Aggregator

CVE-2026-3879 | Zoho ManageEngine Exchange Reporter Plus up to 5801 Equipment Mailbox Details Report cross site scripting

VulDB Recent Entries
2 months 1 week ago
A vulnerability was found in Zoho ManageEngine Exchange Reporter Plus up to 5801 and classified as problematic. The affected element is an unknown function of the component Equipment Mailbox Details Report. The manipulation results in cross site scripting. This vulnerability is identified as CVE-2026-3879. The attack can be executed remotely. There is not any exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-28703 | Zoho ManageEngine Exchange Reporter Plus up to 5801 Mails Exchanged Between Users Report cross site scripting

VulDB Recent Entries
2 months 1 week ago
A vulnerability has been found in Zoho ManageEngine Exchange Reporter Plus up to 5801 and classified as problematic. Impacted is an unknown function of the component Mails Exchanged Between Users Report. The manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2026-28703. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.
vuldb.com

CVE-2026-4108 | Zoho ManageEngine Exchange Reporter Plus up to 5801 Non-Owner Mailbox Permission Report cross site scripting

VulDB Recent Entries
2 months 1 week ago
A vulnerability, which was classified as problematic, was found in Zoho ManageEngine Exchange Reporter Plus up to 5801. This issue affects some unknown processing of the component Non-Owner Mailbox Permission Report. Executing a manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2026-4108. The attack may be launched remotely. There is no exploit available. You should upgrade the affected component.
vuldb.com

INC

Dark Feed IO
2 months 1 week ago

You must login to view this content

cohenido

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches

Help Net Security
2 months 1 week ago

Microsoft’s Secure Boot certificates, issued in 2011, are approaching expiration in 2026. To help IT administrators track whether devices have received replacement certificates, Microsoft has added new status indicators to the Windows Security app, under Device security > Secure Boot. Updated 2023 certificates are being delivered automatically through Windows Update to consumer devices and some business devices. The new app indicators show whether a given device has received those updates, what its current certificate state … More →

The post Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches appeared first on Help Net Security.

Anamarija Pogorelec

CVE-2024-23292 | Apple iOS/iPadOS Contact information disclosure

Vuldb Updates
2 months 1 week ago
A vulnerability was found in Apple iOS and iPadOS. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Contact Handler. Executing a manipulation can lead to information disclosure. The identification of this vulnerability is CVE-2024-23292. The attack can only be executed locally. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad