424 matches found
Apache StreamPark 安全漏洞
Apache StreamPark is the United States Apache Apache Foundation of a streaming media application development framework. Apache StreamPark suffers from a weak algorithmic vulnerability that stems from the use of weak encryption algorithms, which can be exploited by an attacker to expose sensitive...
Third-Party Service Secret Disclosure
Most of the web applications rely on various public services to provide features to their users. In secure designs, consuming these private or cloud services will require authentication like API and private keys, username and password based credentials and similar sensitive data. Developers...
AI Service Secret Disclosure
Most of the web applications rely on various public services to provide features to their users. In secure designs, consuming these private or cloud services will require authentication like API and private keys, username and password based credentials and similar sensitive data. Developers...
CVE-2025-12419
Mattermost contains an OAuth/OpenID Connect validation flaw where OAuth state tokens are not properly validated during authentication, enabling an authenticated attacker with team-creation privileges to take over a user account by manipulating data in the OAuth completion flow. The issue affects ...
Security update for squid
This update for squid fixes the following issues: CVE-2025-62168: Fixed proxy auth data visible to scripts bsc1252281. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command list...
CVE-2025-12508
When using domain users as BRAIN2 users, communication with Active Directory services is unencrypted. This can lead to the interception of authentication data and compromise confidentiality...
CVE-2025-12508 Unencrypted communication to Active Directory services
When using domain users as BRAIN2 users, communication with Active Directory services is unencrypted. This can lead to the interception of authentication data and compromise confidentiality...
CVE-2025-12508 Unencrypted communication to Active Directory services
When using domain users as BRAIN2 users, communication with Active Directory services is unencrypted. This can lead to the interception of authentication data and compromise confidentiality...
CVE-2025-12508
CVE-2025-12508 affects BRAIN2: when domain users act as BRAIN2 users, communication with Active Directory services is unencrypted, risking interception of authentication data and confidentiality. Documents consistently identify BRAIN2 as the affected software and describe the unencrypted AD traff...
[SECURITY] [DSA 6047-1] squid security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6047-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 30, 2025 https://www.debian.org/security/faq -...
Debian dsa-6047 : squid - security update
The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6047 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6047-1 [email protected] https://www.debian.org/security/...
EUVD-2019-2157
Malware in sbrugna...
EUVD-2020-19708
Malware in sbrugna...
EUVD-2015-2061
Malware in sbrugna...
EUVD-2015-2063
Malware in sbrugna...
EUVD-2015-2060
Malware in sbrugna...
EUVD-2014-4729
Malware in sbrugna...
EUVD-2017-6097
Malware in sbrugna...
EUVD-2020-7212
Malware in sbrugna...
EUVD-2001-0911
Malware in sbrugna...