Lucene search
+L

17 matches found

RedhatCVE
RedhatCVE
added 2026/03/27 5:9 p.m.7 views

CVE-2026-33468

Kysely is a type-safe TypeScript SQL query builder. Prior to version 0.28.14, Kysely's DefaultQueryCompiler.sanitizeStringLiteral only escapes single quotes by doubling them ' → '' but does not escape backslashes. When used with the MySQL dialect where NOBACKSLASHESCAPES is OFF by default, an...

8.1CVSS6.1AI score0.00419EPSS
Exploits1References1
OSV
OSV
added 2026/03/26 5:3 p.m.4 views

CVE-2026-33468 Kysely has a MySQL SQL Injection via Insufficient Backslash Escaping in `sql.lit(string)` usage or similar methods that append string literal values into the compiled SQL strings

Kysely is a type-safe TypeScript SQL query builder. Prior to version 0.28.14, Kysely's DefaultQueryCompiler.sanitizeStringLiteral only escapes single quotes by doubling them ' → '' but does not escape backslashes. When used with the MySQL dialect where NOBACKSLASHESCAPES is OFF by default, an...

8.1CVSS6.1AI score0.00419EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/26 3:10 p.m.6 views

CVE-2026-22586

Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January...

9.8CVSS5.9AI score0.00613EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/26 3:10 p.m.8 views

CVE-2026-22585

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud...

9.8CVSS5.9AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2026/01/24 1:15 a.m.12 views

CVE-2026-22585

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2026/01/24 1:15 a.m.4 views

CVE-2026-22586

Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January...

9.8CVSS5.8AI score0.00613EPSS
Exploits0References1
NVD
NVD
added 2026/01/24 1:15 a.m.11 views

CVE-2026-22586

Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January...

9.8CVSS0.00613EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/24 12:17 a.m.3 views

CVE-2026-22586

Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January...

9.8CVSS5.9AI score0.00613EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/24 12:17 a.m.4 views

CVE-2026-22586

Hard-coded Cryptographic Key vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud Engagement: before January...

5.9AI score0.00613EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/24 12:15 a.m.36 views

CVE-2026-22585

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud...

0.00383EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/24 12:0 a.m.18 views

PT-2026-4542

Name of the Vulnerable Software and Affected Versions Salesforce Marketing Cloud Engagement versions prior to January 21st, 2026 Description Use of a broken or risky cryptographic algorithm in the CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, and View As...

9.8CVSS5.8AI score0.00383EPSS
Exploits0References10
ThreatPost
ThreatPost
added 2018/10/15 2:35 p.m.79 views

Facebook Offers Details on ‘View As’ Breach, Revises Numbers

The data breach first disclosed by Facebook in September has directly impacted the access tokens of 30 million accounts, the social media giant confirmed Friday. Facebook recently admitted that hackers exploited a flaw in its “View As” feature, which lets users see what their profiles look like...

0.1AI score
Exploits0References5
Malwarebytes
Malwarebytes
added 2018/09/28 7:39 p.m.47 views

Millions of accounts affected in latest Facebook hack

Update 2018-10-18: According to the Wall Street Journal, the hack on Facebook was perpetrated by spammers rather than a nation state. Facebook also revised its numbers down, saying that about 30 million accounts had been compromised. Facebook announced earlier today that its social network had be...

0.7AI score
Exploits0
Krebs on Security
Krebs on Security
added 2018/09/28 7:36 p.m.40 views

Facebook Security Bug Affects 90M Users

Facebook said today some 90 million of its users may get forcibly logged out of their accounts after the company fixed a rather glaring security vulnerability in its Web site that may have let attackers hijack user profiles. In a short blog post published this afternoon, Facebook said hackers hav...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2018/09/28 6:32 p.m.13 views

Facebook Data Breach Impacts Almost 50 Million Accounts

Facebook on Friday said that hackers have exploited a flaw in its platform that left the access tokens of almost 50 million Facebook accounts ripe for the taking. Access tokens are the digital keys that keep users logged into Facebook so they don’t need to re-enter their password every time they...

0.1AI score
Exploits0References5
The Hacker News
The Hacker News
added 2018/09/28 5:28 p.m.1 views

Hackers Stole 50 Million Facebook Users' Access Tokens Using Zero-Day Flaw

Logged out from your Facebook account automatically? Well you're not alone… Facebook just admitted that an unknown hacker or a group of hackers exploited a zero-day vulnerability in its social media platform that allowed them to steal secret access tokens for more than 50 million accounts...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2018/09/28 5:28 p.m.129 views

Hackers Stole 50 Million Facebook Users' Access Tokens Using Zero-Day Flaw

Logged out from your Facebook account automatically? Well you're not alone… Facebook just admitted that an unknown hacker or a group of hackers exploited a zero-day vulnerability in its social media platform that allowed them to steal secret access tokens for more than 50 million accounts. UPDATE...

0.9AI score
Exploits0
Rows per page
Query Builder