16 matches found
Attackers impersonate Temu in ClickFix $Temu airdrop scam
Update Friday, March 13: A Temu spokesperson contacted us to say: " Temu has not issued any cryptocurrency, token, or digital asset—including any so-called "Temu Coin." Any airdrop, wallet claim, or cryptocurrency offer purporting to be from Temu is fraudulent and has no connection to our company...
CVE-2026-23623
Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...
CVE-2026-23623
CVE-2026-23623 affects Collabora Online and Collabora Online Development Edition. A user with view-only rights and no download privileges can obtain a local copy of a shared file. The vulnerability is triggered by pressing Ctrl+Shift+S, which initiates the file download process despite missing do...
CVE-2026-23623 Collabora Online vulnerable to Authorization Bypass
Collabora Online is a collaborative online office suite based on LibreOffice technology. Prior to Collabora Online Development Edition version 25.04.08.2 and prior to Collabora Online versions 23.05.20.1, 24.04.17.3, and 25.04.7.5, a user with view-only rights and no download privileges can obtai...
EUVD-2013-0260
Malware in sbrugna...
Scalefusion kiosk security vulnerability
ScaleFusion is a mobile device management and unified endpoint management application from ScaleFusion. A security vulnerability exists in the Scalefusion kiosk version 10.5.2, which stems from the ability to use Alt-F4, resulting in the inability to properly restrict users from using the Edge...
[SECURITY] [DSA 5501-1] gnome-shell security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5501-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 18, 2023 https://www.debian.org/security/faq -...
Silverstipe CMS Stored XSS in custom meta tags
A malicious content author could create a custom meta tag and execute an arbitrary JavaScript payload. This would require convincing a legitimate user to access a page and enter a custom keyboard shortcut. This requires CMS access to exploit...
The vulnerability of Firefox browser, related to incorrect application installation when pressing the ALT + a keys on the keyboard, allows the attacker to compromise data integrity.
The vulnerability of Firefox browsers is related to the incorrect installation of extensions when pressing the ALT + a keys on the keyboard. This allows extensions to be installed without user confirmation. Exploiting this vulnerability can enable an attacker to compromise data integrity remotely...
OLX: XSS inside HTML Link Tag
Hello, i discovered XSS in sharjah.dubizzle.com. XSS is reflected inside HTML Link tag so it need some condition to trigger the payload. Step to Reproduce - Visit https://sharjah.dubizzle.com/property-for-sale/land" accesskey="X" onclick=alert1337...
Code injection
The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows 1 remote authenticated users with the "view shortcuts" permission to read nodes or 2 remote authenticated users with the "admin shortcuts" permission to read, edit, or...
CVE-2013-0226
The Drupal Keyboard Shortcut Utility module (7.x-1.x) is vulnerable prior to 7.x-1.1 due to insufficient checks of node access. Remote authenticated users with the “view shortcuts” permission can read nodes, and those with the “admin shortcuts” permission can read, edit, or delete nodes via unspe...
CVE-2013-0226
The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows 1 remote authenticated users with the "view shortcuts" permission to read nodes or 2 remote authenticated users with the "admin shortcuts" permission to read, edit, or...
SA-CONTRIB-2013-009 - Keyboard Shortcut Utility - Access Bypass - module unsupported
The Keyboard Shortcut Utility module enables you to create keyboard shortcuts on your website. You can create a shortcut to go to a page internal or external or call a JavaScript function. The module doesn't sufficiently check node access to view nodes for users who have "view shortcuts"...
Secunia Research: Microsoft Internet Explorer Keyboard Shortcut Processing Vulnerability
====================================================================== Secunia Research 13/12/2005 Microsoft Internet Explorer Keyboard Shortcut Processing Vulnerability ====================================================================== Table of Contents Affected...
CVE-2002-2275
Fortres 101 4.1 allows local users to bypass Fortres by pressing the Windows and "F" key together for 30 seconds, which opens multiple windows and eventually causes explorer.exe to crash, which then opens an unrestricted explorer.exe...