CVE-2025-56139

LinkedIn Mobile Application for Android version 4.1.1087.2 fails to update link preview metadata image, title, description when a user replaces the original URL in a post or comment before publishing. As a result, the stale preview remains visible while the clickable link points to a different UR...

CVE-2025-56139

Summary: CVE-2025-56139 concerns LinkedIn Mobile Application for Android, version 4.1.1087.2. The vulnerability arises because the app does not update link preview metadata (image, title, description) when a user replaces the original URL in a post or comment prior to publishing. As a result, a s...

cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes

A flaw was found in OpenPrinting CUPS. In certain conditions, a remote attacker can add a malicious printer or directly hijack an existing printer by replacing the valid IPP URL with a malicious one. Also, it is possible that due to a lack of validation of IPP attributes returned by the server,...

Brave Software: [iOS] URL can be replaceState by blob URL in iOS Brave

Summary: URL can be replace by blob URL using function history.replaceState Products affected: iOS brave version 1.3.117.02.14.11 Steps To Reproduce: - Add a html named "blob.html" which link is "http://192.168.1.111/blob.html" - And its source is:...

openstack-keystone: configuration data information leak through Keystone catalog

A flaw was found in the keystone catalog URL replacement. A user with permissions to register an endpoint could use this flaw to leak configuration data, including the master admintoken. Only keystone setups that allow non-cloud-admin users to create endpoints were affected by this issue...

php168 5.0 job.php 信息泄漏漏洞

漏洞分析 看job.php 92行 elseif$job=="download" $rsdb=$db-getone"SELECT FROM $prearticle WHERE aid='$id'"; $fidDB=$db-getone"SELECT FROM $presort WHERE fid='$rsdbfid'"; if$fidDBadmin&&$lfjid $detail=explode",",$fidDBadmin; if inarray$lfjid,$detail $webadmin=1;...