Aggregator

CVE-2026-23730 | LabRedesCefetRJ WeGIA up to 3.6.1 control.php nextPage redirect (GHSA-6gx4-6gwv-cxc3)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability has been found in LabRedesCefetRJ WeGIA up to 3.6.1 and classified as problematic. This affects an unknown part of the file /WeGIA/controle/control.php. Performing a manipulation of the argument nextPage results in open redirect. This vulnerability was named CVE-2026-23730. The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2012-10064 | Omnilogic Omni Secure Files Plugin up to 0.1.13 on WordPress Bundled Plupload Example Endpoint upload.php unrestricted upload (EDB-19009 / BID-53872)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Omnilogic Omni Secure Files Plugin up to 0.1.13 on WordPress. Affected by this issue is some unknown functionality of the file /wp-content/plugins/omni-secure-files/plupload/examples/upload.php of the component Bundled Plupload Example Endpoint. Such manipulation leads to unrestricted upload. This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is uniquely identified as CVE-2012-10064. The attack can be launched remotely. Moreover, an exploit is present. You should upgrade the affected component.
vuldb.com

CVE-2026-23722 | LabRedesCefetRJ WeGIA up to 3.6.1 GET Parameter insere_despacho.php id_memorando cross site scripting (GHSA-g7hh-6qj7-mcqf / EUVD-2026-3115)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in LabRedesCefetRJ WeGIA up to 3.6.1. Affected by this vulnerability is an unknown functionality of the file html/memorando/insere_despacho.php of the component GET Parameter Handler. This manipulation of the argument id_memorando causes cross site scripting. This vulnerability is handled as CVE-2026-23722. The attack can be initiated remotely. There is not any exploit available. It is advisable to upgrade the affected component.
vuldb.com

CVE-2026-23729 | LabRedesCefetRJ WeGIA up to 3.6.1 control.php nextPage redirect (GHSA-w88p-v7h6-m728)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability classified as problematic was found in LabRedesCefetRJ WeGIA up to 3.6.1. Affected is an unknown function of the file /WeGIA/controle/control.php. The manipulation of the argument nextPage results in open redirect. This vulnerability is known as CVE-2026-23729. It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2026-23643 | CakePHP up to 5.2.11/5.3.0 Query String limitControl cross site scripting (ID 19172 / Nessus ID 291293)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability classified as problematic has been found in CakePHP up to 5.2.11/5.3.0. This impacts the function PaginatorHelper::limitControl of the component Query String Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2026-23643. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2026-23727 | LabRedesCefetRJ WeGIA up to 3.6.1 control.php nextPage redirect (GHSA-pmq9-8p4w-m4f3)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability described as problematic has been identified in LabRedesCefetRJ WeGIA up to 3.6.1. This affects an unknown function of the file /WeGIA/controle/control.php. Executing a manipulation of the argument nextPage can lead to open redirect. This vulnerability appears as CVE-2026-23727. The attack may be performed from remote. There is no available exploit. Upgrading the affected component is recommended.
vuldb.com

CVE-2026-23728 | LabRedesCefetRJ WeGIA up to 3.6.1 control.php nextPage redirect (GHSA-jf25-p56f-wpgh)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability marked as problematic has been reported in LabRedesCefetRJ WeGIA up to 3.6.1. The impacted element is an unknown function of the file /WeGIA/controle/control.php. Performing a manipulation of the argument nextPage results in open redirect. This vulnerability is reported as CVE-2026-23728. The attack is possible to be carried out remotely. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2026-23726 | LabRedesCefetRJ WeGIA up to 3.6.1 control.php nextPage redirect (GHSA-h7qx-j7g3-7fx3)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability labeled as problematic has been found in LabRedesCefetRJ WeGIA up to 3.6.1. The affected element is an unknown function of the file /WeGIA/controle/control.php. Such manipulation of the argument nextPage leads to open redirect. This vulnerability is documented as CVE-2026-23726. The attack can be executed remotely. There is not any exploit available. The affected component should be upgraded.
vuldb.com

CVE-2026-21223 | Microsoft Edge up to 143.0.3650.97 IElevatorEdge interface LaunchUpdateCmdElevatedAndWait privileges management (EUVD-2026-3111)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability identified as critical has been detected in Microsoft Edge. Impacted is the function LaunchUpdateCmdElevatedAndWait of the component IElevatorEdge interface. This manipulation causes improper privilege management. This vulnerability is registered as CVE-2026-21223. The attack needs to be launched locally. No exploit is available. You should upgrade the affected component.
vuldb.com

INC

Dark Feed IO
2 months 2 weeks ago

You must login to view this content

cohenido

Is advanced AI security affordable for small businesses

Security Boulevard
2 months 2 weeks ago

How Can Small Businesses Implement Affordable AI Security? Is AI security a necessity that’s out of reach for small businesses, or can it fit with budget to protect its digital assets? While we delve into this topic, it’s crucial to understand the significance of AI security and how it can be accessible to organizations of […]

The post Is advanced AI security affordable for small businesses appeared first on Entro.

The post Is advanced AI security affordable for small businesses appeared first on Security Boulevard.

Alison Mack

Is your data truly secure with free AI tools

Security Boulevard
2 months 2 weeks ago

How Can Businesses Ensure the Security of Non-Human Identities? When was the last time your company evaluated the security of its machine identities? With the increasing reliance on Non-Human Identities (NHIs) in data management and cybersecurity, understanding their role is crucial for securing cloud environments. NHIs, often in the form of encrypted passwords, tokens, or […]

The post Is your data truly secure with free AI tools appeared first on Entro.

The post Is your data truly secure with free AI tools appeared first on Security Boulevard.

Alison Mack

How is AI improving the management of cloud secrets

Security Boulevard
2 months 2 weeks ago

How Can Organizations Improve Their Security with Non-Human Identities? Imagine where the number of digital identities far exceeds that of human identities? This situation is a reality where Non-Human Identities (NHIs) are becoming increasingly prevalent. These machine identities, which are critical for various cybersecurity processes, require robust management to ensure the security and efficiency of […]

The post How is AI improving the management of cloud secrets appeared first on Entro.

The post How is AI improving the management of cloud secrets appeared first on Security Boulevard.

Alison Mack

Can we be certain AI keeps cloud data secure

Security Boulevard
2 months 2 weeks ago

What Are Non-Human Identities, and Why Are They Crucial for Cloud Security? One might ask, what role do non-human identities (NHIs) play in safeguarding cloud environments? NHIs are machine identities created to bridge the gaps between security and R&D teams, ensuring a secure and seamless cloud experience. These NHIs consist of “Secrets,” such as encrypted […]

The post Can we be certain AI keeps cloud data secure appeared first on Entro.

The post Can we be certain AI keeps cloud data secure appeared first on Security Boulevard.

Alison Mack

CVE-2022-50327 | Linux Kernel up to 5.4.296/5.10.240/5.15.189/6.0.15/6.1.1 ACPI acpi_fetch_acpi_dev null pointer dereference (Nessus ID 275594 / WID-SEC-2025-2053)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 5.4.296/5.10.240/5.15.189/6.0.15/6.1.1. It has been declared as critical. This affects the function acpi_fetch_acpi_dev of the component ACPI. Executing a manipulation can lead to null pointer dereference. This vulnerability is handled as CVE-2022-50327. The attack can only be done within the local network. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-39825 | Linux Kernel up to 6.1.149/6.6.103/6.12.44/6.16.4/6.17-rc1 smb race condition (Nessus ID 265221 / WID-SEC-2025-2077)

Vuldb Updates
2 months 2 weeks ago
A vulnerability has been found in Linux Kernel up to 6.1.149/6.6.103/6.12.44/6.16.4/6.17-rc1 and classified as critical. Impacted is an unknown function of the component smb. This manipulation causes race condition. The identification of this vulnerability is CVE-2025-39825. The attack needs to be done within the local network. There is no exploit available. The affected component should be upgraded.
vuldb.com

CVE-2025-39812 | Linux Kernel up to 6.17-rc3 sctp sctp_v6_from_sk initialization (Nessus ID 265295 / WID-SEC-2025-2077)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.17-rc3 and classified as critical. The affected element is the function sctp_v6_from_sk of the component sctp. Such manipulation leads to improper initialization. This vulnerability is referenced as CVE-2025-39812. The attack needs to be initiated within the local network. No exploit is available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-39823 | Linux Kernel up to 6.17-rc3 KVM array_index_nospec memory corruption (Nessus ID 265253 / WID-SEC-2025-2077)

Vuldb Updates
2 months 2 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.17-rc3. This affects the function array_index_nospec of the component KVM. Executing a manipulation can lead to memory corruption. This vulnerability is handled as CVE-2025-39823. The attack can only be done within the local network. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-39806 | Linux Kernel up to 6.17-rc3 HID mt_report_fixup out-of-bounds (Nessus ID 265225 / WID-SEC-2025-2077)

Vuldb Updates
2 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.17-rc3 and classified as critical. Affected by this vulnerability is the function mt_report_fixup of the component HID Handler. Executing a manipulation can lead to out-of-bounds read. This vulnerability is tracked as CVE-2025-39806. The attack is only possible within the local network. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-39808 | Linux Kernel up to 6.17-rc3 /dev/uhid ntrig_report_version hdev memory corruption (EUVD-2025-29606 / Nessus ID 265215)

Vuldb Updates
2 months 2 weeks ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.17-rc3. Impacted is the function ntrig_report_version of the file /dev/uhid. Performing a manipulation of the argument hdev results in memory corruption. This vulnerability is reported as CVE-2025-39808. The attacker must have access to the local network to execute the attack. No exploit exists. You should upgrade the affected component.
vuldb.com

Managed ad