CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

CVE-2025-3688

A vulnerability, which was classified as problematic, was found in mirweiye Seven Bears Library CMS 2023. This affects an unknown part of the component Background Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-39531

Missing Authorization vulnerability in slazzercom Slazzer Background Changer slazzer-background-changer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Slazzer Background Changer: from n/a through = 3.14...

AI is getting “creepy good” at geo-guessing

If you are worried about revealing your exact location—or if you maybe even fib about it at times—there are some good reasons to worry about what is visible in background photos, because Artificial Intelligence AI is getting very good at guessing where you are based on the smallest of clues. And...

OESA-2025-1422 firefox security update

Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fixes: If an attacker loaded a font using codeFontFace/code on a background worker, a use-after-free could have occurred, leadin...

CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

CVE-2024-46089

74cms =3.33 is vulnerable to remote code execution RCE in the background interface apiadmin...

CVE-2025-23958

Missing Authorization vulnerability in FADI MED Editor Wysiwyg Background Color editor-wysiwyg-background-color allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Editor Wysiwyg Background Color: from n/a through = 1.0...

CVE-2025-23958

CVE-2025-23958 examines a Missing Authorization vulnerability in the WordPress plugin Editor Wysiwyg Background Color (affected versions up to 1.0). The Red Hat and CVE records share the same description: exploit of incorrectly configured access control security levels. The Wordfence vulnerabilit...

CVE-2025-23958 WordPress Editor Wysiwyg Background Color plugin <= 1.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in FADI MED Editor Wysiwyg Background Color editor-wysiwyg-background-color allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Editor Wysiwyg Background Color: from n/a through = 1.0...

From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities

Introduction In today’s digital era, security breaches can occur in the blink of an eye. Telegram Desktop is renowned for its secure, user-friendly messaging interface, but what if the data used to provide seamless experience could also be your greatest problem? Our investigation into three...

AZL-62693 CVE-2025-22115 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfscreatependingblockgroups Block group creation is done in two phases, which results in a slightly unintuitive property: a block group can be allocated/deallocated from after...

CVE-2025-22115 btrfs: fix block group refcount race in btrfs_create_pending_block_groups()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix block group refcount race in btrfscreatependingblockgroups Block group creation is done in two phases, which results in a slightly unintuitive property: a block group can be allocated/deallocated from after...

WordPress Slazzer Background Changer plugin <= 3.14 - Broken Access Control Vulnerability

Broken Access Control Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Slazzer Background Changer versions = 3.14...

CVE-2025-39531

Missing Authorization vulnerability in slazzercom Slazzer Background Changer slazzer-background-changer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Slazzer Background Changer: from n/a through = 3.14...

CVE-2025-39531 WordPress Slazzer Background Changer plugin <= 3.14 - Broken Access Control Vulnerability

Missing Authorization vulnerability in slazzercom Slazzer Background Changer slazzer-background-changer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Slazzer Background Changer: from n/a through = 3.14...

CVE-2025-39531 WordPress Slazzer Background Changer plugin <= 3.14 - Broken Access Control Vulnerability

Missing Authorization vulnerability in slazzercom Slazzer Background Changer slazzer-background-changer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Slazzer Background Changer: from n/a through = 3.14...

CVE-2025-39531

CVE-2025-39531 concerns a Missing Authorization vulnerability in the WordPress plugin Slazzer Background Changer (versions up to 3.14). Multiple sources confirm a Broken Access Control flaw where functionality is not properly constrained by ACLs, potentially enabling unauthorized access to featur...

CVE-2025-3688 mirweiye Seven Bears Library CMS Background Management Page cross site scripting

A vulnerability, which was classified as problematic, was found in mirweiye Seven Bears Library CMS 2023. This affects an unknown part of the component Background Management Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-3688

CVE-2025-3688 concerns mirweiye Seven Bears Library CMS (2023) with a cross-site scripting flaw in an unspecified portion of the Background Management Page. The vulnerability enables remote initiation of an attack and has been publicly disclosed. The available documents do not specify affected ve...