CVE-2026-35208 lichess.org has an Unsanitized Stream Title Injection on /streamer

lichess.org is the forever free, adless and open source chess server. Any approved streamer can inject arbitrary HTML into /streamer and the homepage “Live streams” widget by placing markup in their Twitch/YouTube stream title. CSP is present and blocks inline script execution, but the issue is...

CVE-2026-33485

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the RTMP onpublish callback at plugin/Live/onpublish.php is accessible without authentication. The $POST'name' parameter stream key is interpolated directly into SQL queries in two locations —...

Stardust 访问控制错误漏洞

Stardust is a spaceness open source platform for streaming isolated desktop containers. An access control error vulnerability exists in Stardust. An attacker exploiting this vulnerability could access another container's proxy...

Best Practices for Kafka Management to Ensure High Availability

By Uzair Amir With the increasing popularity of Apache Kafka as a distributed streaming platform, ensuring its high availability has become… This is a post from HackRead.com Read the original post: Best Practices for Kafka Management to Ensure High Availability...

New Soap2day Domains Emerge Despite Legal Challenges

By Waqas Soap2day: From Ashes to Pixels - The Curious Case of a Streaming Phoenix. This is a post from HackRead.com Read the original post: New Soap2day Domains Emerge Despite Legal Challenges...

[SECURITY] Fedora 39 Update: golang-github-nats-io-streaming-server-0.25.6-1.fc39

NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS...

[SECURITY] Fedora 39 Update: golang-github-nats-io-streaming-server-0.25.5-1.fc39

NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS...

Fedora: Security Advisory for golang-github-nats-io-streaming-server (FEDORA-2023-f122ea1b3e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 38 Update: golang-github-nats-io-streaming-server-0.25.5-1.fc38

NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS...

CVE-2023-28069

Dell Streaming Data Platform prior to 1.4 contains Open Redirect vulnerability. A remote unauthenticated attacker can phish the legitimate user to redirect to malicious website leading to information disclosure and launch of phishing attacks...

Apache Kafka Code Issue Vulnerability (CNVD-2023-23554)

Apache Kafka is an open source distributed streaming platform from the Apache Foundation in the United States. The platform is capable of acquiring real-time data for building applications that react in real time to changes in the data stream. A code issue vulnerability exists in Apache Kafka...

Apache Kafka Denial of Service Vulnerability

Apache Kafka is an open source distributed streaming platform from the Apache Foundation in the United States. The platform is capable of capturing real-time data and is used to build applications that react in real-time to changes in the data stream. Apache Kafka suffers from a denial-of-service...

[SECURITY] Fedora 36 Update: golang-github-nats-io-streaming-server-0.20.0-6.fc36

NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS...

[SECURITY] Fedora 36 Update: golang-github-nats-io-streaming-server-0.20.0-5.fc36

NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS...

Dell Emc Streaming Data Platform has an unspecified vulnerability

Dell Emc Streaming Data Platform is a platform for ingesting, storing and analyzing continuous streaming data in real time from Dell USA. communication to an unencrypted format...

Dell EMC Streaming Data Platform 代码问题漏洞

A code issue vulnerability exists in Dell EMC Streaming Data Platform, a Dell platform for real-time ingestion, storage, and analysis of continuous streaming data, which is caused by a design or implementation error in the code development process of a network system or product. improper design o...

SQL Injection Vulnerability in Streaming Media System Platform of Beijing Century Sunflower Digital Media Technology Co.

Sunflower streaming media service system is a complete set of IP network-based audio and video application platform, she integrated the Century Sunflower video broadcasting system, video-on-demand system, video broadcasting system, as well as data distribution, business management and other...

User Survey 2020 Report Shows Rapid Growth In Apache Pulsar Adoption

For the first time ever, the Apache Pulsar PMC team is publishing a user survey report. The 2020 Apache Pulsar User Survey Report reveals Pulsar's accelerating rate of global adoption, details how organizations are leveraging Pulsar to build real-time streaming applications, and highlights key...