CLSA-2026-1778839424 gnutls: Fix of CVE-2026-3833

CVE-2026-3833: fix excludedSubtrees/permittedSubtrees bypass by performing case-insensitive comparison of dNSName and rfc822Name domain labels in X.509 nameConstraints processing...

Advantech iView saveEditDeviceValues SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NetworkServlet endpoint, which listens on TCP port 8080 by default. When...

CredPhish - A PowerShell Script Designed To Invoke Legitimate Credential Prompts And Exfiltrate Passwords Over DNS

CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies on CredentialPicker to collect user passwords, Resolve-DnsName for DNS exfiltration, and Windows Defender's ConfigSecurityPolicy.exe to perform arbitrary GET requests. For a walkthrough, see...

vbbuletin 4.0.4 - Multiple Vulnerabilities

No description provided by source. /======================================================================\ || || || Vurnerebility vBulletin - http://www.vbulletin.org || || Local or adserver Javascript,forumdisplay.php Code Execution || || Version license 4.0.4 || || info set cookies, error issu...

vbbuletin 4.0.4 - Multiple Vulnerabilities

/======================================================================\ || || || Vurnerebility vBulletin - http://www.vbulletin.org || || Local or adserver Javascript,forumdisplay.php" Code Execution || || Version license 4.0.4 || || info set cookies, error issue & critical-information-disclosur...