EUVD-2021-29033

Malicious code in bioql PyPI...

EUVD-2022-51733

Malicious code in bioql PyPI...

GHSA-6PHF-73Q6-GH87

creationtimestamp| type| source ---|---|--- 2025-07-16 03:34:45+00:00| seen| https://gist.github.com/safer-bot/783dfe65a224789bd02fb4b05b200427 2025-07-16 06:08:19+00:00| seen| https://gist.github.com/safer-bot/68f4b89b600c072a0eedff4a29cfe91a 2025-07-16 17:07:28+00:00| seen|...

GHSA-VGG9-87G3-85W8

creationtimestamp| type| source ---|---|--- 2025-07-10 19:39:23+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114830630125204075...

GHSA-XJ56-P8MM-QMXJ

creationtimestamp| type| source ---|---|--- 2025-06-26 14:51:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19608 2025-06-30 14:23:26+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114772764637719413 2025-06-30 14:29:11+00:00| seen|...

GHSA-2V9P-3P3H-W56J

creationtimestamp| type| source ---|---|--- 2025-06-18 16:30:06+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114705314960908620...

CVE-2023-3549

creationtimestamp| type| source ---|---|--- 2025-02-11 02:16:23+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulony5ut2v...

CVE-2024-54523

creationtimestamp| type| source ---|---|--- 2025-01-27 22:16:21+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqxqlkdvd27 2025-02-18 21:11:33+00:00| seen| Telegram/BB5mH5V4PTa9cIbByMmWFIKcSQNfbVjf2vcFsANgeMrCvTa...

CVE-2024-10539

creationtimestamp| type| source ---|---|--- 2025-01-23 13:35:23+00:00| seen| https://infosec.exchange/users/cve/statuses/113877930656431275 2025-01-23 14:02:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2733 2025-01-23 14:16:01+00:00| seen|...

GHSA-F8C8-4PM7-W885

creationtimestamp| type| source ---|---|--- 2025-01-21 15:15:02+00:00| seen| https://infosec.exchange/users/cve/statuses/113866997923053260...

CVE-2025-23566

creationtimestamp| type| source ---|---|--- 2025-01-16 20:18:02+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv3yuty2n2j 2025-01-16 22:38:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113840429087573514...

GHSA-237R-R8M4-4Q88

creationtimestamp| type| source ---|---|--- 2025-01-06 19:28:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113783059656534803...

GHSA-5462-4VCX-JH7J

creationtimestamp| type| source ---|---|--- 2024-12-10 15:41:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113629284744748531...

CVE-2024-27315

Summary: CVE-2024-27315 affects Apache Superset and is caused by improper error handling when an authenticated user with privileges to create Alerts triggers a database error via a crafted SQL statement, potentially exposing data in error logs. Affected versions: before 3.0.4 and 3.1.0 before 3.1...

CVE-2022-4384

The Stream WordPress plugin before 3.9.2 does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information...

CVE-2022-4384 Stream < 3.9.2 - Subscriber+ Alert Creation

The Stream WordPress plugin before 3.9.2 does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information...

CVE-2022-4384

CVE-2022-4384 affects the WordPress Stream plugin prior to 3.9.2. The root cause is broken access control that lets low-privilege users (e.g., subscribers) access alert creation, potentially leaking sensitive information. A fix is available in version 3.9.2; upgrading mitigates the issue. Multipl...

Stream < 3.9.2 - Subscriber+ Alert Creation

The plugin does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information. PoC Step 1: Log in as a subscriber Step 2: Get a nonce from...

Stream < 3.9.2 - Subscriber+ Alert Creation

The plugin does not prevent users with little privileges on the site like subscribers from using its alert creation functionality, which may enable them to leak sensitive information. Step 1: Log in as a subscriber Step 2: Get a nonce from...

Design/Logic Flaw

An issue was discovered in SecurePoll in the Growth extension in MediaWiki through 1.36.2. Simple polls allow users to create alerts by changing their User-Agent HTTP header and submitting a vote...