CVE-2026-32283 vulnerabilities

Vulnerabilities for packages: supercronic, direnv, cloudflared-fips, databricks-cli-fips, gitlab-rails-ce, kubescape-operator-fips, delve, sftpgo-plugin-auth, hugo, json-exporter-fips, jitsucom-bulker, karma-fips, aws-nuke-fips, memcached-exporter-fips, rancher-agent,...

aldrovandi.dfc.unibo.it Cross Site Scripting vulnerability OBB-2874180

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

dfc.1r4z.com Cross Site Scripting vulnerability OBB-1282936

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

段富超(dfc)v1.0音乐娱乐网addgbook.asp远程写入webshell漏洞

段富超dfcv1.0音乐娱乐网是集flash动画，文章系统，网络视频，留言本、在线点歌、情感测试等功能于一体（视频栏目可以直接调用优酷土豆等视频网站视频），非常适用于flash动画作者爱好者，以及视频短片作者爱好者的个人网站。 留言处没严格过滤可直接向数据库插马 dfc1.0/addgbook.asp 在留言“你的主页”写入一句话代码，%executerequest"cmd"%，留言信息会写进date/dfc.asp 连接即可获得shell http://127.0.0.1/dfc1.0/date/dfc.asp dfc v1.0 暂无 建议用户进行严格过滤...