CVE-2011-4703

The Limit My Call com.limited.call.view application 2.11 for Android does not properly protect data, which allows remote attackers to read or modify call logs and a contact list via a crafted application...

CVE-2011-4697

The Xiaomi MiTalk Messenger com.xiaomi.channel application before 2.1.320 for Android does not properly protect data, which allows remote attackers to read or modify messaging information via a crafted application...

CVE-2011-4866

The Kaixin001 com.kaixin001.activity application 1.3.1 and 1.3.3 for Android does not properly protect data, which allows remote attackers to read or modify contact information and a cleartext password via a crafted application...

CVE-2018-16499

In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption protocols or cipher suites also violates the Data Protection TSR Technical Security Requirements...

CVE-2011-4770

The QIWI Wallet ru.mw application before 1.14.2 for Android does not properly protect data, which allows remote attackers to read or modify financial information via a crafted application...

MSP360 Backup 安全漏洞

MSP360 Backup is a cross-platform data backup and recovery solution from MSP360, which supports hybrid backup with local storage and cloud storage and provides enterprise-level data protection. A security vulnerability exists in MSP360 Backup version 8.0, which stems from improper file system...

The vulnerability in the Zabbix UI of the IT infrastructure monitoring system allows a perpetrator to increase their privileges within the system and execute arbitrary code.

The vulnerability in the Zabbix UI of the IT infrastructure monitoring system is related to insufficient protection of registration data. Exploiting this vulnerability can allow attackers to enhance their privileges within the system and execute arbitrary code...

IBM Security Guardium Cross-Site Scripting Vulnerability (CNVD-2025-12590)

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. A cross-site scripting vulnerability exists in IBM Security...

The vulnerability of the FactoryTalk Security platform, a manufacturing process management platform, allows attackers to circumvent security restrictions and enhance their privileges.

The vulnerability of the FactoryTalk Security platform for manufacturing process management is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain increased privileges...

Top 10 Best Practices for Effective Data Protection

Data is the lifeblood of productivity, and protecting sensitive data is more critical than ever. With cyber threats evolving rapidly and data privacy regulations tightening, organizations must stay vigilant and proactive to safeguard their most valuable assets. But how do you build an effective...

PT-2025-21734 · Unknown · Proxymis Interview

Name of the Vulnerable Software and Affected Versions: proxymis Interview versions n/a through 1.01 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows attackers to inject malicious SQL code,...

Noyb Threatens Meta with Lawsuit for Violating GDPR to Train AI on E.U. User Data From May 27

Austrian privacy non-profit noyb none of your business has sent Meta's Irish headquarters a cease-and-desist letter, threatening the company with a class action lawsuit if it proceeds with its plans to train users' data for training its artificial intelligence AI models without an explicit opt-in...

WordPress plugin GDPR Framework By Data443 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

The vulnerability of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B lies in the insufficient protection of registration data. This allows attackers to gain unauthorized access to protected information.

The vulnerabilities of software platforms for developing and managing online stores such as Magento Open Source, Adobe Commerce, and Adobe Commerce B2B are related to insufficient protection of registration data. Exploiting these vulnerabilities can allow a malicious actor, operating remotely, to...

The vulnerability of the FrontBoard component in iPadOS and iOS operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the FrontBoard component in iPadOS and iOS operating systems is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

The vulnerability of the VMware Aria Operations for Logs network log analysis tool lies in the insufficient protection of operational data, which allows an attacker to exploit this weakness to disclose protected information.

The vulnerability of the VMware Aria Operations for Logs network log analysis tool is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information...

The vulnerability of the Java framework for securing industrial applications using Spring Security involves a flaw in the data protection mechanism, allowing attackers to compromise the integrity of the protected information.

The vulnerability of the Java framework for securing industrial applications using Spring Security is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker, operating remotely, to compromise the integrity of the protected information...

CVE-2025-31212

This issue was addressed through improved state management. This issue is fixed in iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. An app may be able to access sensitive user data...

Access Control Bypass

@keystone-6/core is vulnerable to Access Control Bypass. The vulnerability is due to improper enforcement of isFilterable access controls during update and delete mutations, allowing unauthorized filtering by unique fields to infer protected data...

About the security content of tvOS 18.5

About the security content of tvOS 18.5 This document describes the security content of tvOS 18.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...