CVE-2026-4643

Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent server-rendered content from closing an underlying application view in the Mattermost Desktop App which allows a malicious server or plugin to crash the desktop client via invoking window.close in the renderer context, leading to...

GO-2026-4746 Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation in github.com/mattermost/mattermost-server

Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

org.apache.syncope.core.am:syncope-core-am-logic (>=3.0.0 <=3.0.14), org.apache.syncope.core.am:syncope-core-am-rest-cxf (>=3.0.0 <=3.0.14) +30 more potentially affected by CVE-2025-65998 via org.apache.syncope.core:syncope-core-spring (>=3.0.0-M0 <=3.0.14)

org.apache.syncope.core:syncope-core-spring MAVEN version =3.0.0-M0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.14 and more Source cves: CVE-2025-65998https://vulners.com/c...

CVE-2025-8611

creationtimestamp| type| source ---|---|--- 2025-08-06 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-807/ 2025-08-21 06:01:33+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwvbd57h4r2x...

CVE-2025-43221

creationtimestamp| type| source ---|---|--- 2025-07-29 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-691/ 2025-07-29 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-690/ 2026-04-02 22:18:34+00:00| seen|...

CVE-2025-24522

creationtimestamp| type| source ---|---|--- 2025-05-01 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-121-01 2025-05-01 19:14:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14375 2025-05-01 20:35:57+00:00| seen|...

FreeBSD : mozilla -- 64 bit JIT WASM read on left over memroy (a93a1d2a-109d-11f0-8195-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a93a1d2a-109d-11f0-8195-b42e991fc52e advisory. [email protected] reports: On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pic...

CVE-2024-12741

creationtimestamp| type| source ---|---|--- 2024-12-18 19:21:36+00:00| seen| https://infosec.exchange/users/cve/statuses/113675448862003579 2024-12-18 22:04:01+00:00| seen| https://t.me/cvedetector/13249 2025-03-03 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-105/...

CVE-2024-45470

creationtimestamp| type| source ---|---|--- 2024-12-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-09...

Yokogawa STARDOM

1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable remotely Vendor: Yokogawa Equipment: STARDOM Vulnerabilities: Cleartext Transmission of Sensitive Information, Use of Hard-coded Credentials CISA is aware of a public report known as, “OT:ICEFALL,” which details vulnerabilities found in...

WordPress Image Slider 1.1.41 / 1.1.89 Arbitrary File Deletion Vulnerability

WordPress Image Slider plugin versions 1.1.41 and 1.1.89 suffer from an arbitrary file deletion vulnerability. Details ================ Software: Image Slider Version: 1.1.41,1.1.89 Homepage: http://wordpress.org/plugins/image-slider-widget/ Advisory report:...

Yokogawa CS3000 BKFSim_vhfd.exe Buffer Overflow Exploit

This Metasploit module exploits an stack based buffer overflow on Yokogawa CS3000. The vulnerability exists in the service BKFSimvhfd.exe when using malicious user-controlled data to create logs using functions like vsprintf and memcpy in a insecure way. This Metasploit module has been tested...

[SA12789] IceWarp Web Mail Cross-Site Scripting Vulnerabilities

TITLE: IceWarp Web Mail Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA12789 VERIFY ADVISORY: http://secunia.com/advisories/12789/ CRITICAL: Moderately critical IMPACT: Unknown, Cross Site Scripting WHERE: From remote SOFTWARE: IceWarp Web Mail 5.x http://secunia.com/product/3775/...