14 matches found
EUVD-2021-26939
Malware in sbrugna...
EUVD-2009-1430
Malware in sbrugna...
EUVD-2020-19477
Malware in sbrugna...
EUVD-2021-14515
Malware in sbrugna...
EUVD-2016-4216
Malware in sbrugna...
EUVD-2024-2787
Malicious code in bioql PyPI...
CVE-2025-49592 n8n Login Flow has Open Redirect Vulnerability
n8n is a workflow automation platform. Versions prior to 1.98.0 have an Open Redirect vulnerability in the login flow. Authenticated users can be redirected to untrusted, attacker-controlled domains after logging in, by crafting malicious URLs with a misleading redirect query parameter. This may...
CVE-2024-38863
Exposure of CSRF tokens in query parameters on specific requests in Checkmk GmbH's Checkmk versions 2.3.0p18, 2.2.0p35 and 2.1.0p48 could lead to a leak of the token to facilitate targeted phishing attacks...
CVE-2025-27625
In Jenkins 2.499 and earlier, LTS 2.492.1 and earlier, redirects starting with backslash \ characters are considered safe, allowing attackers to perform phishing attacks by having users go to a Jenkins URL that will forward them to a different site, because browsers interpret these characters as...
CVE-2024-38863
Exposure of CSRF tokens in query parameters on specific requests in Checkmk GmbH's Checkmk versions 2.3.0p18, 2.2.0p35 and 2.1.0p48 could lead to a leak of the token to facilitate targeted phishing attacks...
PT-2023-23079 · Slate · Slate
Name of the Vulnerable Software and Affected Versions: Slate affected versions not specified Description: A missing origin validation in the Slate sandbox could be exploited by a malicious user to modify the page's content, which could lead to phishing attacks. Recommendations: At the moment, the...
Unspecified Vulnerability in Teclib GLPI
Teclib GLPI is an open source IT asset management suite from the French company Teclib. The suite includes features such as device status management, asset inventory storage, management processes and work log management. A security vulnerability exists in Teclib GLPI version 9.3.1. An attacker...
CVE-2004-1381
Firefox before 1.0 and Mozilla before 1.7.5 allow inactive background tabs to focus on input being entered in the active tab, as originally reported using form fields, which allows remote attackers to steal sensitive data that is intended for other sites, which could facilitate phishing attacks...
Mozilla Browser 0.80.91.x - Refresh Security Property Spoofing
Mozilla Browser 0.80.91.x - Refresh Security Property Spoofing source: https://www.securityfocus.com/bid/10796/info Mozilla and Firefox may permit malicious Web pages to spoof security properties of a trusted site. An attacker can exploit this issue to spoof the URI and SSL certificate of a site...