EUVD-2010-1421

Malware in sbrugna...

EUVD-2021-28018

Malicious code in bioql PyPI...

Maharashtra State Electricity Distribution Maharashtra State Electricity Board Android Application 信息泄露漏洞

Maharashtra State Electricity Distribution Maharashtra State Electricity Board Android Application is an official consumer oriented application of Maharashtra State Electricity Distribution of India is an official consumer oriented application of Maharashtra State Electricity Distribution. A...

Privilege escalation

HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously disclosed a sensitive URL to authenticated parties, which could be used for privilege escalation or unauthorized modification of a Terraform configuration. Fixed in v202109-1...

Tp-link TP-Link TL-SG2005和TP-Link TL-SG2008 跨站请求伪造漏洞

Tp-link TP-Link TL-SG2005 and TP-Link TL-SG2008 are both switches from China's Tp-link. A cross-site request forgery vulnerability exists in multiple Tp-Link models. The vulnerability stems from the lack of authentication of sensitive URLs within the switch, which allows an attacker to modify...

philadelphia.mclaren.com XSS vulnerability

Open Bug Bounty ID: OBB-645762 Description| Value ---|--- Affected Website:| philadelphia.mclaren.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Information Disclosure

Moodle is vulnerable to information disclosure. Attackers are able to obtain sensitive URL information through the Referer log because it doesn't correctly restrict links with the blank attribute...

mosaic.mcgrathfoundation.com.au XSS vulnerability

Vulnerable URL: https://mosaic.mcgrathfoundation.com.au/mosaicmobile.php?key=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unkno...

CVE-2016-0393

IBM Maximo Asset Management 7.5 before 7.5.0.10-TIV-MBS-IFIX002 and 7.6 before 7.6.0.5-TIV-MAMMT-FP001 allows remote attackers to obtain sensitive URL information by reading log files...

CVE-2016-2190

Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not properly restrict links, which allows remote attackers to obtain sensitive URL information by reading a Referer log...

Information disclosure

Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not properly restrict links, which allows remote attackers to obtain sensitive URL information by reading a Referer log...

Mozilla Thunderbird 3.1.x < 3.1.1 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 3.1.1. Such versions are potentially affected by the following security issues : - Multiple memory safety bugs could result in memory corruption, potentially resulting in arbitrary code execution. MFSA 2010-34 - It may be possible to run...

Mozilla Thunderbird 3.1.x < 3.1.1 Multiple Vulnerabilities

Binary data 5609.prm...

Mozilla Thunderbird < 3.0.6 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 3.0.6. Such versions are potentially affected by the following security issues : - Multiple memory safety bugs could result in memory corruption, potentially resulting in arbitrary code execution. MFSA 2010-34 - The array class used to store CS...

SeaMonkey < 1.1.8 Multiple Vulnerabilities

Binary data 4366.prm...

Mozilla Firefox < 2.0.0.12 Multiple Vulnerabilities

Binary data 4365.prm...

Unfixed XSS vulnerability at www.savsak.com

Security researcher st@rext, has submitted on 11/11/2007 a cross-site-scripting XSS vulnerability affecting www.savsak.com, which at the time of submission ranked 675955 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/11/2007. It is currentl...