CVE-2025-11242

Server-Side Request Forgery SSRF vulnerability in Teknolist Computer Systems Software Publishing Industry and Trade Inc. Okulistik allows Server Side Request Forgery.This issue affects Okulistik: through 21102025...

CVE-2025-11242

CVE-2025-11242 is a Server-Side Request Forgery (SSRF) in Okulistik by Teknolist Computer Systems Software Publishing Industry and Trade Inc., affected through 21102025. The CVSS 3.1 base score is 9.8 (CRITICAL) with NETWORK attack vector, no privileges required, no user interaction, and high imp...

EUVD-2025-198159

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saysis Computer Systems Trade Ltd. Co. StarCities allows Reflected XSS.This issue affects StarCities: before 1.1.61...

EUVD-2024-40769

Malicious code in bioql PyPI...

EUVD-2024-49754

Malicious code in bioql PyPI...

CVE-2024-43515

Internet Small Computer Systems Interface iSCSI Denial of Service Vulnerability...

CVE-2024-43515

Internet Small Computer Systems Interface iSCSI Denial of Service Vulnerability...

CVE-2024-43515

CVE-2024-43515 is described in the provided documents as an Internet Small Computer Systems Interface (iSCSI) Denial of Service vulnerability with CVSS v3.1 base score 7.5. The NCSC advisory explicitly lists CVE-2024-43515 under Windows iSCSI as a 7.50 Denial-of-Service, indicating a DoS impact f...

CVE-2024-9142

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

Olgu Computer Systems e-Belediye 安全漏洞

Olgu Computer Systems e-Belediye is an application from Olgu Computer Systems. A security vulnerability exists in Olgu Computer Systems e-Belediye prior to version 2.0.642, which arises from incorrect privilege assignment of externally controlled filenames or paths, and allows manipulation of Web...

CVE-2024-9142

CVE-2024-9142 affects Olgu Computer Systems’ e-Belediye prior to version 2.0.642. The root cause is incorrect permission assignment for a critical resource, enabling external control of file name or path and allowing manipulation of web input to file system calls. According to connected sources, ...

CVE-2024-9142 Local File Inclusion (LFI) in Olgu Computer Systems' e-Belediye

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

CVE-2024-9142 Local File Inclusion (LFI) in Olgu Computer Systems' e-Belediye

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Yaztek Software Technologies and Computer Systems E-Commerce Software allows SQL Injection.This issue affects E-Commerce Software: through 20231229. NOTE: The vendor was contacted early about this...

Yaztek Software Technologies and Computer Systems E-Commerce Software SQL Injection Vulnerability

Yaztek Software Technologies and Computer Systems E-Commerce Software is an e-commerce system from Yaztek Software Technologies and Computer Systems. A security vulnerability exists in Yaztek Software Technologies and Computer Systems E-Commerce Software 20231229 and earlier versions, which stems...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to impersonate a trusted website and trick the user into performing actions such as revealing sensitive information or installing malware. This could have serious consequences for the victim, such as...

Best cyber security jobs in 2022 – Highest paying

Web protection is a worthwhile and quickly extending field that spotlights on shielding organizations from current attacks and guarding their information and frameworks. Specialists in network security distinguish blemishes, give programming and gear answers for diminish hazards, and foster plans...

A bug is about to confuse a lot of computers by turning back time 20 years

For those of you that remember the fuss about the Y2K bug, this story may sound familiar. The Cybersecurity & Infrastructure Security Agency CISA has issued a warning to Critical Infrastructure CI owners and operators, and other users who get the time from GPS, about a GPS Daemon GPSD bug in GPSD...

Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company

Ticketmaster has agreed to pay a $10 million fine after being charged with illegally accessing computer systems of a competitor repeatedly between 2013 and 2015 in an attempt to "cut the company off at the knees." A subsidiary of Live Nation, the California-based ticket sales and distribution...