186 matches found
EUVD-2014-5741
Malware in sbrugna...
EUVD-2009-2539
Malware in sbrugna...
EUVD-2025-10626
Malicious code in bioql PyPI...
CVE-2025-32480
Cross-Site Request Forgery CSRF vulnerability in dalziel Windows Live Writer windows-live-writer allows Stored XSS.This issue affects Windows Live Writer: from n/a through = 0.1...
WordPress Windows Live Writer plugin <= 0.1 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by johska in WordPress Plugin Windows Live Writer versions = 0.1...
CVE-2025-32480
Cross-Site Request Forgery CSRF vulnerability in dalziel Windows Live Writer windows-live-writer allows Stored XSS.This issue affects Windows Live Writer: from n/a through = 0.1...
CVE-2025-32480 WordPress Windows Live Writer plugin <= 0.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in dalziel Windows Live Writer windows-live-writer allows Stored XSS.This issue affects Windows Live Writer: from n/a through = 0.1...
CVE-2025-32480 WordPress Windows Live Writer plugin <= 0.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in dalziel Windows Live Writer windows-live-writer allows Stored XSS.This issue affects Windows Live Writer: from n/a through = 0.1...
CVE-2025-32480
CVE-2025-32480 is a CSRF vulnerability in Windows Live Writer that leads to a Stored XSS . Public details in the description indicate the flaw is triggered via cross-site requests and can result in script execution within the context of the affected Windows Live Writer tool (version range stated ...
WordPress plugin Windows Live Writer 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...
PT-2025-15762 · Microsoft · Windows Live Writer
Name of the Vulnerable Software and Affected Versions: Windows Live Writer versions 0.1 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web application,...
SUSE CVE-2013-0240
Gnome Online Accounts GOA 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle attackers to obtain sensitive information such as credentials by sniffing the...
Windows Live Mail Credential Gatherer
This module searches for Windows Live Mail credentials on a Windows host. Module Options msf use post/windows/gather/credentials/windowslivemail msf postwindowslivemail show actions ...actions... msf postwindowslivemail set ACTION msf postwindowslivemail show options ...show and set options... ms...
Researcher Hijacks a Microsoft Service Using Loophole in Azure Cloud Platform
A cybersecurity professional today demonstrated a long-known unpatched weakness in Microsoft's Azure cloud service by exploiting it to take control over Windows Live Tiles , one of the key features Microsoft built into Windows 8 operating system. Introduced in Windows 8, the Live tiles feature wa...
Researcher Hijacks a Microsoft Service Using Loophole in Azure Cloud Platform
A cybersecurity professional today demonstrated a long-known unpatched weakness in Microsoft's Azure cloud service by exploiting it to take control over Windows Live Tiles, one of the key features Microsoft built into Windows 8 operating system. Introduced in Windows 8, the Live tiles feature was...
Description of Windows Small Business Server 2008 Update Rollup 5
Description of Windows Small Business Server 2008 Update Rollup 5 Summary Windows Small Business Server Windows SBS 2008 Update Rollup 5 is now available. Windows SBS 2008 Update Rollup 5 will upgrade Windows Live ID Sign-in Assistant to version 6.5. Additionally, this update rollup includes the...
Windows Live Hotmail PUSH mail - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application Windows Live Hotmail PUSH mail published at the 'play' market has multiple vulnerabilities...
CVE-2014-5854
The Windows Live Hotmail PUSH mail aka com.clearhub.wl application 1.00.97 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5854
The CVE-2014-5854 entry concerns the Windows Live Hotmail PUSH mail app (com.clearhub.wl) for Android, version 1.00.97, which does not verify X.509 certificates from SSL servers. This allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. T...
CVE-2014-5854
The Windows Live Hotmail PUSH mail aka com.clearhub.wl application 1.00.97 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...