CVE-2025-27656

creationtimestamp| type| source ---|---|--- 2025-03-06 00:00:22+00:00| seen| https://bsky.app/profile/vulnalerts.bsky.social/post/3ljo6sbhg4d2e 2025-03-06 12:00:15+00:00| seen| https://bsky.app/profile/vulnalerts.bsky.social/post/3ljpgzpdndx2p...

AlmaLinux 9 : java-17-openjdk (ALSA-2023:5753)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:5753 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported...

EulerOS 2.0 SP9 : ruby (EulerOS-SA-2023-2321)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific...

CVE-2023-24488

creationtimestamp| type| source ---|---|--- 2023-07-01 17:36:04+00:00| published-proof-of-concept| Telegram/PfBDhyUlchQfTUwkRCz2h7RqM5ds-n-bVldH34W40cGxg 2023-07-01 19:39:26+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4660 2023-07-02 08:27:32+00:00| published-proof-of-concept|...

GSD-2022-1007537 xen/gntdev: Prevent leaking grants

xen/gntdev: Prevent leaking grants This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.264 by commit cb1ccfe7655380f77a58b340072f5f40bc285902,...

SUSE SLED15 / SLES15 Security Update : cosign (SUSE-SU-2022:3486-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3486-1 advisory. - Cosign is a project under the sigstore organization which aims to make signatures invisible infrastructure. In versio...

Microsoft & Adobe Patch Tuesday (December 2021) – Microsoft 83 Vulnerabilities with 7 Critical, 1 Actively Exploited. Adobe 60 Vulnerabilities, 28 critical.

Microsoft Patch Tuesday – December 2021 Microsoft patched 83 vulnerabilities in their December 2021 Patch Tuesday release, of which seven 7 are rated as critical severity. This months release includes one 1 Zero Day known to be actively exploited. Products impacted by Microsofts December security...

Security update for openssl-1_0_0 (moderate)

openSUSE Security Update: Security update for openssl-100 Announcement ID: openSUSE-SU-2021:0430-1 Rating: moderate References: 1182331 1182333 Cross-References: CVE-2021-23840 CVE-2021-23841 CVSS scores: CVE-2021-23840 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-23840 SUSE: 6...

CentOS 8 : openssl (CESA-2020:1840)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1840 advisory. - openssl: side-channel weak encryption vulnerability CVE-2019-1547 - openssl: information disclosure in fork CVE-2019-1549 - openssl: information...

Amazon Linux 2 : procps-ng (ALAS-2018-1031)

Multiple integer overflows leading to heap corruption flaws were discovered in file2strvec. These vulnerabilities can lead to privilege escalation for a local attacker who can create entries in procfs by starting processes, which will lead to crashes or arbitrary code execution in proc utilities...

Shopify: Stealing users' facebook access tokens - kitcrm.com

Summary: I have found a number of minor security vulnerabilities with no impact that when chained together will lead to an attacker being able to steal the current user's facebook access token provided for kitcrm.com Description: - In kitcrm.com, users register with their shopify account and the...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2016-3624)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3624 advisory. - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24798694 CVE-2016-5829 - netfilter: xtables: speed ...

Dragon, Fly! Free - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Dragon, Fly! Free published at the 'play' market has multiple vulnerabilities...

wordpress pay with tweet plugin <= 1.1 - Multiple Vulnerabilities

No description provided by source. Exploit Title: Wordpress Pay With Tweet plugin = 1.1 Multiple Vulnerabilities Date: 01/06/2012 Author: Gianluca Brindisi gATbrindi.si @gbrindisi http://brindi.si/g/ Software Link: http://downloads.wordpress.org/plugin/pay-with-tweet.1.1.zip Version: 1.1 1 Blind...

Cells Blog CMS 1.1 - Multiple Web Vulnerabilites

No description provided by source. Title: ====== Cells Blog CMS v1.1 - Multiple Web Vulnerabilites Date: ===== 2012-06-05 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=591 VL-ID: ===== 591 Common Vulnerability Scoring System: ==================================== 8.3...

CyberBizia Cross Site Scripting / SQL Injection

Exploit Title : CyberBizia Multiple Vulnerabilites Software link : http://www.cyberbizia.com Exploit Author : Ashiyane Digital Security Team Tested on: Windows 7 , Linux Google Dork : intext:"Powered by CyberBizia" Date: 2013/08/30...

iScripts EasyCreate 2.0 - Multiple Vulnerabilities

Title: ====== iScripts EasyCreate CMS v2.0 - Multiple Web Vulnerabilites Date: ===== 2012-06-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=588 VL-ID: ===== 588 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: =============...

Jaow CMS v2.3 - SQL Injection / XSS Vulnerabilites

Exploit for php platform in category web applications Title: ====== Jaow CMS v2.3 - Multiple Web Vulnerabilites Common Vulnerability Scoring System: ==================================== 7.2 Introduction: ============= Jaow is a CMS that can manage sites of small sizes, thanks to its simple,...

glFusion CMS v1.2.2 Multiple Vulnerabilites

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...

html_edit CMS 3.1.x Cross Site Request Forgery

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...