8 matches found
CVE-2025-41374
creationtimestamp| type| source ---|---|--- 2025-08-01 14:52:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvdvny4gkv2k...
CVE-2025-31258
creationtimestamp| type| source ---|---|--- 2025-05-12 22:47:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3loz2g3bg742n 2025-05-13 01:19:20+00:00| seen| https://t.me/cvedetector/25123 2025-05-13 03:17:38+00:00| seen| https://bsky.app/profile/dinosn.bsky.social/post/3lozjjv43f22...
GHSA-6377-HFV9-HQF6
creationtimestamp| type| source ---|---|--- 2024-11-06 19:33:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113437679723817793...
H-01 Unmitigated
Lines of code Vulnerability details Mitigation of H-01: Mitigation Error, see comments Link to Issue: code-423n4/2023-09-asymmetry-findings62 Comments The sponsor has provided a detailed response in the following comment: code-423n4/2023-09-asymmetry-findings62 comment In summary their analysis i...
Mitigation Confirmed for M-01
MITIGATION IS NOT CONFIRMED MITIGATION IS NOT CONFIRMED Mitigation of M-01: Issue not mitigated Link to Issue: code-423n4/2023-03-asymmetry-findings1078 Comments While the "division before multiplication" issues described in M-01 have been mitigated in the proposed changeset, there are other case...
Mitigation of M-06: See comments
Mitigation of M-06: See comments Link to Issue: code-423n4/2023-03-asymmetry-findings770 Comments Sponsor decided not to mitigate the issue with the following comment: This is as expected I agree that the issue is TOO broad and some of the described scenarios don't make sense at all e.g. the...
Rest API Endpoint Leaked Project Categories, Project categories, status categories, issue link types, priorities, and resolutions to Unauthorised users
Affected versions of Atlassian Jira Server and Data Center allows an Un-Authenticated attacker to view Project categories, status categories, issue link types, priorities, and resolutions via an Information Disclosure vulnerability on the following Endpoints: /rest/api/2/issueLinkType...
Gitea Cross-Site Scripting Vulnerability (CNVD-2022-11525)
A cross-site scripting vulnerability exists in Gitea, a Go-based lightweight git service developed by the Gitea community. The vulnerability stems from a mirror setting in the product wiki/issue link that does not effectively handle special characters in the input data. An attacker could execute...