CVE-2025-63743

Cross-Site Scripting vulnerability in the Snipe-IT web-based asset management system v8.3.0 to up and including v8.3.1 allows authenticated attacker with lowest privileges sufficient only to log in, to inject arbitrary JavaScript code via "Name" and "Surname" fields. The JavaScript code is execut...

CVE-2025-63743

Cross-Site Scripting vulnerability in the Snipe-IT web-based asset management system v8.3.0 to up and including v8.3.1 allows authenticated attacker with lowest privileges sufficient only to log in, to inject arbitrary JavaScript code via "Name" and "Surname" fields. The JavaScript code is execut...

CVE-2025-63743

Cross-Site Scripting vulnerability in the Snipe-IT web-based asset management system v8.3.0 to up and including v8.3.1 allows authenticated attacker with lowest privileges sufficient only to log in, to inject arbitrary JavaScript code via "Name" and "Surname" fields. The JavaScript code is execut...

CVE-2025-63743

Cross-Site Scripting vulnerability in the Snipe-IT web-based asset management system v8.3.0 to up and including v8.3.1 allows authenticated attacker with lowest privileges sufficient only to log in, to inject arbitrary JavaScript code via "Name" and "Surname" fields. The JavaScript code is execut...

CERTFR-2026-ACT-005

creationtimestamp| type| source ---|---|--- 2026-02-02 14:24:55+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3mdv2f55uwk26 2026-02-02 15:42:59+00:00| seen| https://bsky.app/profile/infosecfr.skyfleet.blue/post/3mdv6qqjhxb2m 2026-02-06 23:48:20+00:00| seen|...

EUVD-2012-5969

Malware in sbrugna...

EUVD-2022-7001

Malicious code in bioql PyPI...

CVE-2025-1461

creationtimestamp| type| source ---|---|--- 2025-05-28 18:24:14+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqat6suri5a2...

CVE-2018-8639

creationtimestamp| type| source ---|---|--- 2025-03-03 15:58:10+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/3472167 2025-03-03 18:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2025-03-03 19:03:10+00:00| seen| https://bsky.app/profile/hackingne.ws/post/3ljinbdwlgm23...

CERTFR-2022-ALE-009

creationtimestamp| type| source ---|---|--- 2025-01-29 16:45:57+00:00| seen| https://bsky.app/profile/tuxpanik.bsky.social/post/3lgvg7ltm3o2o...

CVE-2025-24533

creationtimestamp| type| source ---|---|--- 2025-01-27 14:08:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113900710198750560 2025-01-27 14:16:12+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgq4vyfecg2j 2025-01-27 14:55:05+00:00| seen|...

Authentication flaw

report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/user:viewhiddendetails capability requirement, which allows remote authenticated users to discover a hidden lastaccess value by reading an activity report...

CVE-2012-6100

report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/user:viewhiddendetails capability requirement, which allows remote authenticated users to discover a hidden lastaccess value by reading an activity report...

UBUNTU-CVE-2012-6100

report/outline/index.php in Moodle 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/user:viewhiddendetails capability requirement, which allows remote authenticated users to discover a hidden lastaccess value by reading an activity report...

Microsoft Forefront Threat Management Gateway (TMG) 2010 Service Pack 2

The service pack contains 104 fixes and improvements. Some of the major new features include: Kerberos authentication for NLB arrays, Improved error pages, Site activity report...