Aggregator

CVE-2010-0980 | Mitchell Sleeper L4d Stats 1.1 player.php steamid sql injection (EDB-10930 / XFDB-55299)

Vuldb Updates
1 day 23 hours ago
A vulnerability marked as critical has been reported in Mitchell Sleeper L4d Stats 1.1. Affected by this vulnerability is an unknown functionality of the file player.php. The manipulation of the argument steamid leads to sql injection. This vulnerability is uniquely identified as CVE-2010-0980. The attack is possible to be carried out remotely. Moreover, an exploit is present.
vuldb.com

CVE-2010-2006 | LetoDMS 1.5.0/1.5.1/1.6.0/1.7.0/1.7.2 Login op/op.Login.php lang path traversal (DSA-2146 / EDB-33530)

Vuldb Updates
1 day 23 hours ago
A vulnerability, which was classified as problematic, has been found in LetoDMS 1.5.0/1.5.1/1.6.0/1.7.0/1.7.2. This issue affects some unknown processing of the file op/op.Login.php of the component Login. This manipulation of the argument lang causes path traversal. The identification of this vulnerability is CVE-2010-2006. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2010-4878 | Hinnendahl Kontakt Formular 1.1 formmailer.php script_pfad code injection (EDB-14809 / OSVDB-67555)

Vuldb Updates
1 day 23 hours ago
A vulnerability classified as critical has been found in Hinnendahl Kontakt Formular 1.1. Affected by this vulnerability is an unknown functionality of the file formmailer.php. The manipulation of the argument script_pfad leads to code injection. This vulnerability is listed as CVE-2010-4878. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com

INC

Dark Feed IO
1 day 23 hours ago

You must login to view this content

cohenido

Pear

Dark Feed IO
1 day 23 hours ago

You must login to view this content

cohenido

LG WebOS TV Vulnerability Let Attackers Bypass Authentication and Enable Full Device Takeover

Cyber Security News
1 day 23 hours ago

A critical vulnerability has been discovered in LG’s WebOS for smart TVs, allowing an attacker on the same local network to bypass authentication mechanisms and achieve full control over the device. The flaw, which affects models like the LG WebOS 43UT8050, enables unauthenticated attackers to gain root access, install malicious applications, and completely compromise the […]

The post LG WebOS TV Vulnerability Let Attackers Bypass Authentication and Enable Full Device Takeover appeared first on Cyber Security News.

Guru Baran

Ransomware attackers used incorrectly stored recovery codes to disable EDR agents

Help Net Security
1 day 23 hours ago

All target organizations are different, but ransomware attackers are highly adaptive and appreciate – and will exploit – any mistake you make. The latest Akira ransomware attacks Managed security service providers and external incident responders have had a front-row seat for observing many of the actions carried out by Akira ransomware affiliates in the last few months. In early August 2025, both Arctic Wolf and Huntress researchers warned about the possibility of Akira affiliates using … More →

The post Ransomware attackers used incorrectly stored recovery codes to disable EDR agents appeared first on Help Net Security.

Zeljka Zorz

CVE-2004-2383 | Microsoft Internet Explorer up to 6 Event information disclosure (EDB-23766 / XFDB-15337)

Vuldb Updates
1 day 23 hours ago
A vulnerability was found in Microsoft Internet Explorer up to 6. It has been declared as critical. Affected is an unknown function of the component Event Handler. Executing manipulation can lead to information disclosure. This vulnerability appears as CVE-2004-2383. The attack may be performed from remote. In addition, an exploit is available. It is best to exchange the affected component with an alternative.
vuldb.com

CVE-2004-1104 | Microsoft Internet Explorer up to 6 Statusbar Remote Code Execution (VU#702086 / EDB-24714)

Vuldb Updates
1 day 23 hours ago
A vulnerability was found in Microsoft Internet Explorer up to 6. It has been classified as problematic. The impacted element is an unknown function of the component Statusbar Handler. Performing manipulation results in Remote Code Execution. This vulnerability is cataloged as CVE-2004-1104. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended that the affected component be replaced with an alternative.
vuldb.com

CVE-2004-0842 | Microsoft Internet Explorer up to 6.1 SP2 CSS heap-based overflow (VU#291304 / EDB-24328)

Vuldb Updates
1 day 23 hours ago
A vulnerability, which was classified as critical, was found in Microsoft Internet Explorer up to 6.1 SP2. The impacted element is an unknown function of the component CSS. The manipulation with the input [STYLE]@;/* results in heap-based buffer overflow. This vulnerability is cataloged as CVE-2004-0842. The attack may be launched remotely. Furthermore, there is an exploit available. It is advisable to use an alternative in place of the affected component.
vuldb.com

CVE-2004-0842 | Microsoft Internet Explorer up to 6 Cascading Style Sheet heap-based overflow (MS04-038 / VU#291304)

Vuldb Updates
1 day 23 hours ago
A vulnerability identified as critical has been detected in Microsoft Internet Explorer up to 6. Affected by this vulnerability is an unknown functionality of the component Cascading Style Sheet Handler. Performing manipulation results in heap-based buffer overflow. This vulnerability is identified as CVE-2004-0842. The attack can be initiated remotely. Additionally, an exploit exists. To fix this issue, it is recommended to deploy a patch.
vuldb.com

Managed ad