3853 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-21747
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/ast: astdp: Fix timeout for enabling video signal The ASTDP transmitter sometimes takes ...
Linux Distros Unpatched Vulnerability : CVE-2021-47671
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: can: etases58x: es58xrxerrmsg: fix memory leak in error path In es58xrxerrmsg, if...
CVE-2025-8852
WuKongOpenSource WukongCRM 11.0 is affected by CVE-2025-8852 in the API Response Handler’s /adminFile/upload area. The vulnerability enables information exposure via error messages and supports remote initiation. Publicly disclosed exploit information exists (POC), with multiple sources confirmin...
Linux Distros Unpatched Vulnerability : CVE-2011-1187
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google Chrome before 10.0.648.127 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, related to an error message leak...
CVE-2025-8548
A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue affects the function sendEmailCode of the file src/main/java/co/yiiu/pybbs/controller/api/SettingsApiController.java of the component Registered Email Handler. The manipulation of the argument email lea...
Linux Distros Unpatched Vulnerability : CVE-2021-43542
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Using XMLHttpRequest, an attacker could have identified installed applications by probing error messages for loading external protocols. This vulnerability...
CVE-2025-8340
A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file filldetails.php of the component Error Message Handler. The manipulation of the argument email leads to cross site scripting...
CVE-2025-8340
CVE-2025-8340 affects Code-Projects Intern Membership Management System 1.0, specifically the Error Message Handler’s fill_details.php. The vulnerability arises from manipulating the email parameter, enabling remote cross-site scripting (XSS). The issue can be exploited remotely and the exploit h...
CVE-2025-8340 code-projects Intern Membership Management System Error Message fill_details.php cross site scripting
A vulnerability was found in code-projects Intern Membership Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file filldetails.php of the component Error Message Handler. The manipulation of the argument email leads to cross site scripting...
Security Bulletin: IBM InfoSphere Information Server is vulnerable to sensitive information disclosure (CVE-2025-25045)
Summary A sensitive information disclosure vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-25045 DESCRIPTION: IBM InfoSphere Information Server authenticated user to obtain sensitive information when a detailed technical error message is...
CVE-2025-44136
MapTiler Tileserver-php v2.0 is vulnerable to Cross Site Scripting XSS. The GET parameter "layer" is reflected in an error message without html encoding. This leads to XSS and allows an unauthenticated attacker to execute arbitrary HTML or JavaScript code on a victim's browser...
USN-7647-1 ledgersmb vulnerabilities
It was discovered that LedgerSMB did not check the origin of HTML fragments. An attacker could possibly use this issue to send a maliciously crafted URL to the server and obtain sensitive information, or execute arbitrary code. This issue only affected Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, and Ubun...
Exploit for Cross-site Scripting in Maptiler Tileserver_Php
CVE-2025-44136 Unauthenticated XSS in MapTiler Tileserver-php...
CVE-2024-37524
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser...
CVE-2025-36090
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain information about the application framework which could be used in reconnaissance to gather information for future attacks from a detailed technical error message...
Unspecified Vulnerability in Endress+Hauser MEAC300-FNADE4 (CNVD-2025-16359)
The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that stems from an error message discrepancy that can be exploited by an attacker to cause username enumeratio...
CVE-2024-37524
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser...
CVE-2025-36090
CVE-2025-36090 affects IBM Analytics Content Hub versions 2.0–2.3. The vulnerability stems from returning detailed technical error messages that disclose information about the application framework, enabling information disclosure that could aid reconnaissance for future attacks. Affected product...
CVE-2024-37524 IBM Analytics Content Hub information disclosure
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser...
CVE-2025-38321
In the Linux kernel, the following vulnerability has been resolved: smb: Log an error when closeallcacheddirs fails Under low-memory conditions, closeallcacheddirs can't move the dentries to a separate list to dput them once the locks are dropped. This will result in a "Dentry still in use" error...