KLA90955 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code, spoof user interface. Below is a complete list of...

EUVD-2025-202165

Use-after-free in the WebRTC: Signaling component. This vulnerability affects Firefox 146 and Firefox ESR 140.6...

EUVD-2024-30650

Malicious code in bioql PyPI...

CVE-2025-4948

CVE-2025-4948 affects the libsoup HTTP library (soup_multipart_new_from_message), causing an integer underflow when processing crafted multipart messages. Concrete details from connected advisories show the flaw can crash apps/servers using libsoup, enabling DoS. Confirmed by multiple vendors: De...

CVE-2023-6057

A vulnerability has been discovered in Bitdefender Total Security HTTPS scanning functionality that results in the improper trust of certificates issued using the DSA signature algorithm. The product does not properly check the certificate chain, allowing an attacker to establish MITM SSL...

Johnson Controls exacqVision Web Service < 24.06 Multiple Vulnerabilities

The version of the Johnson Controls exacqVision Web Service running on the remote host is prior to 24.03. It is, therefore, affected by multiple vulnerabilities. - Under certain circumstances the exacqVision Web Services does not provide sufficient protection from untrusted domains. CVE-2024-3286...

CVE-2024-32864

Under certain circumstances exacqVision Web Services will not enforce secure web communications HTTPS...

CVE-2024-32864

Summary: CVE-2024-32864 affects Johnson Controls exacqVision Web Service prior to version 24.06, where HTTPS is not enforced under certain conditions, enabling potential exposure of sensitive information via cleartext transmission (CWE-319). The vulnerability affects exacqVision Web Service versi...

PT-2023-7984 · Google +4 · Google Chrome +4

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 120.0.6099.129 Description: A heap buffer overflow in WebRTC allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. The vulnerability is actively exploited and may cause crashe...

Intel Collaboration Suite for WebRTC Security Vulnerability

Intel Collaboration Suite for WebRTC is an Intel WebRTC collaboration suite from Intel. A security vulnerability exists in Intel Collaboration Suite for WebRTC that arises from a lack of effective privilege-granting and access-control measures in a networked system or product...

VulnCheck KEV: CVE-2017-1182

IBM Tivoli Monitoring Portal v6 could allow a local network adjacent attacker to execute arbitrary commands on the system, when default client-server default communications, HTTP, are being used. IBM X-Force ID: 123493...

PT-2018-10013 · Johnson Controls · Johnson Controls Metasys System +1

Name of the Vulnerable Software and Affected Versions: Johnson Controls Metasys System versions 8.0 and prior BCPro BCM versions prior to 3.0.2 Description: This issue results from improper error handling in HTTP-based communications with the server, which could allow an attacker to obtain...

CVE-2017-1183

IBM Tivoli Monitoring Portal v6 could allow a local network adjacent attacker to modify SQL commands to the Portal Server, when default client-server communications, HTTP, are being used. IBM X-Force ID: 123494...

Spokane Web Communications SQL Injection

|=----=----=----=----=----=--------=| | | /\ /\ \ /\ /\ \ everythin's black | //\ /\ \ \L\ \ \ \ \ no turning back | \ \ \ \ \ '\ \ \ | \ \ \ \ \ \L\ \ \ \ \ \ Turkish Hacker | \ \ \ / \ \ \ | // // //// | | "I'm Bl4ck.Viper Member Of TBH" | "http://xpl.skote-vahshat.com" |...