90 matches found
CVE-2021-31858
DotNetNuke DNN 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user profile biography section which allows remote authenticated users to inject arbitrary code via a crafted payload...
EUVD-2005-0900
Malware in sbrugna...
EUVD-2014-1345
Malware in sbrugna...
EUVD-2019-18452
Malware in sbrugna...
EUVD-2025-21227
Malicious code in bioql PyPI...
CVE-2025-59539
DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. Prior to version 10.1.0, when embedding information in the Biography field, even if that field is not rich-text, users could inject javascript code that would run in the context of the websit...
CVE-2024-26891
creationtimestamp| type| source ---|---|--- 2025-08-05 18:59:36+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lvofdlc2322f 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...
CVE-2025-52133
creationtimestamp| type| source ---|---|--- 2025-08-03 07:47:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvi6uhoded2q...
CVE-2025-54581
creationtimestamp| type| source ---|---|--- 2025-07-30 23:47:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv7sndhtr32z...
CVE-2025-02510
creationtimestamp| type| source ---|---|--- 2025-07-24 20:25:06+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3luqejhjyk225...
CVE-2025-33077
creationtimestamp| type| source ---|---|--- 2025-07-23 16:46:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lunhua75k522...
CVE-2022-44693
creationtimestamp| type| source ---|---|--- 2025-07-22 17:56:06+00:00| seen| https://bsky.app/profile/cti-news.bsky.social/post/3lul3b7pvly2r 2025-07-23 02:38:03+00:00| seen| https://bsky.app/profile/secqube.com/post/3lulygkmf7m2l...
CVE-2025-43720
Headwind MDM before 5.33.1 makes configuration details accessible to unauthorized users. The Configuration profile is exposed to the Observer user role, revealing the password requires to escape out of the MDM controlled device's profile...
PT-2025-30351 · Phpgurukul · Autotaxi Stand Management System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Taxi Stand Management System version 1.0 Description: A cross site scripting issue exists due to the manipulation of the adminname argument in the /admin/admin-profile.php file. The attack can be launched remotely. The exploit has...
CVE-2025-2318
creationtimestamp| type| source ---|---|--- 2025-07-16 18:12:18+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lu3zen6y4s2m...
CVE-2025-53689
creationtimestamp| type| source ---|---|--- 2025-07-14 07:14:29+00:00| seen| https://seclists.org/oss-sec/2025/q3/39 2025-07-14 09:26:28+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3ltw32lq4ff2c...
CVE-2025-7160
creationtimestamp| type| source ---|---|--- 2025-07-08 06:44:11+00:00| seen| https://bsky.app/profile/potato.software/post/3ltgp6uoc5n2t...
CVE-2025-53473
creationtimestamp| type| source ---|---|--- 2025-07-07 07:30:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltebcavktm2s 2025-07-07 12:36:08+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114811978904891642...
CVE-2021-12345
creationtimestamp| type| source ---|---|--- 2025-07-06 01:15:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltb3ul2nau2i 2026-05-26 15:21:17+00:00| seen| https://gist.github.com/mkrause/9ab4178c905b7e3ab46c5a3e3598adfc...
CVE-2025-6902
creationtimestamp| type| source ---|---|--- 2025-06-30 11:07:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19924 2025-06-30 13:10:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lstazssexe2i...