EUVD-2018-2723

Malware in sbrugna...

EUVD-2018-2720

Malware in sbrugna...

CVE-2025-26884

CVE-2025-26884 describes a Stored XSS in Greenshift’s animation and page builder blocks. The WordPress ecosystem entry shows Greenshift

CVE-2025-26884 WordPress Greenshift plugin <= 10.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpsoul Greenshift greenshift-animation-and-page-builder-blocks allows Stored XSS.This issue affects Greenshift: from n/a through = 10.8...

WordPress plugin Greenshift 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

PT-2024-14855 · Microsoft +1 · Windows Installer +1

Name of the Vulnerable Software and Affected Versions: Thales SafeNet Authentication Client versions prior to 10.8 R10 Description: A flaw in the Windows Installer in Thales SafeNet Authentication Client allows an attacker to escalate their privilege level via local access. Recommendations: For...

PT-2024-13297 · Classlink · Classlink Oneclick Extension

Name of the Vulnerable Software and Affected Versions: ClassLink OneClick Extension versions through 10.8 Description: A Universal Cross Site Scripting UXSS issue allows remote attackers to inject JavaScript into any webpage. This issue exists due to an incomplete fix for a previous problem...

Jellyfin Web Cross-Site Scripting (XSS) via Collection Name

In Jellyfin 10.8.x through 10.8.3, the name of a collection is vulnerable to stored XSS. This allows an attacker to steal access tokens from the localStorage of the victim...

CVE-2022-35909

In Jellyfin before 10.8, the /users endpoint has incorrect access control for admin functionality...

Cross site scripting

In Jellyfin before 10.8, stored XSS allows theft of an admin access token...

PT-2021-22747 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 10.8 and later Description: The issue allows for information disclosure from SendEntry in GitLab, exposing the full URL of artifacts stored in object-storage. This exposure occurs via Rails logs and is temporary...

IBM Security Verify Privilege Manager XML External Entity Injection Vulnerability

IBM Security Verify Privilege Manager is a security management software for endpoint privilege management and application control in corporate environments from IBM, USA. The software stops unintentional downloads of malware and ransomware from attacking applications by removing local...

IBM Security Verify Privilege Manager 代码问题漏洞

IBM Security Verify Privilege Manager is a security management software for endpoint privilege management and application control in corporate environments from IBM, USA. The software stops unintentional downloads of malware and ransomware from attacking applications by removing local...

Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server

Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.8. Vulnerability Details CVEID: CVE-2020-4843 DESCRIPTION: IBM Security Secret Server stores potentially sensitive information in config files that could be read by an authenticated user...

CVE-2020-13345

An issue has been discovered in GitLab affecting all versions starting from 10.8. Reflected XSS on Multiple Routes...

Cross site scripting

An issue has been discovered in GitLab affecting all versions starting from 10.8. Reflected XSS on Multiple Routes...

Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2020-4342)

Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.8. Vulnerability Details CVEID: CVE-2020-4342 DESCRIPTION: IBM Security Secret Server could disclose sensitive information included in installation files to an unauthorized user. CVSS Ba...

Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2020-4322)

Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.8. Vulnerability Details CVEID: CVE-2020-4322 DESCRIPTION: IBM Security Secret Server could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to...

Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2020-4327)

Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.8. Vulnerability Details CVEID: CVE-2020-4327 DESCRIPTION: IBM Security Secret Server could allow a remote attacker to obtain sensitive information when a detailed technical error messag...

Apple iCloud Security Updates (HT210727)

Apple iCloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:icloud"; ifdescription...