CVE-2026-28412

Textream is a free macOS teleprompter app. Prior to version 1.5.1, the DirectorServer WebSocket server imposes no limit on concurrent connections. Combined with a broadcast timer that sends state to all connected clients every 100 ms, an attacker can exhaust CPU and memory by flooding the server...

CVE-2026-28412

Textream is a free macOS teleprompter app. Prior to version 1.5.1, the DirectorServer WebSocket server imposes no limit on concurrent connections. Combined with a broadcast timer that sends state to all connected clients every 100 ms, an attacker can exhaust CPU and memory by flooding the server...

EUVD-2026-9201

Textream is a free macOS teleprompter app. Prior to version 1.5.1, the DirectorServer WebSocket server imposes no limit on concurrent connections. Combined with a broadcast timer that sends state to all connected clients every 100 ms, an attacker can exhaust CPU and memory by flooding the server...

EUVD-2025-201276

Solstice Pod API version 5.5, 6.2 contains an unauthenticated API endpoint /api/config that exposes sensitive information such as the session key, server version, product details, and display name. Unauthorized users can extract live session information by accessing this endpoint without...

New EX-22 Tool Empowers Hackers with Stealthy Ransomware Attacks on Enterprises

A new post-exploitation framework called EXFILTRATOR-22 aka EX-22 has emerged in the wild with the goal of deploying ransomware within enterprise networks while flying under the radar. "It comes with a wide range of capabilities, making post-exploitation a cakewalk for anyone purchasing the tool,...

Palo Alto Networks Cortex XDR 代码问题漏洞

Palo Alto Networks Cortex XDR is a security operations platform for remote endpoint-based detection from Palo Alto Networks Malaysia. A code issue vulnerability exists in the Palo Alto Networks Cortex XDR agent that can be exploited by an attacker to execute a live endpoint session used by a loca...

MSN Hotmail - Password Reset (Session) Web Vulnerability

Document Title: =============== MSN Hotmail - Password Reset Session Web Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=994 Video: https://www.youtube.com/watch?v=INq6CirLgt0 Release Date: ============= 2013-06-29 Vulnerability Laboratory ID VL-ID:...

Yahoo Babelfish Translator - Cross Site Scripting

Document Title: =============== Yahoo Babelfish Translator - Cross Site Scripting References: =========== Download: http://www.vulnerability-lab.com/resources/videos/350.wmv View: http://www.youtube.com/watch?v=u74PrIXydi4 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=350 Release...

StarMoney Banking Software - Multiple Vulnerabilities [HD]

Document Title: =============== StarMoney Banking Software - Multiple Vulnerabilities HD References: =========== Download: http://www.vulnerability-lab.com/resources/videos/258.wmv View: http://www.youtube.com/watch?v=Bymh3ct1v4g Release Date: ============= 2011-08-30 Vulnerability Laboratory ID...