Lucene search
K

6 matches found

Debian
Debian
added 2025/11/28 3:35 p.m.14 views

[SECURITY] [DLA 4386-1] sogo security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4386-1 [email protected] https://www.debian.org/lts/security/ Paride Legovini November 28, 2025 https://wiki.debian.org/LTS -...

6.1CVSS6.4AI score0.00241EPSS
Exploits1
Circl
Circl
added 2025/11/25 1:18 a.m.4 views

CVE-2025-63498

creationtimestamp| type| source ---|---|--- 2025-11-25 01:18:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6g6az6ajn2s...

6.1CVSS5.8AI score0.00241EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-63498

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the userName parameter. CVE-2025-63498 Note that Nessus relies on the presence of the package a...

6.1CVSS6AI score0.00241EPSS
Exploits1References2
OSV
OSV
added 2025/11/24 9:16 p.m.3 views

CVE-2025-63498

alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the "userName" parameter...

6.1CVSS6.2AI score0.00241EPSS
Exploits1References4
CVE
CVE
added 2025/11/24 12:0 a.m.28 views

CVE-2025-63498

Summary: CVE-2025-63498 affects alinto SOGo 5.12.3, where an XSS flaw is exposed via the userName parameter on the authentication page. The vulnerability allows arbitrary JavaScript execution in affected sessions. Debian’s LTS advisory (DLA-4386-1) indicates the fixed version for Debian 11 is 5.0...

6.1CVSS5.8AI score0.00241EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/24 12:0 a.m.1 views

CVE-2025-63498

alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting XSS via the "userName" parameter...

5.8AI score0.00241EPSS
Exploits1References3
Rows per page
Query Builder