Important: golang

Issue Overview: When using LookupCNAME with the cgo DNS resolver, a very long CNAME response can trigger a double-free of C memory and a crash. CVE-2026-33811 When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a...

EUVD-2019-9274

Malware in sbrugna...

CVE-2025-60451

A stored Cross-Site Scripting XSS vulnerability has been discovered in MetInfo CMS version 8.0. The vulnerability exists due to insufficient validation and sanitization of SVG file uploads in the app\system\include\module\uploadify.class.php component, specifically in the website settings module...

CVE-2019-19664

A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...

Secure Web: Unable to open 4096-Bit encrypted Web Sites

When we try to access 4096-bit encrypted websites using Secure Web set to 'Tunneled to Internal network' and 'Secure Browse' mode, the website does not launch...

Uniway UW-302VP Cross-Site Request Forgery Vulnerability

The Uniway UW-302VP is a state-of-the-art fiber optic modem for network production from Uniway. A cross-site request forgery vulnerability exists in the Uniway UW-302VP version 2.0, which stems from certain unknown processing in /boaform/wlanbasicset.cgi, which leads to cross-site request forgery...

Rumpus FTP Web File Manager Cross-Site Request Forgery Vulnerability (CNVD-2020-04693)

Rumpus FTP Web File Manager is a file transfer server. A cross-site request forgery vulnerability exists in the Web Settings feature of Web File Manager in Rumpus FTP version 8.2.9.1. The vulnerability stems from the WEB application not adequately verifying that requests are coming from a trusted...

Rumpus FTP Server Web File Manager Web Settings Component Cross-Site Scripting Vulnerability

Rumpus FTP Server is an Internet file transfer solution for the Mac platform. A cross-site scripting vulnerability exists in the Web Settings component of Web File Manager in Rumpus FTP Server version 8.2.9.1. The vulnerability stems from a lack of proper validation of client data by the WEB...

CVE-2019-19670

A HTTP Response Splitting vulnerability was identified in the Web Settings Component of Web File Manager in Rumpus FTP Server 8.2.9.1. A successful exploit can result in stored XSS, website defacement, etc. via ExtraHTTPHeader to RAPR/WebSettingsGeneralSet.html...

CVE-2019-19670

CVE-2019-19670 affects the Web Settings component of the Web File Manager in Rumpus FTP Server 8.2.9.1. The issue is an HTTP Response Splitting vulnerability that can enable stored XSS and defacement through crafted headers sent to RAPR/WebSettingsGeneralSet.html. Multiple connected sources corro...

CVE-2019-19664

A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...

CVE-2019-19664

A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...

Cross site request forgery (csrf)

A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...

CVE-2019-19664

A CSRF vulnerability exists in the Web Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server Web settings at RAPR/WebSettingsGeneralSet.html...

WordPress Cross-Site Scripting Vulnerability (CNVD-2016-06199)

WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in the Web Settings page in versions of WordPress prior to 4.5. A...