EUVD-2023-12507

Malicious code in bioql PyPI...

CVE-2024-56197

Discourse is an open source platform for community discussion. PM titles and metadata can be read by other users when the "PM tags allowed for groups" option is enabled, the other user is a member of a group added to this option, and the PM has been tagged. This issue has been patched in the late...

CVE-2022-2080

The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conversation via a IDOR attack. Note: Attackers are not able to see...

PBBoard CMS - Persistent Cross-Site Scripting

PBBoard CMS - Persistent Cross-Site Scripting Exploit Title : PBBoard CMS Stored xss vulnerability Author : Manish Kishan Tanwar Vendor : http://www.pbboard.info/ version affected: all Date : 7/12/2014 Discovered @ : INDISHELL Lab Love to : zero cool,Team indishell,Mannu,Viki,Hardeep Singh,jagrit...

OpenBB 1.0.x - Private Message Disclosure

OpenBB 1.0.x - Private Message Disclosure source: https://www.securityfocus.com/bid/10217/info It has been reported that OpenBB is affected by a private message disclosure vulnerability. This issue is due to a design error that fails to validate user credentials. This issue might allow an attacke...