CVE-2022-23605

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

EUVD-2022-28575

Malicious code in bioql PyPI...

CVE-2025-59956 AgentAPI exposed user chat history via a DNS rebinding attack

AgentAPI is an HTTP API for Claude Code, Goose, Aider, Gemini, Amp, and Codex. Versions 0.3.3 and below are susceptible to a client-side DNS rebinding attack when hosted over plain HTTP on localhost. An attacker can gain access to the /messages endpoint served by the Agent API. This allows for th...

Coder AgentAPI exposed user chat history via a DNS rebinding attack

Summary AgentAPI prior to version 0.4.0 was susceptible to a client-side DNS rebinding attack when hosted over plain HTTP on localhost. Impact An attacker could have gained access to the /messages endpoint served by the Agent API. This allowed for the unauthorized exfiltration of sensitive user...

CVE-2022-23605 Expired Ephemeral Messages not reliably removed in wire-webapp

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

CVE-2022-23605

CVE-2022-23605 affects Wire Webapp: expired ephemeral messages were not reliably removed from local chat history and, in affected versions prior to 2022-01-27-production.0, ephemeral messages/assets could be accessible via the local search function. Viewing a message in chat view triggers deletio...

CVE-2022-23605 Expired Ephemeral Messages not reliably removed in wire-webapp

Wire webapp is a web client for the wire messaging protocol. In versions prior to 2022-01-27-production.0 expired ephemeral messages were not reliably removed from local chat history of Wire Webapp. In versions before 2022-01-27-production.0 ephemeral messages and assets might still be accessible...

Morpheus <= 4.8 - Local Chat Passwords Disclosure Exploit

No description provided by source. / Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local users. Discovere...

Morpheus &lt;= 4.8 Local Chat Passwords Disclosure Exploit

No description provided by source. / Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local users. Discovere...

Morpheus 4.8 - Local Chat Passwords Disclosure

/ Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local users. Discovered & Coded by: Kozan Credits to ATma...

Morpheus 4.8 - Local Chat Passwords Disclosure

Morpheus 4.8 - Local Chat Passwords Disclosure / Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local user...

Morpheus <= 4.8 Local Chat Passwords Disclosure Exploit

Exploit for unknown platform in category local exploits ======================================================= Morpheus include include HKEY hKey; define BUFSIZE 100 char prgfilesBUFSIZE; DWORD dwBufLen=BUFSIZE; LONG lRet; int adresalchar FilePath,char Str char kr; int Sayac=0; int Offset=-1; FI...