was found to contain malicious code...
CVE-2025-7728
A vulnerability classified as problematic has been found in Scada-LTS up to 2.7.8.1. Affected is an unknown function of the file users.shtm. The manipulation of the argument Username leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2025-7728
A vulnerability classified as problematic has been found in Scada-LTS up to 2.7.8.1. Affected is an unknown function of the file users.shtm. The manipulation of the argument Username leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the...
CVE-2024-7728
creationtimestamp| type| source ---|---|--- 2024-08-14 07:20:50+00:00| seen| https://t.me/cvedetector/3100...
Moxa PT-7728 Series Switch Improper Authorization (CVE-2016-4514)
Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...
Mageia: Security Advisory (MGASA-2018-0183)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Advisory ROSA-SA-2021-1832
Software: exempi 2.2.0 OS: Cobalt 7.9 CVE-ID: CVE-2017-18235 CVE-Crit: MEDIUM CVE-DESC: An issue was discovered in Exempi before 2.4.3. The VPXChunk class in XMPFiles / source / FormatSupport / WEBPSupport.cpp does not guarantee non-zero width and height values, allowing remote attackers to cause...
Huawei EulerOS: Security Advisory for exempi (EulerOS-SA-2021-1781)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:3389-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 33 : python-msldap (2020-e22e9a655d)
Update to latest upstream release 0.3.15 1885156 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...
CVE-2019-7728
An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to improperly implemented TLS certificate checks, a malicious actor could potentially succeed in executing a man-in-the-middle attack for some connections. The Bosch Smart Home App is not affected. iOS Apps are no...
CVE-2019-7728
An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to improperly implemented TLS certificate checks, a malicious actor could potentially succeed in executing a man-in-the-middle attack for some connections. The Bosch Smart Home App is not affected. iOS Apps are no...
CVE-2019-7728
The CVE-2019-7728 entry concerns the Bosch Smart Camera App for Android (before version 1.3.1). The root cause is improperly implemented TLS certificate checks, enabling the possibility of a man-in-the-middle attack on certain connections. Impact is described as partial confidentiality, integrity...
Fedora 28 : exempi (2018-1c9f6768cf)
Version 2.4.5 fixes the following security issues : - CVE-2018-7728 - CVE-2018-7729 - CVE-2018-7730 - CVE-2018-7731 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...
SUSE SLED12 / SLES12 Security Update : exempi (SUSE-SU-2018:3389-1)
This update for exempi fixes the following security issues : CVE-2017-18233: Prevent integer overflow in the Chunk class that allowed remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file bsc1085584. CVE-2017-18238: The TradQTManager::ParseCachedBoxes...
CAMALEON CMS 2.4 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: CAMALEON CMS 2.4 - Cross-Site Scripting Exploit Author: Ismail Tasdelen Vendor Homepage: http://camaleon.tuzitio.com/ Software Link : https://github.com/owen2345/camaleon-cms Software : CAMALEON CMS Version : 2.4 Vulernability...