66 matches found
CVE-2026-45085
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, four authorization/disclosure issues in the chat plugin one also involving discourse-calendar: read-only category users...
CVE-2026-46407
Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the backend admin/auth-token endpoint allows an authenticated administrator to load another administrator's REST API token list by supplying that user's adminid. This can...
IBM InfoSphere Information Server 安全漏洞
IBM InfoSphere Information Server is IBM's enterprise-class data integration platform for integrating, cleansing and transforming data from disparate sources. An information disclosure vulnerability exists in IBM InfoSphere Information Server that stems from insufficient credential protection and...
CVE-2020-37093 Netis E1+ 1.2.32533 - Unauthenticated WiFi Password Leak
Netis E1+ 1.2.32533 contains an information disclosure vulnerability that allows unauthenticated attackers to retrieve WiFi passwords through the netcoreget.cgi endpoint. Attackers can send a GET request to the endpoint to extract sensitive network credentials including SSID and WiFi passwords in...
CVE-2025-1721
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from allocated memory due to improper clearing of heap memory...
EUVD-2012-4355
Malware in sbrugna...
EUVD-2018-15613
Malware in sbrugna...
EUVD-2020-3178
Malware in sbrugna...
EUVD-2021-1446
Malware in sbrugna...
EUVD-2020-4897
Malware in sbrugna...
EUVD-2024-29309
Malicious code in bioql PyPI...
EUVD-2022-4199
Malicious code in bioql PyPI...
EUVD-2022-4203
Malicious code in bioql PyPI...
EUVD-2022-3523
Malicious code in bioql PyPI...
Hackers Exploit Milesight Routers to Send Phishing SMS to European Users
Unknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as part of a smishing campaign targeting users in European countries since at least February 2022. French cybersecurity company SEKOIA said the attackers are exploiting the cellular router's API to send...
Vvveb 安全漏洞
Vvveb is a powerful and easy-to-use CMS from Givan Individual Developers for building websites, blogs or e-commerce stores. A security vulnerability exists in Vvveb version 1.0.7.2 and earlier, which stems from an information disclosure issue in the Image Handler component...
DELL OpenManage Enterprise Information Disclosure Vulnerability
DELL OpenManage Enterprise is an enterprise-class systems management console from Dell designed to simplify IT infrastructure management and support centralized lifecycle management of PowerEdge servers, storage, network devices and third-party components. An information disclosure vulnerability...
PT-2025-32856 · Microsoft · Azure Virtual Machine
Name of the Vulnerable Software and Affected Versions: Azure Virtual Machines affected versions not specified Description: An issue exists in Azure Virtual Machines that allows an authorized attacker to disclose sensitive information over a network to an unauthorized actor. Recommendations: At th...
CVE-2020-36850
An information disclosure vulnerability exits in Sitecore JSS React Sample Application 11.0.0 - 14.0.1 that may cause page content intended for one user to be shown to another user...
Dell PowerFlex Manager VM Log Information Disclosure Vulnerability
Dell PowerFlex Manager VM is a virtual machine software from Dell for managing and monitoring storage systems. A log information disclosure vulnerability exists in Dell PowerFlex Manager VM versions prior to 4.6.2.1. An attacker could exploit this vulnerability to obtain user credentials and then...