CVE-2022-50129

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

CVE-2021-47552

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

CVE-2023-1368

A vulnerability was found in XHCMS 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php of the component POST Parameter Handler. The manipulation of the argument user leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2019-17497

Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files a related issue to CVE-2018-4993. For example, an NTLM hash is sent for a link to \\192.168.0.2\C$\file.pdf without user interaction...

GLSA-202505-10 : Tracker miners: Sandbox weakness

The remote host is affected by the vulnerability described in GLSA-202505-10 Tracker miners: Sandbox weakness A vulnerability has been discovered in Tracker minders. Please review the CVE identifier referenced below for details. Tenable has extracted the preceding description block directly from...

CVE-2025-27402

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Tuleap is missing CSRF protections on tracker fields administrative operations. An attacker could use this vulnerability to trick victims into removing or updating tracker fields. This vulnerability i...

CVE-2025-27402 Tuleap is missing CSRF protections on tracker fields administrative operations

Tuleap is an Open Source Suite to improve management of software developments and collaboration. Tuleap is missing CSRF protections on tracker fields administrative operations. An attacker could use this vulnerability to trick victims into removing or updating tracker fields. This vulnerability i...

CVE-2025-27099

Tuleap exposes an XSS vulnerability (CVE-2025-27099) in the semantic timeframe deletion message, via tracker names. The issue affects Tuleap’s tracker-name handling and can enable an administrator with a semantic timeframe used by other trackers to trick others into executing uncontrolled code. P...

CVE-2025-0099

creationtimestamp| type| source ---|---|--- 2025-02-03 19:33:09+00:00| seen| https://vulnerability.circl.lu/bundle/cf59c148-4047-4ccd-8ba0-26fb7197899c...

CVE-2024-43089

creationtimestamp| type| source ---|---|--- 2024-11-07 17:04:54+00:00| seen| https://vulnerability.circl.lu/bundle/aaa30339-107b-4cb3-8a1a-3e5d8398b429 2024-11-13 19:44:42+00:00| seen| https://t.me/cvedetector/10857...

CVE-2022-48909

creationtimestamp| type| source ---|---|--- 2024-08-22 05:07:58+00:00| seen| https://t.me/cvedetector/3858 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

CVE-2023-4710

A vulnerability classified as problematic was found in TOTVS RM 12.1. Affected by this vulnerability is an unknown functionality of the component Portal. The manipulation of the argument d leads to cross site scripting. The attack can be launched remotely. The identifier VDB-238573 was assigned t...

aries-askar (>=0.1.2 <=0.2.7), arkworks-r1cs-gadgets (>=0.5.0 <=1.2.0) +100 more potentially affected by unknown CVE via xsalsa20poly1305 (>=0.4.2 <=0.9.1)

xsalsa20poly1305 CARGO version =0.4.2, =0.1.2, =0.5.0, =0.5.0, =0.2.0, =0.1.0, =0.1.0, =0.1.1 - bramble-handshake =0.1.0 - bramble-qr =0.1.0 - bramble-rendezvous =0.1.0 - bramble-sync =0.1.0 - bramble-transport =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0037...

编号已被CVE保留

No details are available at this time...

CVE-2022-24896 Tracker report renderer and chart widgets leak information in Tuleap

Tuleap is a Free & Open Source Suite to manage software developments and collaboration. In versions prior to 13.7.99.239 Tuleap does not properly verify authorizations when displaying the content of tracker report renderer and chart widgets. Malicious users could use this vulnerability to retriev...

CVE-2022-0679

creationtimestamp| type| source ---|---|--- 2022-03-28 22:41:49+00:00| seen| https://t.me/cibsecurity/39663 2024-12-21 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-12-21 2024-12-24 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities -...

yubacitybears.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-320336 Description| Value ---|--- Affected Website:| yubacitybears.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

DSA-2938-1 squeeze-lts announcement

The initial organisation and setup of Squeeze LTS has now happened and it is ready for taking over security support once the standard security support ends at the end of the month: Information for users Support for Squeeze LTS will end five years after the release of Squeeze, i.e. until the 6th o...