55 matches found
Astra Linux - уязвимость в firefox, thunderbird
If the Content Security Policy blocks frame navigation, the full destination of a redirect served within the frame is reported in the violation report; instead of just the original frame URI. This could be used to disclose sensitive information contained in such URIs. This vulnerability affects...
Astra Linux - уязвимость в firefox
One phishing tactic on the internet involves providing a link with HTTP Auth. For example, it might look like “https://[email protected]”. To mitigate this type of attack, Firefox will display a warning dialog box. However, this warning dialog would not be shown if evil.com used a...
PT-2026-40437
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Insufficient sanitization of SQL queries in the sqloptimizer utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled...
Astra Linux - уязвимость в firefox
When processing a redirect that conflicts with a Referrer-Policy, Firefox would adopt the Referrer-Policy of the redirect. This could potentially result in more information than intended by the original origin being provided to the destination of the redirect. This vulnerability affects Firefox...
Astra Linux - уязвимость в firefox
Context-specific code was included in a shared jump table, resulting in assertions being triggered in multithreaded Wasm code. This vulnerability affects Firefox versions earlier than 86...
2026-04 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems (KB5082200)
2026-04 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems KB5082200...
CVE-2026-5586
creationtimestamp| type| source ---|---|--- 2026-04-05 19:36:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miripfabr425...
HTTP Fetch, Windows x86 Pingback, Reverse TCP Inline
Fetch and execute an x86 payload from an HTTP server. Connect back to attacker and report UUID Windows x86 Module Options msf use payload/cmd/windows/http/x86/pingbackreversetcp msf payloadpingbackreversetcp show actions ...actions... msf payloadpingbackreversetcp set ACTION msf...
2026-02 .NET 10.0.3 Security Update for x86 Client (KB5077862)
2026-02 .NET 10.0.3 Security Update for x86 Client KB5077862...
EUVD-2026-4086
Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in xtemos WoodMart woodmart allows Code Injection.This issue affects WoodMart: from n/a through = 8.3.7...
DEBIAN-CVE-2022-50876
In the Linux kernel, the following vulnerability has been resolved: usb: musb: Fix musbgadget.c rxstate overflow bug The usb function device call musbgadgetqueue adds the passed request to musbep::reqlist,If the request-length musbep-packetsz and isbuffermappedreq return false,the rxstate will co...
CVE-2025-68463
Bio.Entrez in Biopython through 186 allows doctype XXE...
CVE-2025-8869
When extracting a tar archive pip may not check symbolic links point into the extraction directory if the tarfile module doesn't implement PEP 706. Note that upgrading pip to a "fixed" version for this vulnerability doesn't fix all known vulnerabilities that are remediated by using a Python versi...
Linux Distros Unpatched Vulnerability : CVE-2021-23979
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers reported memory safety bugs present in Firefox 85. Some of these bugs showed evidence of memory corruption and we presume that with enough...
Linux Distros Unpatched Vulnerability : CVE-2021-23970
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Context-specific code was included in a shared jump table; resulting in assertions being triggered in multithreaded wasm code. This vulnerability affects Firefo...
Linux Distros Unpatched Vulnerability : CVE-2021-23971
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When processing a redirect with a conflicting Referrer-Policy, Firefox would have adopted the redirect's Referrer-Policy. This would have potentially resulted i...
CVE-2024-8852
The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.86 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information such as full...
Bosch IP cameras Information Disclosure Vulnerability
Bosch IP cameras are network cameras from Bosch, Germany. An information disclosure vulnerability exists in Bosch IP cameras that originates from allowing an unauthenticated attacker to retrieve information about the device itself and the device's network settings. The following products and...
CVE-2023-45057
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Hitsteps Web Analytics plugin = 5.86 versions...
CVE-2023-31067
An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILESX86%\TSplus\Clients\www...