CVE-2026-21333

creationtimestamp| type| source ---|---|--- 2026-03-11 14:35:00+00:00| seen| https://www.cert.se/2026/03/patchtisdag-mars-2026-samlad-information-om-manadens-sakerhetsuppdateringar.html 2026-03-21 06:33:04+00:00| seen| https://bsky.app/profile/secqube.com/post/3mhkfwoeryn2y...

CVE-2024-35300

In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates page were possible...

CVE-2021-47640

CVE-2021-47640 describes a Linux kernel vulnerability in the powerpc/KASAN pathway where the shadow page table was not updated correctly when PTE_RPN_SHIFT = 24 and PAGE_SHIFT = 12. The issue caused false positives and false negatives in KASAN reports (vmalloc-out-of-bounds in pcpu_alloc) and was...

CVE-2024-35300

In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates page were possible...

CVE-2024-35300

In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates page were possible...

CVE-2024-35300

CVE-2024-35300 concerns JetBrains TeamCity. Affected: TeamCity versions 2024.03 through 2024.03.1. Issue: several stored XSS vulnerabilities on the available updates page, arising from inadequate filtering/escaping of user-supplied data. Impact: the vulnerability enables execution of arbitrary sc...

PT-2024-3700 · Jetbrains · Teamcity

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions 2024.03 through 2024.03.1 Description: The issue exists due to inadequate protection of the web page structure in the CI/CD system, allowing a remote attacker to conduct a cross-site scripting XSS attack. Several...

January 26, 2023—KB5022360 (OS Build 22621.1194) Preview

January 26, 2023—KB5022360 OS Build 22621.1194 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 22H2, see its update history page. Note Follow @WindowsUpdate to...

Improper Privilege Management in Mattermost

One of the API in Mattermost version 6.4.1 and earlier fails to properly protect the permissions, which allows the authenticated members with restricted custom admin role to bypass the restrictions and view the server logs and server config.json file contents. Per the Mattermost security updates...

mnctv.com XSS vulnerability

Vulnerable URL: http://www.mnctv.com/updates?q=ahokprompt/OPENBUGBOUNTY/...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Quick Page/Post Redirect plugin before 5.0.5 for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the quickpprredirectsrequest parameter in the...