Aggregator

Submit #515870 / VDB-239922

Submit #515869 / VDB-300717

A vulnerability was found in GetmeUK ContentTools up to 1.6.16. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Image Handler. The manipulation of the argument onload leads to cross site scripting. This vulnerability is handled as CVE-2025-2699. The attack may be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

Submit #515867 / VDB-268200

Submit #515864 / VDB-300716

ingress-nginx admission controller RCE escalation

ingress-nginx controller configuration injection via unsanitized mirror annotations

ingress-nginx controller configuration injection via unsanitized auth-tls-match-cn annotation

ingress-nginx controller configuration injection via unsanitized auth-url annotation

ingress-nginx controller auth secret file path traversal vulnerability

2025第12周投资收益

2025第12周投资收益

2025第12周投资收益

2025第12周投资收益

2025第12周投资收益

2025第12周投资收益

2025第12周投资收益

Как уязвимость 2023 года привела к утечке в 2025-м.