PT-2026-31520

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.55 Description A flaw exists in the Media component of Google Chrome on Android. This issue involves synchronization errors when using a shared resource. Successful exploitation could allow a remote...

EUVD-2005-2450

Malware in sbrugna...

EUVD-2020-15414

Malware in sbrugna...

EUVD-2020-15418

Malware in sbrugna...

CVE-2025-2254

An issue has been discovered in GitLab CE/EE affecting all versions from 17.9 before 17.10.8, 17.11 before 17.11.4, and 18.0 before 18.0.2. Improper output encoding in the snipper viewer functionality lead to Cross-Site scripting attacks...

CVE-2022-3513

An issue has been discovered in GitLab affecting all versions starting from 12.8 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. A specially crafted payload could lead to a reflected XSS on the client side which allows attackers to...

CVE-2020-35805

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30,...

GHSA-QQ45-CQHG-JWX5 Drupal Configuration Split Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Drupal Configuration Split allows Cross Site Request Forgery. This issue affects Configuration Split: from 0.0.0 before 1.10.0, from 2.0.0 before 2.0.2...

CGA-8GR8-6H55-C6HW

Bulletin has no description...

SUSE CVE-2023-22486

cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. Versions prior to 0.29.0.gfm.7 contain a polynomial time complexity issue in handleclosebracket that may lead to unbounded resource exhaustion and subsequent denial of service. This vulnerability has...

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, load balancing, and other features from F5 USA. A security vulnerability exists in F5 BIG-IP version 17.0.x to versions prior to 17.0.0.1, version 16.1.x to versions prior to...

DHIS 2 SQL注入漏洞

DHIS 2 is a software application. A flexible information system for data capture, management, validation, analysis and visualization. DHIS 2 suffers from a SQL injection vulnerability that stems from a SQL injection security hole in a specific version of DHIS 2. The vulnerability affects API...

Moodle < 3.8.9, 3.9.x < 3.9.7, 3.10.x < 3.10.4 XSS Vulnerability

Moodle is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in versions prior to Google chrome 87.0.4280.88, which results from a use-after-free error in the media component of Google Chrome. A remote attacker can exploit the vulnerability to create a speciall...

Nitro Pro Memory Corruption Vulnerability

Nitro Pro is a U.S. company Nitro PDF production and management software. A memory corruption vulnerability exists in the PDF parsing feature of Nitro Pro version 10.5.9.9. An attacker can exploit the vulnerability to send a specific PDF file to the victim, resulting in memory corruption...

IBM WebSphere Application Server 9.0 < 9.0.0.1 Multiple Vulnerabilities

Binary data 9722.prm...

PHPNuke INP Modules.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19208/info PHPNuke INP is prone to a cross-site scripting vulnerability that affects the 'modules.php' script. The specific version affected is currently unknown...

Microsoft Visio CVE-2011-1972远程代码执行漏洞

Bugtraq ID: 49024 Microsoft Visio是一款微软开发的流程图软件。 在解析特制的Visio文件时，Microsoft Visio校验内存中对象存在一个远程代码执行漏洞，攻击者构建恶意文件，诱使用户解析，可以应用程序上下文执行任意代码 Microsoft Visio 2010 SP1 Microsoft Visio 2010 0 Microsoft Visio 2007 SP2 Microsoft Visio 2007 SP1 Microsoft Visio 2007 0 Microsoft Visio 2003 Standard Microsoft Visio...

Zen Cart 1.3.8 Remote Code Execution Exploit

No description provided by source. !/usr/bin/php ?php ------- Zen Cart 1.3.8 Remote Code Execution http://www.zen-cart.com/ Zen Cart Ecommerce - putting the dream of server rooting within reach of anyone! A new version 1.3.8a is avaible on http://www.zen-cart.com/ BlackH : errorreportingEALL ^...

Zone Labs ZoneAlarm 2.1 Personal Firewall - Port 67

Zone Labs ZoneAlarm 2.1 Personal Firewall - Port 67 source: https://www.securityfocus.com/bid/1137/info Certain versions of Zone Labs personal Firewall have a vulnerability which allows malicious users to port scan the firewall without being detected. In particular if the port scan originates fro...