Lucene search
K

7 matches found

CVE
CVE
added 2025/12/12 6:53 a.m.13 views

CVE-2025-67737

CVE-2025-67737 affects AzuraCast versions 0.23.1, where an API endpoint intended for internal use by sftpgo was exposed in the public HTTP API (at /api/internal/sftp-event). A user with valid SFTP credentials and knowledge of the station’s internal filesystem can craft a tailored HTTP request to ...

3.7CVSS6.1AI score0.00205EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.7 views

PT-2025-50896

Name of the Vulnerable Software and Affected Versions AzuraCast versions 0.23.1 Description AzuraCast is a self-hosted, all-in-one web radio management suite. Version 0.23.1 mistakenly includes an API endpoint intended for internal use by the SFTP software sftpgo, exposing it to the public-facing...

3.7CVSS5.4AI score0.00205EPSS
Exploits1References9
Malwarebytes
Malwarebytes
added 2025/10/15 4:18 p.m.4 views

TikTok scam sells you access to your own fake money

This scam starts in your TikTok DMs. A brand-new account drops a melodramatic message—terminal illness, last goodbye, “I left you some assets.” At the bottom: a ready-made username and password for a crypto site you’ve never used. It’s designed to feel urgent and personal so you tap before you...

6.6AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/05/12 12:0 a.m.6 views

The vulnerability of the OBVAM Internal Tfr Domain component of the Oracle Banking Virtual Account Management component in the banking analytics system’s simulation model of Oracle Financial Services Applications allows a perpetrator to cause service failures or gain access to read, modify, add, or delete data.

The vulnerability of the OBVAM Internal Tfr Domain component of the Oracle Banking Virtual Account Management component in the banking analytics system’s simulation model of Oracle Financial Services Applications is related to insufficient validation of input data. Exploiting this vulnerability...

6.1CVSS6.6AI score0.00399EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/05/12 12:0 a.m.5 views

The vulnerability of the Book/Internal Transfer component of the real-time payment processing software in Oracle Banking Payments allows a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Book/Internal Transfer component of the real-time payment processing software in Oracle Banking Payments is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain read, modify, add, or delete access...

5.5CVSS6.4AI score0.00382EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.4 views

Oracle Financial Services Applications 安全漏洞

Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The product includes core banking, online banking, and estate management. A security vulnerability exists in the OBVAM Internal Tfr Domain component of Oracle Financial Services Applications versions...

5.3CVSS6.9AI score0.00399EPSS
Exploits0References2
Hacker One
Hacker One
added 2014/05/01 7:58 p.m.270 views

Coinbase: Bypassing 2FA for BTC transfers

Under advanced settings, users have the ability to protect their wallet by requiring two-factor confirmation when sending bitcoins. Personally, I have configured my account with the most secure option, which requires two factor confirmation when sending any amount of bitcoins. However, a flaw...

7.2AI score
Exploits0
Rows per page
Query Builder