Linux Distros Unpatched Vulnerability : CVE-2026-8496

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A cross-site scripting XSS vulnerability exists in Alinto SOGo, version 5.12.7. A maliciously crafted ICS calendar invitation files allows arbitrary JavaScript...

MINI-8496-2HFJ-X38W

Bulletin has no description...

CVE-2025-25987

creationtimestamp| type| source ---|---|--- 2025-08-25 18:31:44+00:00| seen| MISP/71f05cce-2beb-4b80-8496-bbbabc032544...

CVE-2025-8496 projectworlds Online Admission System viewform.php sql injection

A vulnerability has been found in projectworlds Online Admission System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /viewform.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2025-8496

CVE-2025-8496 affects projectworlds Online Admission System 1.0. The vulnerability resides in the /viewform.php file, where manipulating the ID parameter leads to SQL injection. A remote attacker can exploit this without authentication; multiple sources indicate the exploit has been publicly disc...

MINI-Q9JW-8496-4HFF

Bulletin has no description...

CVE-2024-29508

creationtimestamp| type| source ---|---|--- 2025-02-14 18:49:11+00:00| seen| https://t.me/CyberSecurityTechnologies/11812 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/6674 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/2456...

CVE-2024-29506

creationtimestamp| type| source ---|---|--- 2025-02-14 18:49:11+00:00| seen| https://t.me/CyberSecurityTechnologies/11812 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/2456 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/6674...

CVE-2024-6982

creationtimestamp| type| source ---|---|--- 2025-02-14 18:49:11+00:00| seen| https://t.me/CyberSecurityTechnologies/11812 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/6674 2025-02-15 15:03:36+00:00| published-proof-of-concept| https://t.me/ton618cyber/2456...

CVE-2024-8496

Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker to achieve local privilege escalation...

CVE-2024-8496

Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker to achieve local privilege escalation...

CVE-2024-8496

creationtimestamp| type| source ---|---|--- 2024-12-11 16:47:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113635206819810622 2024-12-11 18:34:58+00:00| seen| https://t.me/cvedetector/12641...

CVE-2024-8496

Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker to achieve local privilege escalation...

CVE-2024-8496

Under specific circumstances, insecure permissions in Ivanti Workspace Control before version 10.18.40.0 allows a local authenticated attacker to achieve local privilege escalation...

CVE-2024-8496

Ivanti Workspace Control contains an elevation-of-privilege flaw due to insecure permissions in versions before 10.18.40.0. A local authenticated attacker could exploit this to achieve local privilege escalation (CVSS 3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H; base score 7.8). The issue is address...

December 2024 Security Advisory Ivanti Workspace Control (IWC) (CVE-2024-8496)

Summary Ivanti has released updates for Workspace Control which addresses one high severity vulnerability. Successful exploitation could lead to local privilege escalation. We are not aware of any customers being exploited by this vulnerability at the time of disclosure. Vulnerability Details: CV...

CVE-2024-36412

creationtimestamp| type| source ---|---|--- 2024-07-17 15:58:21+00:00| published-proof-of-concept| https://t.me/softrinx/424 2024-07-17 15:58:21+00:00| published-proof-of-concept| https://t.me/softrinx/143160 2024-07-17 16:15:23+00:00| published-proof-of-concept| https://t.me/realLulzSec/13806...

CVE-2022-38694

creationtimestamp| type| source ---|---|--- 2023-06-16 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8497 2023-06-18 13:18:19+00:00| published-proof-of-concept| https://t.me/dilagrafie/3085 2023-12-29 01:57:19+00:00| published-proof-of-concept|...

CVE-2020-8496

CVE-2020-8496 affects Kronos Web Time and Attendance (webTA). A Stored XSS vulnerability exists in the /ApplicationBanner page triggered by the Application Banner input when the user is an authenticated administrator. The issue affects webTA 4.1.x and later 4.x versions up to, but not including, ...

Microsoft Edge CssParser::RecordProperty Type Confusion Exploit

Exploit for windows platform in category dos / poc Microsoft Edge: Type confusion in CssParser::RecordProperty CVE-2017-8496 There is a type confusion vulnerability in Microsoft Edge. The vulnerability has been confirmed on Windows 10 Enterprise 64-bit OS version 1607, OS build 14393.1198 and...