An Empirical Comparison of Security and Privacy Characteristics of Android Messaging Apps

Mobile messaging apps are a fundamental communication infrastructure, used by billions of people every day to share information, including sensitive data. Security and Privacy are thus critical concerns for such applications. Although the cryptographic protocols prevalent in messaging apps are...

Malicious code in epic-minimalist-blog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88594dc7418cc4928defaac06863881868aeaf3e78f9d9037cfd68bba955edee The package epic-minimalist-blog was found to contain malicious code...

MAL-2025-49164 Malicious code in epic-minimalist-blog (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 88594dc7418cc4928defaac06863881868aeaf3e78f9d9037cfd68bba955edee The package epic-minimalist-blog was found to contain malicious code...

EUVD-2025-37129

Malicious code in epic-minimalist-blog npm...

EUVD-2011-3818

Malware in sbrugna...

[SECURITY] Fedora 42 Update: mingw-python3-3.11.13-4.fc42

MinGW Windows python3...

[SECURITY] Fedora 38 Update: cjson-1.7.17-1.fc38

cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file...

Markright 1.0 - XSS to Remote Command Execution Vulnerability

Exploit Title: Markright 1.0 - XSS to RCE Exploit Author: TaurusOmar CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Risk: High 8.8 Vendor Homepage: https://github.com/dvcrn/markright Version: 1.0 Tested on: Linux, MacOs,Windows Software Description: A minimalist discount editor with github flavor, ...

OKLite suffers from a logic flaw vulnerability (CNVD-2020-71654)

OKLite is a minimalist enterprise website system, mainly targeting display-oriented enterprise website users. OKLite has a logic flaw vulnerability that can be exploited by attackers to gain control of the server...

EasySNS Minimalist Community loginHandle method suffers from SQL injection vulnerability

EasySNS Minimalist Community is for the new database architecture and program structure, to the group as the basic unit to form an interactive community. A SQL injection vulnerability exists in the loginHandle method of the EasySNS community. The vulnerability is due to the failure of the system ...

EasySNS Minimalist Community callback_setinfo method suffers from SQL injection vulnerability

EasySNS Minimalist Community is for the new database architecture and program structure, to the group as the basic unit to form an interactive community. There is a SQL injection vulnerability in the callbacksetinfo method of EasySNS Minimalist Community. The vulnerability is due to the failure o...

EasySNS Minimalist Community getgrouptopic method has SQL injection vulnerability

EasySNS Minimalist Community Group Edition is a new database architecture and program structure to form an interactive community with a group as the basic unit. EasySNS Minimalist Community getgrouptopic method has a SQL injection vulnerability, which can be exploited by attackers to obtain...

WordPress Haiku Minimalist Audio Player Plugin <= 1.1.0 - Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability in jPlayer.swf. Solution Update the plugin...

Microsoft Edge: The Windows 10 Web Browser

Meet Microsoft’s replacement to its old web browser Internet Explorer. The Project Spartan Web browser for Windows 10 has now an official name — Microsoft Edge. Yes, Microsoft’s new web browser shipping on all Windows 10 devices, from computers to smartphones and tablets, is dubbed Microsoft Edge...

haiku-minimalist-audio-player <= 1.1.0 - jPlayer.swf XSS

The haiku-minimalist-audio-player WordPress plugin was affected by a jPlayer.swf XSS security vulnerability...

Wordpress haiku-minimalist-audio-player plugin Full Path Disclosure vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

LabWiki 1.5 Cross Site Scripting

Information -------------------- Name : XSS Vulnerabilities in LabWiki Software : LabWiki 1.5 and possibly below. Vendor Homepage : http://www.bioinformatics.org/phplabware/labwiki/index.php Vulnerability Type : Cross-Site Scripting Severity : Critical Researcher : Canberk Bolat Advisory Referenc...

Elefant CMS 1.0.2 Cross Site Scripting

elefantcms vendor: http://www.elefantcms.com Version: Latest stable release: 1.0.2 Author: Karthik R 3psil0nLambDa Email: [email protected] My blog: www.epsilonlambda.wordpress.com Google dork: Powered by Elefant CMS...

CVE-2011-3861

Cross-site scripting XSS vulnerability in the Web Minimalist 200901 theme before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...

Cross site scripting

Cross-site scripting XSS vulnerability in the Web Minimalist 200901 theme before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to index.php...