EUVD-2023-27897

Malicious code in bioql PyPI...

CVE-2024-42246

In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket When using a BPF program on kernelconnect, the call can return -EPERM. This causes xstcpsetupsocket to loop forever, filling up the syslog and causing the...

MAL-2024-2693 Malicious code in neil-tsakatsa (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in neil-tsakatsa (npm)

--- -= Per source details. Do not edit below this line.=-...

CVE-2023-51548

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Neil Gee SlickNav Mobile Menu allows Stored XSS.This issue affects SlickNav Mobile Menu: from n/a through 1.9.2...

CVE-2023-51548

CVE-2023-51548 concerns the WordPress plugin SlickNav Mobile Menu. The vulnerability is an Stored Cross-Site Scripting (XSS) due to improper neutralization of input during web page generation, allowing injected scripts to be stored and executed in pages viewed by users. Affected versions are Slic...

neil-landscaping.ca Improper Access Control vulnerability OBB-3789432

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-23811

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Neil Gee Smoothscroller plugin = 1.0.0 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Neil Gee Smoothscroller plugin = 1.0.0 versions...

CVE-2023-23811 WordPress Smoothscroller Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Neil Gee Smoothscroller plugin = 1.0.0 versions...

CVE-2023-23811

CVE-2023-23811 affects the WordPress plugin Smoothscroller by Neil Gee. It is a Stored XSS vulnerability that requires admin+ privileges and affects versions

PT-2023-19225 · Unknown · Neil Gee Smoothscroller

Name of the Vulnerable Software and Affected Versions: Neil Gee Smoothscroller plugin versions prior to 1.0.0 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For Neil Gee Smoothscroller plug...

acme.sh -- closes potential remote vuln

Neil Pang reports: HiCA was injecting arbitrary code/commands into the certificate obtaining process and acme.sh is running them on the client machine...

homepage 路径遍历漏洞

homepage is a web application for personal websites by Neil Lakin, an individual developer in the United States. A security vulnerability exists in homepage version 2017-03-06 and prior versions, which stems from an incorrect call to Flask's sendfile function that results in absolute path travers...

Oracle OpenJDK ECDSA Signatures Vulnerability (CVE-2022-21449)

Oracle OpenJDK is prone to vulnerability in the implementation of ECDSA signature verification Component: security-libs/java.security. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Intelligence-driven disruption of ransomware campaigns

By Neil Jenkins and Matthew Olney. Note: Our guest co-author, Neil Jenkins, is the Chief Analytic Officer at the Cyber Threat Alliance. He leads the CTA's analytic efforts, focusing on the development of threat profiles, adversary playbooks and other analysis using the threat intelligence in the...

Oracle Linux 6 : kernel (ELSA-2017-2681)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-2681 advisory. 2.6.32-696.10.2.OL6 - Update genkey bug 25599697 2.6.32-696.10.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil Horman 1490060 1490062...

RestWS - Moderately Critical - Information Disclosure - SA-CONTRIB-2017-024

RestWS makes Drupal Entity data available in a REST API. The module doesn’t sufficiently check for access to properties when filtering queries. This vulnerability is mitigated by the fact that an attacker must have a role that allows them to access an entity type with access-controlled properties...

neilfitzgeraldphoto.co.nz XSS vulnerability

Vulnerable URL: http://www.neilfitzgeraldphoto.co.nz/gallery/picture.php/"/category/abstracts Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 23938324 VIP website status:| No Check...

Breaking: Edward Snowden Joins Twitter & Only Follows ‘NSA’

Whistleblower Edward Snowden just joined Twitter, and his first tweet seems to be directed at the US National Security Agency NSA. Yes, the world's most popular whistleblower and data privacy advocate has finally joined Twitter just two hours ago, and his first tweet came, “Can you hear me now?”...