CVE-2026-3052 DataLinkDC dinky Flink Proxy Controller FlinkProxyController.java proxyUba server-side request forgery

A vulnerability was found in DataLinkDC dinky up to 1.2.5. The impacted element is the function proxyUba of the file dinky-admin/src/main/java/org/dinky/controller/FlinkProxyController.java of the component Flink Proxy Controller. Performing a manipulation results in server-side request forgery. ...

EUVD-2025-203041

Malicious code in uba-plugins npm...

Malicious code in uba-plugins (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcb257605c151aafe2aad5cfe0a574b33989c084ccee06ee6ff0b74c33afb907 The package uba-plugins was found to contain malicious code. Source: ghsa-malware 2a73b282a96cbf09b981101e3b9e4056c51c7d9524e1cf62a41d71ce8f90f36f An...

MAL-2025-192567 Malicious code in uba-plugins (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bcb257605c151aafe2aad5cfe0a574b33989c084ccee06ee6ff0b74c33afb907 The package uba-plugins was found to contain malicious code. Source: ghsa-malware 2a73b282a96cbf09b981101e3b9e4056c51c7d9524e1cf62a41d71ce8f90f36f An...

Malicious Package

Overview uba-plugins is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

sisbi.uba.ar Cross Site Scripting vulnerability OBB-3533503

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Cynet's Keys to Extend Threat Visibility

We hear about the need for better visibility in the cybersecurity space – detecting threats earlier and more accurately. We often hear about the dwell time and the time to identify and contain a data breach. Many of us are familiar with IBM's Cost of a Data Breach Report that has been tracking th...

Webinar: How to See More, But Respond Less with Enhanced Threat Visibility

The subject of threat visibility is a recurring one in cybersecurity. With an expanding attack surface due to the remote work transformation, cloud and SaaS computing and the proliferation of personal devices, seeing all the threats that are continuously bombarding the company is beyond...

Cyber Threat Protection — It All Starts with Visibility

Just as animals use their senses to detect danger, cybersecurity depends on sensors to identify signals in the computing environment that may signal danger. The more highly tuned, diverse and coordinated the senses, the more likely one is to detect important signals that indicate danger. This,...

Приглашаем на вебинар!

Всем привет! Приглашаем Вас на презентацию новой версии Zecurion DLP 10, которая состоится в четверг 13 февраля, в 12:00 GMT+3 Регистрация: https://attendee.gotowebinar.com/register/2238015640962285325?source=rdot В течение часа технический директор Роман Васильев и заместитель генерального...

videos.agro.uba.ar XSS vulnerability

Open Bug Bounty ID: OBB-47494 Description| Value ---|--- Affected Website:| videos.agro.uba.ar Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...