Lucene search
+L

200 matches found

Github Security Blog
Github Security Blog
added 2026/01/14 4:45 p.m.14 views

Weblate leaks information via screenshots

Impact The screenshot images were served directly by the HTTP server without proper access control. This could allow an unauthenticated user to access screenshots after guessing their filename. Patches https://github.com/WeblateOrg/weblate/pull/17516 References Thanks to Lukas May and Michael Leu...

7.5CVSS7AI score0.00323EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:58 a.m.6 views

CVE-2025-40933

Apache::AuthAny::Cookie v0.201 or earlier for Perl generates session ids insecurely. Session ids are generated using an MD5 hash of the epoch time and a call to the built-in rand function. The epoch time may be guessed, if it is not leaked from the HTTP Date header. The built-in rand function is...

7.5CVSS7AI score0.00383EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:40 a.m.9 views

CVE-1999-0505

A Windows NT domain user or administrator account has a guessable password...

7.2CVSS6.9AI score0.01794EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:40 a.m.17 views

CVE-1999-0518

A NETBIOS/SMB share password is guessable...

7.5CVSS7.2AI score0.047EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.5 views

CVE-1999-0521

An NIS domain name is easily guessable...

7.2CVSS7AI score0.00432EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.5 views

CVE-1999-0699

The Bluestone Sapphire web server allows session hijacking via easily guessable session IDs...

7.5CVSS7AI score0.01144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.11 views

CVE-1999-0503

A Windows NT local user or administrator account has a guessable password...

7.2CVSS6.7AI score0.01835EPSS
Exploits4References1
Malwarebytes
Malwarebytes
added 2025/12/16 11:46 a.m.8 views

Photo booth flaw exposes people’s private pictures online

Photo booths are great. You press a button and get instant results. The same can’t be said, allegedly, for the security practices of at least one company operating them. A security researcher spent weeks trying to warn a photo booth operator about a vulnerability in its system. The flaw reportedl...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/12 3:46 a.m.14 views

CVE-2025-11521

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS7.6AI score0.00472EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/11 6:30 a.m.6 views

EUVD-2025-60923

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS7.1AI score0.00472EPSS
Exploits0References3
NVD
NVD
added 2025/11/11 4:15 a.m.8 views

CVE-2025-11521

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS0.00472EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/11 3:30 a.m.19 views

CVE-2025-11521 Astra Security Suite – Firewall & Malware Scan <= 0.2 - Unauthenticated Arbitrary File Upload

The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and including, 0.2. This makes it possible for unauthenticated attacke...

8.1CVSS0.00472EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-2729

Malware in sbrugna...

7.5CVSS7.5AI score0.01477EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-1999-0519

Malware in sbrugna...

7.2CVSS6.4AI score0.00432EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-6229

Malware in sbrugna...

10CVSS9.4AI score0.0181EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-1999-0501

Malware in sbrugna...

7.2CVSS6.2AI score0.01835EPSS
Exploits4References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0307

Malware in sbrugna...

7.5CVSS7.5AI score0.01861EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2728

Malware in sbrugna...

7.5CVSS7.5AI score0.01477EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-1999-0505

Malware in sbrugna...

7.5CVSS9.2AI score0.01516EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-0954

Malware in sbrugna...

10CVSS6.4AI score0.03823EPSS
Exploits0References4
Rows per page
Query Builder