HP LaserJet Improper Neutralization of Input During Web Page Generation (CVE-2009-2684)

Multiple cross-site scripting XSS vulnerabilities in Jetdirect and the Embedded Web Server EWS on certain HP LaserJet and Color LaserJet printers, and HP Digital Senders, allow remote attackers to inject arbitrary web script or HTML via the 1 ProductURL or 2 TechURL parameter in an Apply action t...

Microsoft Word 2016 Multiple Vulnerabilities (KB5002763)

This host is missing an important security update according to Microsoft KB5002763 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2025-38284

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: pci: configure manual DAC mode via PCI config API only To support 36-bit DMA, configure chip proprietary bit via PCI config API or chip DBI interface. However, the PCI device mmap isn't set yet and the DBI is also...

Security Bulletin: Vulnerability in Linux kernel may affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerability in Linux Kernel. Vulnerability includes elevation of privileges, as described by the CVE in the "Vulnerability Details" section. Vulnerability Details CVEID:CVE-2023-51043 DESCRIPTION: Linux Kernel could allow a local authenticate...

Instagram Rolls Out dedicated Page To Help Users Regain Hacked Accounts

By Habiba Rashid Instagram has launched new account support for users who may have lost access to their accounts. This is a post from HackRead.com Read the original post: Instagram Rolls Out dedicated Page To Help Users Regain Hacked Accounts...

Security Bulletin: Session cookie used by IBM Security Verify Information Queue is not properly secured (CVE-2022-35284)

Summary IBM Security Verify Information Queue ISIQ v10.0.2 does not set the SameSite attribute in the ISIQ session cookie. As a result, any CSRF protections offered by the attribute are disabled. ISIQ v10.0.3 is now correctly setting the SameSite attribute. CVE-2022-35284 Vulnerability Details...

Security Bulletin: IBM Spectrum Protect 8.1.14.000 Server is vulnerable to bypass of security restrictions (CVE-2022-22394)

Summary IBM Spectrum Protect 8.1.14.000 Server could allow a remote attacker to bypass security restrictions due to improper enforcement of access controls. Vulnerability Details CVEID: CVE-2022-22394 DESCRIPTION: The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass...

Vulnerability fixed in F5 BIG-IP and BIG-IQ

A vulnerability has been fixed in F5 BIG-IP and BIG-IQ products. The vulnerability allows a malicious party to launch attacks execute attacks that lead to a denial-of-service DoS. F5 has released updates to fix the vulnerability. More information can be found on the page below:...

Critical Netgear Bug Impacts Flagship Nighthawk Router

Netgear is warning users of a critical remote code execution bug that could allow an unauthenticated attacker to take control of its Wireless AC Router Nighthawk R7800 hardware running firmware versions prior to 1.0.2.68. The warnings, posted Tuesday, also include two high-severity bugs impacting...

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Apache Log4j

Summary IBM Watson Discovery for IBM Cloud Pak for Data ships with versions of Apache Log4j vulnerable to serialization gadgets. Vulnerability Details CVEID: CVE-2019-17571 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by improper...

kvallstidningarna.se XSS vulnerability

Open Bug Bounty ID: OBB-679458 Description| Value ---|--- Affected Website:| kvallstidningarna.se Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Security Bulletin: Vulnerability in IBM Java Runtime affects IBM MQ Light (CVE-2016-3485)

Summary There is a vulnerability in IBM® Runtime Environment Java™ Version 8 and earlier releases that is used by IBM MQ Light. This issue was disclosed as part of the IBM Java SDK updates in July 2016. IBM MQ Light 1.0.6 has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2016-348...

teachingbooks.net XSS vulnerability

Vulnerable URL: https://www.teachingbooks.net/support.cgi?cmd=tags=cool%27-confirm1-%27 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 105266 VIP website status:| No Coordinated Disclosure Timeline: Description|...

Apple Mac OS X Code Execution And Information Disclosure Vulnerabilities (HT208221)

Apple Mac OS X is prone to code execution and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

schoolmaster.com XSS vulnerability

Vulnerable URL: http://www.schoolmaster.com/support/index.php?from=1"...

cardscan.com XSS vulnerability

Vulnerable URL: http://www.cardscan.com/support/csdlv9client.asp?v=1/-///'/"//--...

CVE-2017-6462

Buffer overflow in the legacy Datum Programmable Time Server DPTS refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device...

asrock.com XSS vulnerability

Vulnerable URL: http://www.asrock.com/support/index.cn.asp?Model="...

Local Privilege Escalation or Denial of Service via the Intel® Graphics Driver - Lenovo Support US

No description provided...

dell.com.mx XSS vulnerability

Vulnerable URL: http://www.dell.com.mx/support/contents/us/en/19/category/Product-Support/dell-subsidiaries?ck=alert'OPENBUGBOUNTY'...