Aggregator

CVE-2000-0519 | Microsoft Internet Explorer 4.0/4.0.1/5.0 SSL Session authentication spoofing (XFDB-4627 / SBV-797)

Vuldb Updates
2 months ago
A vulnerability classified as problematic has been found in Microsoft Internet Explorer 4.0/4.0.1/5.0. This vulnerability affects unknown code of the component SSL Session Handler. The manipulation leads to authentication bypass by spoofing. This vulnerability is listed as CVE-2000-0519. The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.
vuldb.com

CVE-2000-0524 | Microsoft Exchange 4.0/5.0 Field Blank denial of service (XFDB-4645 / SBV-2724)

Vuldb Updates
2 months ago
A vulnerability, which was classified as problematic, has been found in Microsoft Exchange 4.0/5.0. Impacted is an unknown function of the component Field Handler. This manipulation causes denial of service (Blank). This vulnerability is registered as CVE-2000-0524. Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2000-0556 | Computalynx CMail 2.4.7 Web Interface Username memory corruption (XFDB-4625 / SBV-3163)

Vuldb Updates
2 months ago
A vulnerability was found in Computalynx CMail 2.4.7 and classified as critical. This affects an unknown function of the component Web Interface. Executing a manipulation of the argument Username can lead to memory corruption. This vulnerability appears as CVE-2000-0556. The attack may be performed from remote. There is no available exploit. The application of restrictive firewalling is recommended.
vuldb.com

CVE-2000-0503 | Microsoft Internet Explorer 5.0/5.01/5.5 IFRAME NavigateComplete2 privileges management (XFDB-5504 / SBV-5997)

Vuldb Updates
2 months ago
A vulnerability was found in Microsoft Internet Explorer 5.0/5.01/5.5. It has been rated as critical. Affected by this vulnerability is the function NavigateComplete2 of the component IFRAME Handler. This manipulation causes improper privilege management. This vulnerability is handled as CVE-2000-0503. The attack can be initiated remotely. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2000-0552 | Mirabilis ICQ 2000.0a Webmail Client information disclosure (EDB-19993 / Nessus ID 11572)

Vuldb Updates
2 months ago
A vulnerability labeled as problematic has been found in Mirabilis ICQ 2000.0a. This vulnerability affects unknown code of the component Webmail Client. Executing a manipulation can lead to information disclosure. The identification of this vulnerability is CVE-2000-0552. The attack can only be executed locally. Furthermore, there is an exploit available. The affected component should be upgraded.
vuldb.com

CVE-2000-0558 | HP Openview Network Node Manager 6.1 Alarm Service memory corruption (XFDB-4619 / SBV-796)

Vuldb Updates
2 months ago
A vulnerability marked as critical has been reported in HP Openview Network Node Manager 6.1. This issue affects some unknown processing of the component Alarm Service. The manipulation leads to memory corruption. This vulnerability is referenced as CVE-2000-0558. Remote exploitation of the attack is possible. No exploit is available. It is recommended to apply restrictive firewalling.
vuldb.com

The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities

Cyber Security News
2 months ago

Washington D.C., USA, April 21st, 2026, CyberNewswire Cybersecurity Insiders, in collaboration with Saviynt, has released new research indicating that AI identities are increasingly operating within core enterprise systems, often without established governance or visibility. The study finds that while 71% of CISOs and senior security leaders confirm AI tools have access to core systems such […]

The post The Ungoverned Workforce: Cybersecurity Insiders Finds 92% Lack Visibility Into AI Identities appeared first on Cyber Security News.

Cybernewswire

CVE-2026-40565 | freescout-help-desk freescout up to 1.8.212 HTML Attribute app/Misc/Helper.php linkify HTML injection (GHSA-49pm-xwqj-vwjp)

VulDB Recent Entries
2 months ago
A vulnerability was found in freescout-help-desk freescout up to 1.8.212. It has been rated as problematic. This issue affects the function linkify of the file app/Misc/Helper.php of the component HTML Attribute Handler. The manipulation leads to HTML injection. This vulnerability is referenced as CVE-2026-40565. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-15638 | ATRODO Net::Dropbear up to 0.13 on Perl libtomcrypt vulnerable third-party component

VulDB Recent Entries
2 months ago
A vulnerability was found in ATRODO Net::Dropbear up to 0.13 on Perl. It has been declared as problematic. This vulnerability affects unknown code of the component libtomcrypt. Executing a manipulation can lead to dependency on vulnerable third-party component. The identification of this vulnerability is CVE-2025-15638. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2017-20230 | NWCLARK Storable up to 3.04 on Perl retrieve_hook stack-based overflow (Issue 15831)

VulDB Recent Entries
2 months ago
A vulnerability was found in NWCLARK Storable up to 3.04 on Perl. It has been classified as critical. This affects the function retrieve_hook. Performing a manipulation results in stack-based buffer overflow. This vulnerability was named CVE-2017-20230. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-37748 | Visitor Management System 1.0 admin_user_insert.php move_uploaded_file unrestricted upload

VulDB Recent Entries
2 months ago
A vulnerability was found in Visitor Management System 1.0 and classified as critical. Affected by this issue is the function move_uploaded_file of the file vms/php/admin_user_insert.php. Such manipulation leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2026-37748. The attack can be launched remotely. No exploit exists.
vuldb.com

CVE-2026-31014 | Dovestones AD Self Update up to 4.0.0.4 Endpoint cross-site request forgery

VulDB Recent Entries
2 months ago
A vulnerability has been found in Dovestones AD Self Update up to 4.0.0.4 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Endpoint. This manipulation causes cross-site request forgery. This vulnerability is handled as CVE-2026-31014. The attack can be initiated remotely. There is not any exploit available.
vuldb.com

CVE-2026-31013 | Softwares ADPhonebook up to 4.0.1.0 ADPhonebook?Department=HR Search cross site scripting (EUVD-2026-24132)

VulDB Recent Entries
2 months ago
A vulnerability, which was classified as problematic, was found in Softwares ADPhonebook up to 4.0.1.0. Affected is an unknown function of the file /ADPhonebook?Department=HR. The manipulation of the argument Search results in cross site scripting. This vulnerability is known as CVE-2026-31013. It is possible to launch the attack remotely. No exploit is available.
vuldb.com

CVE-2026-3298 | Python CPython up to 3.14.x on Windows sock_recvfrom_into nbytes out-of-bounds write (ID 148808)

VulDB Recent Entries
2 months ago
A vulnerability classified as critical was found in Python CPython up to 3.14.x on Windows. This affects the function sock_recvfrom_into. Executing a manipulation of the argument nbytes can lead to out-of-bounds write. This vulnerability appears as CVE-2026-3298. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

Managed ad