UBUNTU-CVE-2026-10275

A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is possible to be carried out remotely. The complexity of an atta...

EUVD-2026-33656

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in E2Pdf.Com e2pdf allows Reflected XSS. This issue affects e2pdf: from n/a through 1.32.14...

CVE-2025-69025

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Aethonic Poptics poptics allows Retrieve Embedded Sensitive Data.This issue affects Poptics: from n/a through = 1.0.20...

EUVD-2021-0202

Malware in sbrugna...

ConCap: Practical Network Traffic Generation for Flow-Based Intrusion Detection Systems

Network Intrusion Detection Systems NIDS have been studied in research for almost four decades. Yet, despite thousands of papers claiming scientific advances, a non-negligible number of recent works suggest that the findings of prior literature may be questionable. At the root of such a...

Scammers Use Fake Kling AI Ads to Spread Malware

Scammers impersonate Kling AI AI-powered video generation tool using fake ads and websites to spread malware. Check Point Research details how the attack tricks users into downloading RATs...

CVE-2024-52468

CVE-2024-52468 is a Reflected Cross-Site Scripting vulnerability in the WordPress LeadBoxer plugin. The issue arises from improper input neutralization during web page generation, affecting LeadBoxer for WordPress versions up to 1.2 (per PT-2024-35308) and up to 1.3 (per Wordfence). Exploitation ...

Yii 跨站脚本漏洞

Yii is a component-based, high-performance PHP framework for developing large-scale web applications developed by the YII team. A security vulnerability exists in Yii Yii2 Gii 2.2.4 and earlier versions, which originates from a vulnerability that allows XSS attacks to be stored by injecting the...

NTPsec 加密问题漏洞

NTPsec is a more secure NTP. A security vulnerability exists in NTPsec 1.2.0 that allows ntpkeygen to generate keys...

Subdomain3 - A New Generation Of Tool For Discovering Subdomains

Subdomain3 is a new generation of tool , It helps penetration testers to discover more information in a shorter time than other tools.The information includes subdomains, IP, CDN, and so on. Please enjoy it. Features More quick Three patterns for speed. User can modify the...

DEBIAN-CVE-2018-16837

Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear text form for every user which have access just t...

[SECURITY] Fedora 26 Update: rubygem-yard-0.9.8-4.fc26

YARD is a documentation generation tool for the Ruby programming language. It enables the user to generate consistent, usable documentation that can be exported to a number of formats very easily, and also supports extending for custom Ruby constructs such as custom class level definitions...

[SECURITY] Fedora 20 Update: pwgen-2.07-1.fc20

pwgen generates random, meaningless but pronounceable passwords. These passwords contain either only lowercase letters, or upper and lower case, or upper case, lower case and numeric digits. Upper case letters and numeric digits are placed in a way that eases memorizing the password...

FreeBSD : globus -- Multiple tmpfile races (5039ae61-2c9f-11db-8401-000ae42e9b93)

The Globus Alliance reports : The proxy generation tool grid-proxy-init creates the file, secures the file to provide access only to owner and writes proxy to the file. A race condition exists between the opening of the proxy credentials file, and making sure it is safe file to write to. The chec...