CVE-2026-32545 WordPress Taboola Pixel plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Taboola Taboola Pixel taboola-pixel allows Reflected XSS.This issue affects Taboola Pixel: from n/a through = 1.1.4...

EUVD-2022-28289

Malicious code in bioql PyPI...

Understand your software’s supply chain with GitHub’s dependency graph

What if you could spot the weakest link in your software supply chain before it breaks? With GitHub's dependency graph, you can. By providing a clear, complete view of the external packages your code depends on, both directly and indirectly, it allows you to understand, secure, and manage your...

MINI-WMR9-HHXC-HCJF

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2023-31629

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in the sqlounionscope component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service DoS via crafted SQL statements...

Linux Distros Unpatched Vulnerability : CVE-2016-9427

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow vulnerability in bdwgc before 2016-09-27 allows attackers to cause client of bdwgc denial of service heap buffer overflow crash and possibly...

CVE-2025-27554

creationtimestamp| type| source ---|---|--- 2025-03-01 06:27:17+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6052 2025-03-01 07:48:16+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114086071203267834 2025-03-01 08:00:33+00:00|...

CVE-2024-53869

creationtimestamp| type| source ---|---|--- 2025-01-28 04:15:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113904039606967230 2025-01-28 04:15:42+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgrlt53hxd2f 2025-01-28 06:15:06+00:00| seen|...

CVE-2025-21552

CVE-2025-21552 affects JD Edwards EnterpriseOne Orchestrator (E1 IOT Orchestrator Security). Connected PT-2025-4274 details a vulnerability due to insufficient input validation in the E1 IOT Orchestrator Security component, with affected versions prior to 9.2.9.2.Impact: low-privilege attacker wi...

CGA-9G23-PGWC-P32G

Bulletin has no description...

CVE-2024-13084

creationtimestamp| type| source ---|---|--- 2024-12-31 22:02:30+00:00| seen| https://infosec.exchange/users/cve/statuses/113749691589703038 2024-12-31 22:15:28+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3len344s7rp25 2024-12-31 23:46:13+00:00| seen|...

Exploit for CVE-2024-4439

Exploit CVE-2024-4439 This Python script demonstrates an exp...

CVE-2024-43564

creationtimestamp| type| source ---|---|--- 2024-10-08 17:54:47+00:00| seen| https://www.thezdi.com/blog/2024/10/8/the-october-2024-security-update-review...

BELL-CVE-2024-46954

Bulletin has no description...

Fedora: Security Advisory (FEDORA-2024-be032e564d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1679

Technical details about CVE-2024-1679 are not publicly provided in the connected documents you shared. The initial description notes Stored XSS in the WooCommerce Barcode Labels plugin, but no further technical specifics (affected versions, exploit steps, or fixes) are present here. Monitor for u...

PT-2023-20379 · Intel · Intel(R) Aptio* V Uefi Firmware Integrator Tools

Name of the Vulnerable Software and Affected Versions: IntelR Aptio V UEFI Firmware Integrator Tools affected versions not specified Description: The issue is related to uncontrolled resource consumption, which may allow an authenticated user to potentially enable denial of service via local...

CVE-2021-20860

CVE-2021-20860 is a CSRF vulnerability in ELECOM LAN routers that allows a remote authenticated attacker to hijack administrator authentication via a crafted page. Affected devices span multiple ELECOM families (e.g., WRC-1167GST2, WRC-2533-series, WRC-1750GS, WRC-1900GST, and related EDWRC/WRH/W...

XSSI: a not famous but the impact of a wide range of Web vulnerabilities-vulnerability warning-the black bar safety net

Find a specific category of vulnerability two key components: vulnerability awareness and find the vulnerability of the difficulty. Cross-site scripting containsXSSIvulnerability in the fact of a common standard i.e.: OWASP TOP 10 and is not mentioned. In addition and there is no disclosure of th...

TLS Renegotiation Vulnerability: Proof of Concept Code (Python)

No description provided by source. I created a Camtasia Movie some time ago "exploiting" the vulnerability by injecting "/user/profile/E1/" into the first ssl request to "/" http://www.hacking-lab.com/download/ This can help others to understand the vulnerability. Regards Ivan -----Original...