45 matches found
EUVD-2026-21585
TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...
CVE-2026-40184 Unauthenticated Access to Uploaded Files in TREK
TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...
CVE-2026-40184
TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...
CVE-2026-40184
CVE-2026-40184 affects the TREK travel planner. Prior to version 2.7.2, TREK served uploaded photos without requiring authentication, exposing private assets. The issue is fixed in TREK 2.7.2. Connected sources consistently describe unauthenticated access to uploaded files as the root cause and c...
PT-2026-32036
TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded photos without requiring authentication. This vulnerability is fixed in 2.7.2...
TREK 安全漏洞
TREK is a self-hosted, real-time collaboration travel planning tool developed by Maurice’s individual developer. It supports map management, budget tracking, and itinerary management. Versions of TREK prior to 2.7.2 contained security vulnerabilities, which stemmed from insufficient authorization...
PT-2026-32037
TREK is a collaborative travel planner. Prior to 2.7.2, TREK was missing authorization checks on the Immich trip photo management routes. This vulnerability is fixed in 2.7.2...
TREK 访问控制错误漏洞
TREK is a self-hosted, real-time collaboration travel planning tool developed by Maurice’s individual developer. It supports map management, budget tracking, and itinerary management. Versions of TREK prior to 2.7.2 contained an access control vulnerability, which stemmed from the lack of...
Friday Squid Blogging: Giant Squid in the Star Trek Universe
Spock befriends a giant space squid in the comic Star Trek: Strange New Worlds: The Seeds of Salvation 5. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...
EUVD-2002-1525
Malware in sbrugna...
CVE-2023-3862
A vulnerability was found in Travelmate Travelable Trek Management Solution 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Comment Box Handler. The manipulation of the argument comment leads to cross site scripting. The attack may be...
Cross site scripting
A vulnerability was found in Travelmate Travelable Trek Management Solution 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Comment Box Handler. The manipulation of the argument comment leads to cross site scripting. The attack may be...
CVE-2023-3862 Travelmate Travelable Trek Management Solution Comment Box cross site scripting
A vulnerability was found in Travelmate Travelable Trek Management Solution 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Comment Box Handler. The manipulation of the argument comment leads to cross site scripting. The attack may be...
CVE-2023-3862
The CVE-2023-3862 issue affects Travelmate Travelable Trek Management Solution 1.0, specifically the Comment Box Handler component. The vulnerability is a Cross-Site Scripting flaw triggered by manipulating the comment parameter, with remote exposure and a high attack complexity. Exploitation is ...
Travelmate Travelable Trek Management Solution 跨站脚本漏洞
Travelmate Travelable Trek Management Solution is a business travel software from Travelmate, Inc. A cross-site scripting vulnerability exists in version 1.0 of Travelmate Travelable Trek Management Solution, which originates from an unknown function in the component Comment Box Handler that caus...
PT-2023-26534 · Unknown · Travelmate Travelable Trek Management Solution
Name of the Vulnerable Software and Affected Versions: Travelmate Travelable Trek Management Solution version 1.0 Description: A vulnerability was found in the component Comment Box Handler of the Travelmate Travelable Trek Management Solution. The manipulation of the comment argument leads to...
trek-expe.com Cross Site Scripting vulnerability OBB-2152688
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
trek-expe.com Cross Site Scripting vulnerability OBB-2149633
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
The US Space Force Has a Rough Launch on the Internet
From controversy over camo print to Star Trek comparisons, the new military branch can't buy a break online...
nepaltravelstrek.com Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1067201 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...