288 matches found
CVE-2025-42893
Due to an Open Redirect vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious URL that, if accessed by a victim, redirects them to an attacker-controlled site displayed within an embedded frame. Successful exploitation could allow the attacker to steal...
Framing the Hacker: Media Representations and Public Discourse in Germany
This paper examines how the figure of the hacker is portrayed in German mainstream media and explores the impact of media framing on public discourse. Through a longitudinal content analysis of 301 articles from four of the most widely circulated German newspapers Die Zeit, S�ddeutsche Zeitung,...
AZL-68516 CVE-2025-39987 affecting package kernel for versions less than 6.6.112.1-1
In the Linux kernel, the following vulnerability has been resolved: can: hi311x: populate ndochangemtu to prevent buffer overflow Sending an PFPACKET allows to bypass the CAN framework logic and to directly reach the xmit function of a CAN driver. The only check which is performed by the PFPACKET...
EUVD-2020-7635
Malware in sbrugna...
EUVD-2008-3442
Malware in sbrugna...
EUVD-2022-29662
Malicious code in bioql PyPI...
EUVD-2022-4438
Malicious code in bioql PyPI...
EUVD-2024-51462
Malicious code in bioql PyPI...
EUVD-2024-50108
Malicious code in bioql PyPI...
PT-2025-38142
Name of the Vulnerable Software and Affected Versions: MevzuatTR versions prior to 12.02.2025 Description: The software contains an Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' and Improper Restriction of Rendered UI Layers or Frames issue. This allows for...
Risks and Compliance with the EU'S Core Cyber Security Legislation
The European Union EU has long favored a risk-based approach to regulation. Such an approach is also used in recent cyber security legislation enacted in the EU. Risks are also inherently related to compliance with the new legislation. Objective: The paper investigates how risks are framed in the...
Linux Distros Unpatched Vulnerability : CVE-2022-24903
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception have a potential heap buffer overflow when octet-counted framing is used...
Extending the OWASP Multi-Agentic System Threat Modeling Guide: Insights from Multi-Agent Security Research
We propose an extension to the OWASP Multi-Agentic System MAS Threat Modeling Guide, translating recent anticipatory research in multi-agent security MASEC into practical guidance for addressing challenges unique to large language model LLM-driven multi-agent architectures. Although OWASP's...
Clickjacking
@haxtheweb/haxcms-nodejs and elmsln/haxcms are vulnerable to Clickjacking. The vulnerability is due to missing anti-framing headers caused by the absence of X-Frame-Options or equivalent headers in both the CMS and generated sites, allowing unauthenticated attackers to embed sensitive pages in...
TencentOS Server 3: rsyslog (TSSA-2022:0137)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0137 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2025-49192
The web application is vulnerable to clickjacking attacks. The site can be embedded into another frame, allowing an attacker to trick a user into clicking on something different from what the user perceives. This could potentially reveal confidential information or allow others to take control of...
Chain-Of-Code Collapse: Reasoning Failures in LLMs Via Adversarial Prompting in Code Generation
Large Language Models LLMs have achieved remarkable success in tasks requiring complex reasoning, such as code generation, mathematical problem solving, and algorithmic synthesis -- especially when aided by reasoning tokens and Chain-of-Thought prompting. Yet, a core question remains: do these...
CVE-2023-0155
An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown...
Alibaba Cloud Linux 3 : 0137: rsyslog (ALINUX3-SA-2022:0137)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0137 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-24903: Rsyslog is a rocket-fast system for...
Naming Is Framing: How Cybersecurity'S Language Problems Are Repeating in AI Governance
Language is not neutral; it frames understanding, structures power, and shapes governance. This paper argues that misnomers like cybersecurity and artificial intelligence AI are more than semantic quirks; they carry significant governance risks by obscuring human agency, inflating expectations, a...