259 matches found
PT-2025-28854 · Undefined · Undefined
CVE-2025-53687 Rejected reason https://t.co/tDWKrpwRVz...
DNN 安全漏洞
DNN aka DotNetNuke is a Microsoft-supported, open-source content management system CMS based on the ASP.NET platform from the U.S. company DNN. The system is easy to install, scalable, feature-rich and so on. A security vulnerability exists in DNN versions prior to 9.13.9, which originates from a...
CVE-2017-15211
In Kanboard before 1.0.47, by altering form data, an authenticated user can add an external link to a private project of another user...
thunderbird: User Interface (UI) Misrepresentation of attachment URL
A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the...
CVE-2025-4324 MRCMS External Link Management Page edit.do cross site scripting
A vulnerability, which was classified as problematic, was found in MRCMS 3.1.2. This affects an unknown part of the file /admin/link/edit.do of the component External Link Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...
CVE-2025-4324 MRCMS External Link Management Page edit.do cross site scripting
A vulnerability, which was classified as problematic, was found in MRCMS 3.1.2. This affects an unknown part of the file /admin/link/edit.do of the component External Link Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit...
PT-2025-19837 · Mrcms · Mrcms
Name of the Vulnerable Software and Affected Versions: MRCMS version 3.1.2 Description: A problematic issue was found in the External Link Management Page component, affecting an unknown part of the file /admin/link/edit.do. This issue leads to cross site scripting and can be initiated remotely...
MRCMS 代码注入漏洞
MRCMS is a content management system by the individual developer of marker. A code injection vulnerability exists in MRCMS version 3.1.2, which stems from improper manipulation of the file /admin/link/edit.do in the component External Link Management Page, which could lead to a cross-site scripti...
thunderbird: User Interface (UI) Misrepresentation of attachment URL
A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: When an email contains multiple attachments with external links via the X-Mozilla-External-Attachment-URL header, only the last link is shown when hovering over any attachment. Although the...
Mozilla Thunderbird < 137.0.2
The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 137.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-26 advisory. - When an email contains multiple attachments with external links via the...
Element 安全漏洞
Element is a Matrix web collaboration client from Element Open Source. A security vulnerability exists in Element versions 1.11.16 through 1.11.96, which stems from a configuration that allows an Element Call to be loaded from an external URL, resulting in the disclosure of media encryption keys...
GHSA-HCRG-FC28-FCG5
creationtimestamp| type| source ---|---|--- 2025-02-12 18:31:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113992340797617356...
PT-2025-6186 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The reason for the rejection of the issue is mentioned, but no further details are provided about the issue itself. There is a reference to an...
GHSA-QWP8-X4FF-5H87
creationtimestamp| type| source ---|---|--- 2025-02-03 21:08:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113941997439072239...
Chatwork Desktop Application (Windows) uses a potentially dangerous function
Overview Chatwork Desktop Application Windows provided by kubell Co., Ltd. contains an issue with use of potentially dangerous function CWE-676, which allows a user to access an external website via a link in the application. RyotaK of Flatt Security Inc. directly reported this vulnerability to t...
CVE-2024-8977
creationtimestamp| type| source ---|---|--- 2024-10-10 13:24:34+00:00| seen| https://t.me/cvedetector/7576 2024-10-10 15:20:05+00:00| seen| https://t.me/truesecator/6305 2024-10-11 12:24:01+00:00| seen| https://vulnerability.circl.lu/bundle/db9dd42d-746e-40cf-bae6-61042f0c1d48 2026-07-06...
WordPress Bricks Builder Theme 1.9.6 Code Injection
============================================================================================================================================= | Title : WordPress Bricks Builder Theme 1.9.6 php code injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...
PT-2024-30278 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: A potential issue has been identified, with a reference to an external link for more information. No details are provided about the nature of th...
PT-2024-27506 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The reason for the rejection is mentioned, but no further details are provided about the issue. There is a reference to an external link, but it...
PT-2024-29608 · Opentext · Opentext Filr
Name of the Vulnerable Software and Affected Versions: OpenText Filr versions 24.1.1 through 24.2 Description: A Stored XSS issue has been found, which could prevent users from receiving warnings when clicking on links to external sites. Recommendations: For versions 24.1.1 and 24.2, update to a...