382 matches found
keycloak: reflected XSS via wildcard in OIDC redirect_uri
A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token. This issue could allow an attacker to submit a specially crafted request leading to cross-site scripting XSS or further attacks. This flaw is the result of an incomple...
CVE-2023-6583
creationtimestamp| type| source ---|---|--- 2024-01-11 10:26:45+00:00| seen| https://t.me/ctinow/166432...
CVE-2023-50589
creationtimestamp| type| source ---|---|--- 2023-12-30 18:26:15+00:00| seen| https://t.me/ctinow/160940 2023-12-31 01:32:30+00:00| seen| https://t.me/cibsecurity/74037 2024-01-05 22:16:34+00:00| seen| https://t.me/ctinow/163732 2024-01-22 09:11:20+00:00| seen| https://t.me/ctinow/171043...
CVE-2023-7175
creationtimestamp| type| source ---|---|--- 2023-12-30 14:26:49+00:00| seen| https://t.me/ctinow/160879 2023-12-31 01:31:40+00:00| seen| https://t.me/cibsecurity/74027 2024-01-08 17:16:37+00:00| seen| https://t.me/ctinow/164504 2024-01-21 18:46:37+00:00| seen| https://t.me/ctinow/170901...
CVE-2023-7166
creationtimestamp| type| source ---|---|--- 2023-12-29 10:26:41+00:00| seen| https://t.me/ctinow/160405 2023-12-30 01:36:15+00:00| seen| https://t.me/cibsecurity/73920 2024-01-05 19:17:12+00:00| seen| https://t.me/ctinow/163659 2024-01-20 15:17:06+00:00| seen| https://t.me/ctinow/170643...
CVE-2023-47146
creationtimestamp| type| source ---|---|--- 2023-12-20 13:53:16+00:00| seen| https://t.me/ctinow/156984 2024-01-13 10:21:41+00:00| seen| https://t.me/ctinow/167787...
CVE-2023-48121
creationtimestamp| type| source ---|---|--- 2023-12-20 07:32:33+00:00| seen| https://t.me/ctinow/156786 2024-02-25 07:31:14+00:00| seen| Telegram/mz79O5Gczbro2H5WMb3Vzckk-IuccpYC5S1BWnVwGy 2024-06-03 23:11:53+00:00| seen| https://t.me/tengkorakcybercrewz/10407 2024-06-03 23:11:53+00:00| seen|...
CVE-2023-4207
creationtimestamp| type| source ---|---|--- 2023-11-24 13:41:56+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9456 2024-08-16 08:51:13+00:00| published-proof-of-concept| https://t.me/Rootsec2/2037...
Number withdrawn
Online Matrimonial Project is an online marriage recruitment program. This CVE number has been withdrawn...
Number withdrawn
Online Matrimonial Project is an online marriage recruitment program. This CVE number has been withdrawn...
Number withdrawn
Online Food Ordering System is an online food ordering system by the individual developer Carlo Montero. The CVE number has been withdrawn...
Number withdrawn
Online Food Ordering System is an online food ordering system by the individual developer Carlo Montero. The CVE number has been withdrawn...
Exploit for Missing Authentication for Critical Function in F5 Big-Ip_Access_Policy_Manager
Vulnerability Details fofa: title="BIG-IP" || i...
@arkxio/ark-ui (>=0.1.0 <=0.1.18), @arkxio/ark-ui-src (=0.1.0) +34 more potentially affected by CVE-2023-45818 via tinymce (>=6.0.0 <=6.6.2)
tinymce NPM version =6.0.0, =0.1.0, =0.1.19, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.2 and more Source cves: CVE-2023-45818 Source advisory: OSV:GHSA-V65R-P3VV-JJFV...
golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RSTSTREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any...
CVE-2023-5129
creationtimestamp| type| source ---|---|--- 2023-09-26 00:34:41+00:00| seen| https://t.me/cibsecurity/71025 2023-09-26 17:10:45+00:00| exploited| https://t.me/BleepingComputer/18310 2023-09-26 17:23:29+00:00| exploited| https://t.me/BleepingComputer/18314 2023-09-27 07:26:11+00:00| exploited|...
CVE-2023-20594
creationtimestamp| type| source ---|---|--- 2023-09-20 22:29:33+00:00| seen| https://t.me/cibsecurity/70826 2025-06-27 21:55:04+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19793...
CVE-2023-39514
creationtimestamp| type| source ---|---|--- 2023-09-06 00:17:26+00:00| seen| https://t.me/cibsecurity/69909...
BELL-CVE-2017-5342 CVE-2017-5342 does not affect BellSoft software
Bulletin has no description...
BELL-CVE-2018-20679 CVE-2018-20679 does not affect BellSoft software
Bulletin has no description...