31 matches found
MINI-GW72-97XX-8PV5
Bulletin has no description...
MINI-JPVH-26HR-397P
Bulletin has no description...
Astra Linux – Vulnerability in Firefox
By using XSL Transforms, a malicious webserver could serve a user an XSL document that would continue to execute JavaScript within the bounds of the same-origin policy even after the tab was closed. This vulnerability affects Firefox versions earlier than 97...
Oracle Linux 8 : libxml2 (ELSA-2026-11349)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-11349 advisory. - Fix CVE-2025-9714 RHEL-119279 - Fix CVE-2025-32415 RHEL-100177 - Fix CVE-2025-7425 RHEL-102797 - Fix CVE-2025-6021 RHEL-96498 - Fix CVE-2025-49794 RHEL-96398...
CVE-2026-1396
The Magic Conversation For Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'magic-conversation' shortcode in all versions up to, and including, 3.0.97 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...
CVE-2026-3979
creationtimestamp| type| source ---|---|--- 2026-03-12 03:16:40+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3979 2026-03-28 21:07:19+00:00| seen| https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mi5k2fmvay2t 2026-03-29 20:43:59+00:00|...
MiracleLinux 7 : SDL-1.2.15-15.el7 (AXSA:2019-4397:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4397:01 advisory. SDL: CVE-2019-13616 not fixed in Asianux Server 7 erratum RHSA-2019:3950 CVE-2019-14906 Tenable has extracted the preceding description block direct...
CVE-2022-49758
creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...
EUVD-2025-66978
Malicious code in rudi-mangut97-miaww npm...
BELL-CVE-2025-39713
Bulletin has no description...
CVE-2022-50097
CVE-2022-50097 affects the Linux kernel’s video fbdev s3fb driver. The bug arises in s3fb_set_par() where the code computes screen_size from user input and can exceed info->screen_size, leading to a kernel PAGE_FAULT on write (local access) during memset_io. The issue is mitigated by the docum...
CVE-2022-22762
Under certain circumstances, a JavaScript alert or prompt could have been shown while another website was displayed underneath it. This could have been abused to trick the user. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox ...
CVE-2025-21597
An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer to cause Denial of Service DoS. On all Junos OS and Junos OS Evolved platforms, when BGP...
Inure 信息泄露漏洞
Inure is an Android application manager by the individual developer Hamza Rizwan. An information disclosure vulnerability exists in versions prior to Inure build97, which stems from a misconfiguration of the AndroidManifest.xml file and could lead to task hijacking and disclosure of sensitive...
CVE-2022-4957
creationtimestamp| type| source ---|---|--- 2023-12-22 09:22:15+00:00| seen| https://t.me/ctinow/158263...
CVE-2022-4697
creationtimestamp| type| source ---|---|--- 2022-12-23 18:14:41+00:00| seen| https://t.me/cibsecurity/55250...
CVE-2022-22758
When clicking on a tel: link, USSD codes, specified after a \ character, would be included in the phone number. On certain phones, or on certain carriers, if the number was dialed this could perform actions on a user's account, similar to a cross-site request forgery attack.This bug only affects...
CVE-2022-22757
Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...
CVE-2022-22755
By using XSL Transforms, a malicious webserver could have served a user an XSL document that would continue to execute JavaScript within the bounds of the same-origin policy even after the tab was closed. This vulnerability affects Firefox 97...
CVE-2022-29747
creationtimestamp| type| source ---|---|--- 2022-05-12 18:36:00+00:00| seen| https://t.me/cibsecurity/42484...