CVE-2025-57632

libsmb2 6.2+ is vulnerable to Buffer Overflow. When processing SMB2 chained PDUs NextCommand, libsmb2 repeatedly calls smb2addiovector to append to a fixed-size iovec array without checking the upper bound of v-niov SMB2MAXVECTORS=256. An attacker can craft responses with many chained PDUs to...

CISA Directs Federal Agencies to Identify and Mitigate Potential Compromise of Cisco Devices

Today, CISA issued Emergency Directive ED 25-03: Identify and Mitigate Potential Compromise of Cisco Devices to address vulnerabilities in Cisco Adaptive Security Appliances ASA and Cisco Firepower devices. CISA has added vulnerabilities CVE-2025-20333link is external and CVE-2025-20362link is...

CVE-2024-9247

creationtimestamp| type| source ---|---|--- 2024-09-26 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1300/...

WordPress WP Job Portal Plugin <= 2.0.5 is vulnerable to SQL Injection

Software WP Job Portal Type Plugin Vulnerable versions = 2.0.5 Fixed in 2.0.6 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-4490 Patch priority High CVSS severity High 9.3 Developer Ahmad PSID 9b020cd17632 Credits Pablo Sanchez Required privilege Unauthenticated Published 2...

jjt.com.tw Cross Site Scripting vulnerability OBB-2955753

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

dodobeach.de Cross Site Scripting vulnerability OBB-2150237

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

bristolpress.com Cross Site Scripting vulnerability OBB-1365331

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

dongak.or.kr Cross Site Scripting vulnerability OBB-1365122

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Cisco IOS and IOS XE Software OSPFv3 Denial of Service Vulnerability

A vulnerability in the Open Shortest Path First version 3 OSPFv3 implementation in Cisco IOS and IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. The vulnerability is due to incorrect handling of specific OSPFv3 packets. An attacker could...

Threat Outbreak Alert RuleID30760: Email Messages Distributing Malicious Software on September 26, 2017

Medium Alert ID: 55389 First Published: 2017 September 26 19:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30760 may contain the following files: Name ...

Threat Outbreak Alert RuleID30689: Email Messages Distributing Malicious Software on September 26, 2017

Medium Alert ID: 55382 First Published: 2017 September 26 16:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID30689 may contain the following files: Name ...

About the security content of iOS 11.0.1

About the security content of iOS 11.0.1 This document describes the security content of iOS 11.0.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

Threat Outbreak Alert RuleID25183: Email Messages Distributing Malicious Software on September 26, 2016

Medium Alert ID: 49039 First Published: 2016 September 26 14:26 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID25183 may contain the following files: Name ...

Threat Outbreak Alert RuleID22927: Email Messages Distributing Malicious Software on September 26, 2016

Medium Alert ID: 46258 First Published: 2016 May 18 15:51 GMT Last Updated: 2016 September 27 13:55 GMT Version: 26 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID22927 a...

Threat Outbreak Alert RuleID20843: Email Messages Distributing Malicious Software on September 26, 2016

Medium Alert ID: 43372 First Published: 2016 February 2 14:54 GMT Last Updated: 2016 September 27 13:55 GMT Version: 29 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID208...