93 matches found
CVE-2025-23703
creationtimestamp| type| source ---|---|--- 2025-01-16 20:19:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv43pt2ep2n 2025-01-16 22:05:46+00:00| seen| https://t.me/cvedetector/15630 2025-01-17 00:53:23+00:00| seen|...
CVE-2024-22063
creationtimestamp| type| source ---|---|--- 2024-12-30 09:36:36+00:00| seen| https://infosec.exchange/users/cve/statuses/113741096299871629 2024-12-30 11:47:09+00:00| seen| https://t.me/cvedetector/13930 2025-02-05 09:05:16+00:00| seen|...
CVE-2024-11712
creationtimestamp| type| source ---|---|--- 2024-12-14 06:46:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113649831085986241 2024-12-14 06:50:04+00:00| seen| https://infosec.exchange/users/cve/statuses/113649844474484932 2024-12-14 09:20:25+00:00| seen| https://t.me/cvedetector/129...
UBUNTU-CVE-2024-47211
In OpenStack Ironic before 21.4.4, 22.x and 23.x before 23.0.3, 23.x and 24.x before 24.1.3, and 25.x and 26.x before 26.1.0, there is a lack of checksum validation of supplied imagesource URLs when configured to convert images to a raw format for streaming...
PT-2024-32480 · Openstack +1 · Openstack Ironic +1
Name of the Vulnerable Software and Affected Versions: OpenStack Ironic versions prior to 21.4.4 OpenStack Ironic versions 22.x through 23.x before 23.0.3 OpenStack Ironic versions 23.x through 24.x before 24.1.3 OpenStack Ironic versions 25.x through 26.x before 26.1.0 Description: The issue is...
Moodle Security Breach
Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. A security vulnerability exists in Moodle that stems from the use of referral source URLs that require no additional cleanup...
Path Traversal
mlflow is vulnerable to Path Traversal. The vulnerability exists because the library does not properly validate the source URLs, allowing an attacker to access files outside the expected directory and read arbitrary files through the relative path such as \..\filename...
SUSE CVE-2018-5134
WebExtensions may use "view-source:" URLs to view local "file:" URL content, as well as content stored in "about:cache", bypassing restrictions that only allow WebExtensions to view specific content. This vulnerability affects Firefox 59...
CVE-2021-21996
Removed by vendor...
CVE-2020-35111
When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have inadvertently leaked their IP address. This vulnerability affects Firefox...
SUSE-SU-2020:3903-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.6.0 ESR Fixed: Various stability, functionality, and security fixes MFSA 2020-55 bsc1180039 CVE-2020-16042 bmo1679003 Operations on a BigInt could have caused uninitialized memory to be exposed...
Mozilla: The proxy.onRequest API did not catch view-source URLs
The Mozilla Foundation Security Advisory describes this flaw as: When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have...
CVE-2020-35111
When an extension with the proxy permission registered to receive , the proxy.onRequest callback was not triggered for view-source URLs. While web content cannot navigate to such URLs, a user opening View Source could have inadvertently leaked their IP address. This vulnerability affects Firefox...