36088 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in smb2leasebreaknoti...
CVE-2025-24344
The CVE-2025-24344 entry concerns the ctrlX OS web application where a vulnerability lies in the error notification messages. The issue allows a remote, unauthenticated attacker to inject arbitrary HTML tags and, potentially, execute client-side code within another user’s browser through a crafte...
CVE-2025-4016
A vulnerability classified as critical has been found in 20120630 Novel-Plus up to 0e156c04b4b7ce0563bef6c97af4476fcda8f160. This affects the function deleteIndex of the file novel-admin/src/main/java/com/java2nb/common/controller/LogController.java. The manipulation leads to improper...
"Cannot Complete your request" during enumeration for DUO OAuth in 2 factor setup
Getting " Cannot complete your request" after duo push is successfully sent. In the url tab, we could see the client connection being pointed to storefront successfully...
CVE-2025-3980
A vulnerability classified as problematic was found in wowjoy 浙江湖州华卓信息科技有限公司 Internet Doctor Workstation System 1.0. This vulnerability affects unknown code of the file /v1/prescription/list. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has...
CVE-2025-32546
Cross-Site Request Forgery CSRF vulnerability in gtlwpdev All push notification for WP all-push-notification allows Reflected XSS.This issue affects All push notification for WP: from n/a through = 1.5.3...
Fedora: Security Advisory (FEDORA-2025-9ba0ebe67a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
4.7 million customers’ data accidentally leaked to Google by Blue Shield of California
Blue Shield of California leaked the personal data of 4.7 million people to Google after a Google Analytics misconfiguration. The tech giant may have used this data for targeted advertising, according to Blue Shield, which is one of the largest health insurers in the US. In a data breach notice o...
medicalbooks.filipinodoctors.org Cross Site Scripting vulnerability OBB-4049077
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
masers-allgauherz.com-bavaria.com Cross Site Scripting vulnerability OBB-4048932
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
port-elizabeth-hotel.com Cross Site Scripting vulnerability OBB-4048840
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
apasjau.com.br Cross Site Scripting vulnerability OBB-4048737
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
maison-laclede-64490.hotels-aquitaine.com Cross Site Scripting vulnerability OBB-4048696
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
maison-de-la-montjoye.midi-pyrenees-hotels.com Cross Site Scripting vulnerability OBB-4048695
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
m.devid.info Cross Site Scripting vulnerability OBB-4048624
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
lyceumct.com Cross Site Scripting vulnerability OBB-4048615
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
logierhaus-lehde.allbrandenburghotels.com Cross Site Scripting vulnerability OBB-4048494
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
lkf-by-rhombus.top-hotels-hong-kong.com Cross Site Scripting vulnerability OBB-4048466
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
PT-2025-17635
Name of the Vulnerable Software and Affected Versions: IntelR Processors affected versions not specified Description: Improper Isolation or Compartmentalization in the stream cache mechanism for some IntelR Processors may allow an authenticated user to potentially enable escalation of privilege v...
GHSA-F3GV-CWWH-758M
creationtimestamp| type| source ---|---|--- 2025-04-22 19:03:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12938 2025-04-25 16:07:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13459...