CVE-2025-5255

creationtimestamp| type| source ---|---|--- 2025-06-20 10:44:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18929...

GHSA-H7FF-CFC9-WMMH

creationtimestamp| type| source ---|---|--- 2025-04-23 17:04:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13071...

GHSA-Q9F6-4R6R-H74P

creationtimestamp| type| source ---|---|--- 2025-04-22 16:03:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12875...

CVE-2025-31576

creationtimestamp| type| source ---|---|--- 2025-03-31 16:33:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9690...

Updated firefox packages fix security vulnerabilities

WebChannel APIs susceptible to confused deputy attack. CVE-2025-0237 Use-after-free when breaking lines in text. CVE-2025-0238 Alt-Svc ALPN validation failure when redirected. CVE-2025-0239 Compartment mismatch when parsing JavaScript JSON module. CVE-2025-0240 Memory corruption when using...

ALSA-2025:0080 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Use-after-free when breaking lines in text CVE-2025-0238 firefox: Memory corruption when using JavaScript Text Segmentation CVE-2025-0241 firefox: Alt-Svc ALPN...

Malicious code in @serenity-web/channel-motor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d2e1f63ab01642f5ad7bc933a823db954af9d0880bc4ef256f32077a9b89b714 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Sap Crm Web Channel 信息泄露漏洞

Sap Crm Web Channel is an e-commerce management system from SAP Germany. It is used to transform the Internet into profitable sales and provide customer satisfaction and convenience to business partners. An information disclosure vulnerability exists in SAP CRM Web Channel, which can be exploited...

SAP ERP HCM 安全漏洞

SAP ERP HCM is an enterprise human resource management solution from SAP, Germany. A security vulnerability exists in SAP ERP HCM that can be exploited by attackers to compromise vulnerable systems, including Business Objects, SAP CRM Web Channel, SAP CRM, SAP ERP, NetWeaver, ASE...

SAP 3D Visual Enterprise Viewer 输入验证错误漏洞

SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installations with standalone executables and ActiveX space. An input validation error vulnerability exis...

SAP多个产品环境问题漏洞

SAP NetWeaver Application Server Java is an application server that provides a Java runtime environment.SAP NetWeaver Application Server is an application server.SAP ERP is a series of software for ERP management.SAP CRM is a customer relationship management system. SAP NetWeaver Application Serv...

SAP NetWeaver AS SQL注入漏洞

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but also the basic platform for SAP software. SAP NetWeaver AS has a SQL injection vulnerability that can be exploited by attackers to threaten vulnerable systems, including Business Objects, SAP...

SAP多个产品输入验证错误漏洞

SAP 3D Visual Enterprise Viewer is a 3D viewer, SAP ERP is a series of software for ERP management, SAP CRM is a customer relationship management system, Sap Crm Web Channel is an e-commerce management system. Sap Crm Web Channel is an e-commerce management system. An input validation error...

Security Bulletin:Sterling Web Channel is affected by Apache Struts 2 security vulnerabilities (CVE-2013-4310, CVE-2013-4316, CVE-2013-2251, CVE-2013-2248, CVE-2013-2135, CVE-2013-2134, CVE-2013-2115, CVE-2013-1966, CVE-2013-1965)

Summary IBM Sterling Web Channel use Apache Struts 2 and is affected by some of the vulnerabilities that exist in Apache Struts 2. Vulnerability Details CVEID: CVE-2013-4310 Description: Apache Struts could allow a remote attacker to bypass security restrictions, caused by an error in the action:...

CVE-2017-3776

Lenovo Help Android mobile app versions earlier than 6.1.2.0327 allowed information to be transmitted over an HTTP channel, permitting others observing the channel to potentially see this information...