CVE-2025-20905

creationtimestamp| type| source ---|---|--- 2025-02-04 07:29:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113944437787766779 2025-02-04 08:17:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhdml3wgp42w 2025-02-04 10:32:27+00:00| seen|...

CVE-2025-20899

CVE-2025-20899 concerns an improper access control flaw in Samsung’s PushNotification component. Affected: PushNotification prior to 13.0.00.15 on Android 12, prior to 14.0.00.7 on Android 13, and prior to 15.1.00.5 on Android 14. The root cause is access-control weaknesses that could allow a loc...

CVE-2025-20893

Improper access control in NotificationManager prior to SMR Jan-2025 Release 1 allows local attackers to change the configuration of notifications...

CVE-2025-20893

CVE-2025-20893 affects Samsung Mobile devices via an improper access control flaw in NotificationManager, enabling local attackers to modify notification configurations. The issue is described across multiple sources (NVD, Red Hat, CIRCL, CNNVD, and NCSC) as a local-privilege-like impact with low...

CVE-2025-20893

Improper access control in NotificationManager prior to SMR Jan-2025 Release 1 allows local attackers to change the configuration of notifications...

CVE-2024-13329

creationtimestamp| type| source ---|---|--- 2025-02-04 06:16:08+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhdfswomx42f 2025-02-04 06:28:13+00:00| seen| https://infosec.exchange/users/cve/statuses/113944198714841997 2025-02-04 08:02:10+00:00| seen|...

WordPress plugin FM Notification Bar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox prior to version 135, which stems from a full-screen notification not displaying correctly...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability previously existed in Mozilla Firefox version 135, which stemmed from a full-screen notification being prematurely hidden when a user quickly re-requested a full-screen. This...

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices, which stems from an improper access control issue contained in PushNotification...

PT-2025-4608 · Unknown · Fm Notification Bar

Name of the Vulnerable Software and Affected Versions: FM Notification Bar versions 1.0.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for stored cross-site scripting XSS. This means that an attacker can inject maliciou...

Mozilla Firefox < 135.0

The version of Firefox installed on the remote Windows host is prior to 135.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-07 advisory. - Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption...

Mozilla Thunderbird < 135.0

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 135.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-11 advisory. - Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of...

Mozilla Thunderbird < 135.0

The version of Thunderbird installed on the remote Windows host is prior to 135.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-11 advisory. - Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory...

PT-2025-4132

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 135 Thunderbird versions prior to 135 Description The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack...

PT-2025-4131

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 135 Thunderbird versions prior to 135 Description The issue arises when the fullscreen notification is prematurely hidden when fullscreen is re-requested quickly by the user. This could have been leveraged to perform ...

CVE-2025-22129

creationtimestamp| type| source ---|---|--- 2025-02-03 21:31:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113942086547212939 2025-02-03 22:15:59+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhckydqjpl2h 2025-02-03 23:40:44+00:00| seen|...

CVE-2025-24961

creationtimestamp| type| source ---|---|--- 2025-02-03 20:34:08+00:00| seen| https://infosec.exchange/users/cve/statuses/113941862621519300 2025-02-03 21:16:07+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchnd7gwh2f 2025-02-03 22:08:29+00:00| seen|...

CVE-2024-34896

creationtimestamp| type| source ---|---|--- 2025-02-03 20:27:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113941835887559643 2025-02-03 21:15:32+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhchmbimar2b 2025-02-03 22:08:33+00:00| seen|...

WordPress FM Notification Bar plugin <= 1.0.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Van Tam in WordPress Plugin FM Notification Bar versions = 1.0.4...