Lucene search
K

17 matches found

Cvelist
Cvelist
added 2025/12/11 12:0 a.m.28 views

CVE-2025-59802

Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via OCG. When Optional Content Groups OCG are supported, the state property of an OCG is runtime-only and not included in the digital signature computation buffer. An attacker can leverage JavaScript or PDF triggers to dynamical...

0.00271EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 1:15 p.m.3 views

CVE-2025-11718

When the address bar was hidden due to scrolling on Android, a malicious page could create a fake address bar to fool the user in response to a visibilitychange event This vulnerability affects Firefox 144...

6.5CVSS5.8AI score0.00192EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-26259

Malware in sbrugna...

6.5CVSS6.4AI score0.01098EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/02 12:23 p.m.6 views

CVE-2025-11239 Job details are visible to all team members on KNIME Business Hub

Potentially sensitive information in jobs on KNIME Business Hub prior to 1.16.0 were visible to all members of the user's team. Starting with KNIME Business Hub 1.16.0 only metadata of jobs is shown to team members. Only the creator of a job can see all information including in- and output data i...

2.3CVSS0.00194EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-2456

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15....

4.9CVSS5AI score0.00765EPSS
Exploits0References2
OSV
OSV
added 2024/03/06 11:5 a.m.21 views

BIT-GITLAB-2023-3413 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. It was possible to read the source code of a project through a fork created before changing visibility to...

7.5CVSS6.6AI score0.00623EPSS
Exploits0References3
Prion
Prion
added 2023/09/01 3:15 p.m.19 views

Information disclosure

An authorization/sensitive information disclosure vulnerability was identified in GitHub Enterprise Server that allowed a fork to retain read access to an upstream repository after its visibility was changed to private. This vulnerability affected all versions of GitHub Enterprise Server prior to...

5CVSS4.8AI score0.00541EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/12/28 12:0 a.m.6 views

memos 授权问题漏洞

memos is an open source hosted meme center with knowledge management and social features. A vulnerability in authorization issues exists in versions of memos prior to 0.9.1, which can be exploited by an attacker to change the visibility status of a victim's memos...

8.2CVSS6.8AI score0.0059EPSS
Exploits1References3
Huntr
Huntr
added 2022/12/26 6:56 a.m.22 views

Unauthorized Attacker Can Change Visibility Status of Victim's Memos

An attacker can make a private memo into a public memo in order to view it. All the attacker needs to know is the memo ID and they can make a PATCH request to /api/memo/ with the following request data: "id":,"visibility":"PUBLIC","resourceIdList": Then the attacker can visit the memo URL & view...

5CVSS1.1AI score0.0059EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2022/08/05 4:15 p.m.4 views

CVE-2022-2456

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group or project visibility ...

4.9CVSS5.8AI score0.00765EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2022/08/05 4:15 p.m.23 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group or project visibility ...

3.3CVSS3.8AI score0.00765EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2022/08/05 4:15 p.m.22 views

CVE-2022-2456

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group or project visibility ...

4.9CVSS5.8AI score0.00765EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/08/05 3:10 p.m.21 views

CVE-2022-2456

An issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. It may be possible for malicious group or project maintainers to change their corresponding group or project visibility ...

4.9CVSS5.5AI score0.00765EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/07/29 12:0 a.m.3 views

GitLab CE/EE 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery and other features. A security vulnerability exists in all versions of GitLab CE/EE prior to 15.0.5...

4.9CVSS5.2AI score0.00765EPSS
Exploits0References5
OSV
OSV
added 2021/11/05 1:15 p.m.3 views

CVE-2021-42663

An HTML injection vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP/MySQL via the msg parameter to /event-management/index.php. An attacker can leverage this vulnerability in order to change the visibility of the website. Once the target user clicks on a...

4.3CVSS5.9AI score0.03792EPSS
Exploits3References2
Prion
Prion
added 2020/12/18 8:15 a.m.19 views

Design/Logic Flaw

MediaWiki before 1.35.1 blocks legitimate attempts to hide log entries in some situations. If one sets MediaWiki:Mainpage to Special:MyLanguage/Main Page, visits a log entry on Special:Log, and toggles the "Change visibility of selected log entries" checkbox or a tags checkbox next to it, there i...

5CVSS5.7AI score0.01512EPSS
Exploits1References5Affected Software3
Hacker One
Hacker One
added 2016/04/05 10:49 a.m.24 views

Trello: Payments informations are sent to the webhook when a team changes its visibility

If an attacker installed a webhook on an team, and the team subsequently changed it's visibility from private to public, the payload sent to the webhook to notify it of the visibility change could potentially have disclosed some information that the attacker shouldn't have had access to. For paid...

6.5AI score
Exploits0
Rows per page
Query Builder