Aggregator
8Base Ransomware Takedown Law Enforcement Seizes Darknet Leak Site
1 year 5 months ago
cohenido
CVE-2004-1828 | Belchior Foundry Vcard 2.8/2.9 Authorization uninstall.php (EDB-23843 / XFDB-15522)
1 year 5 months ago
A vulnerability classified as problematic was found in Belchior Foundry Vcard 2.8/2.9. This vulnerability affects unknown code of the file uninstall.php of the component Authorization. The manipulation leads to an unknown weakness.
This vulnerability was named CVE-2004-1828. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Georgia Hospital Alerts 120,000 Individuals of Data Breach
1 year 5 months ago
Memorial Hospital and Manor, located in Bainbridge, Georgia, has alerted 120,000 individuals that their data was breached following a ransomware attack last November
CVE-2023-23591 | Terminalfour prior 8.2.18.2.2/8.2.18.7/8.3.11.1/8.3.14.1 Logback information disclosure
1 year 5 months ago
A vulnerability was found in Terminalfour and classified as problematic. Affected by this issue is some unknown functionality of the component Logback. The manipulation leads to information disclosure.
This vulnerability is handled as CVE-2023-23591. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-27216 | D-Link DSL-3782 1.03 Network Setting os command injection
1 year 5 months ago
A vulnerability was found in D-Link DSL-3782 1.03. It has been declared as very critical. This vulnerability affects unknown code of the component Network Setting Handler. The manipulation leads to os command injection.
This vulnerability was named CVE-2023-27216. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2023-27032 | advancedpopupcreator 1.1.21/1.1.22/1.1.23/1.1.24 on Prestashop AdvancedPopup::getPopups sql injection
1 year 5 months ago
A vulnerability was found in advancedpopupcreator 1.1.21/1.1.22/1.1.23/1.1.24 on Prestashop. It has been rated as critical. This issue affects the function AdvancedPopup::getPopups. The manipulation leads to sql injection.
The identification of this vulnerability is CVE-2023-27032. The attack needs to be approached within the local network. There is no exploit available.
vuldb.com
CVE-2023-27704 | Void Tools Everything prior 1.4.1.1022 redos
1 year 5 months ago
A vulnerability classified as problematic has been found in Void Tools Everything. Affected is an unknown function. The manipulation leads to inefficient regular expression complexity.
This vulnerability is traded as CVE-2023-27704. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-27703 | pikpak 1.29.2 on Android Debug Interface information disclosure
1 year 5 months ago
A vulnerability classified as problematic was found in pikpak 1.29.2 on Android. Affected by this vulnerability is an unknown functionality of the component Debug Interface. The manipulation leads to information disclosure.
This vulnerability is known as CVE-2023-27703. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
CVE-2023-22897 | SecurePoint UTM prior 12.2.5.1 /spcgi.cgi information disclosure (ID 171928)
1 year 5 months ago
A vulnerability has been found in SecurePoint UTM and classified as problematic. This vulnerability affects unknown code of the file /spcgi.cgi. The manipulation leads to information disclosure.
This vulnerability was named CVE-2023-22897. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-29625 | Employee Performance Evaluation System 1.0 unrestricted upload
1 year 5 months ago
A vulnerability was found in Employee Performance Evaluation System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to unrestricted upload.
This vulnerability is handled as CVE-2023-29625. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2023-27666 | Auto Dealer Management System 1.0 SystemSettings.php?f=update_settings name cross site scripting
1 year 5 months ago
A vulnerability has been found in Auto Dealer Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /classes/SystemSettings.php?f=update_settings. The manipulation of the argument name leads to cross site scripting.
This vulnerability was named CVE-2023-27666. The attack can be initiated remotely. There is no exploit available.
vuldb.com
CVE-2023-27651 | Ego Studio SuperClean 1.1.5/1.1.9 _default_.xml update_info Privilege Escalation
1 year 5 months ago
A vulnerability was found in Ego Studio SuperClean 1.1.5/1.1.9. It has been rated as critical. Affected by this issue is some unknown functionality of the file _default_.xml. The manipulation of the argument update_info leads to Privilege Escalation.
This vulnerability is handled as CVE-2023-27651. The attack can only be initiated within the local network. There is no exploit available.
vuldb.com
Шестое чувство для армии США: DARPA выводит квантовые сенсоры на поле боя
1 year 5 months ago
Разведка никогда не будет прежней благодаря RoQS.
CVE-2025-21692 | Linux Kernel up to 6.13.0 net/sched/sch_ets.c ets_class_from_arg array index
1 year 5 months ago
A vulnerability has been found in Linux Kernel up to 6.13.0 and classified as problematic. Affected by this vulnerability is the function ets_class_from_arg of the file net/sched/sch_ets.c. The manipulation leads to improper validation of array index.
This vulnerability is known as CVE-2025-21692. The attack needs to be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-25186 | ruby net-imap up to 0.3.7/0.4.18/0.5.5 Net::IMAP resource consumption
1 year 5 months ago
A vulnerability, which was classified as problematic, was found in ruby net-imap up to 0.3.7/0.4.18/0.5.5. Affected is the function Net::IMAP. The manipulation leads to resource consumption.
This vulnerability is traded as CVE-2025-25186. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-21688 | Linux Kernel up to 5.15.177/6.1.127/6.6.74/6.12.11/6.13.0 run_job null pointer dereference
1 year 5 months ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.177/6.1.127/6.6.74/6.12.11/6.13.0. This issue affects the function run_job. The manipulation leads to null pointer dereference.
The identification of this vulnerability is CVE-2025-21688. The attack can only be done within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-21689 | Linux Kernel up to 6.13.0 quatech2 qt2_process_read_urb null pointer dereference
1 year 5 months ago
A vulnerability classified as critical was found in Linux Kernel up to 6.13.0. This vulnerability affects the function qt2_process_read_urb of the component quatech2. The manipulation leads to null pointer dereference.
This vulnerability was named CVE-2025-21689. The attack needs to be approached within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-21687 | Linux Kernel up to 6.13.0 vfio memory corruption
1 year 5 months ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.13.0. This affects an unknown part of the component vfio. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2025-21687. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2025-21686 | Linux Kernel up to 6.12.11/6.13.0 io_uring buffer overflow
1 year 5 months ago
A vulnerability was found in Linux Kernel up to 6.12.11/6.13.0. It has been rated as critical. Affected by this issue is some unknown functionality of the component io_uring. The manipulation leads to buffer overflow.
This vulnerability is handled as CVE-2025-21686. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com