Aggregator

CVE-2023-20883 | Oracle Banking Credit Facilities Process Management 14.5/14.6/14.7 Core denial of service (EUVD-2023-1651)

Vuldb Updates
9 months ago
A vulnerability was found in Oracle Banking Credit Facilities Process Management 14.5/14.6/14.7. It has been declared as critical. This vulnerability affects unknown code of the component Core. The manipulation leads to denial of service. This vulnerability was named CVE-2023-20883. The attack can be initiated remotely. There is no exploit available.
vuldb.com

CVE-2023-20883 | Oracle Banking Electronic Data Exchange for Corporates 14.5/14.6/14.7 Reports denial of service (EUVD-2023-1651)

Vuldb Updates
9 months ago
A vulnerability, which was classified as critical, has been found in Oracle Banking Electronic Data Exchange for Corporates 14.5/14.6/14.7. Affected by this issue is some unknown functionality of the component Reports. The manipulation leads to denial of service. This vulnerability is handled as CVE-2023-20883. The attack may be launched remotely. There is no exploit available.
vuldb.com

RenderShock 0-Click Exploit Executes Payloads Silently via Background Process

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

A new class of cyberattack called RenderShock has been identified that can compromise enterprise systems without requiring any user interaction, exploiting the very productivity features designed to help workers preview and process files automatically. Unlike traditional malware that requires users to click on malicious attachments or links, RenderShock leverages passive execution surfaces that operate silently […]

The post RenderShock 0-Click Exploit Executes Payloads Silently via Background Process appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

CVE-2025-24391 | OTRS up to 7.0.x/8.0.x/2023.x/2024.x/2025.5.x External Interface information exposure (EUVD-2025-21322 / WID-SEC-2025-1545)

VulDB Recent Entries
9 months ago
A vulnerability classified as problematic has been found in OTRS up to 7.0.x/8.0.x/2023.x/2024.x/2025.5.x. Affected is an unknown function of the component External Interface. The manipulation leads to information exposure through discrepancy. This vulnerability is traded as CVE-2025-24391. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2024-26292 | Avid NEXIS E-series prior 2025.5.1 on Linux/Windows path traversal (EUVD-2024-23563)

VulDB Recent Entries
9 months ago
A vulnerability was found in Avid NEXIS E-series, NEXIS F-series, NEXIS PRO+ and System Director Appliance on Linux/Windows. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to path traversal. The identification of this vulnerability is CVE-2024-26292. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26291 | Avid NEXIS E-series prior 2025.5.1 on Linux/Windows filename improper authorization (EUVD-2024-23562)

VulDB Recent Entries
9 months ago
A vulnerability was found in Avid NEXIS E-series, NEXIS F-series, NEXIS PRO+ and System Director Appliance on Linux/Windows. It has been declared as critical. This vulnerability affects unknown code. The manipulation of the argument filename leads to improper authorization. This vulnerability was named CVE-2024-26291. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

Threats Actors Use Sophisticated Hacking Tools to Destroy Organizations Critical Infrastructure

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

Threat actors, ranging from state-sponsored organizations to non-state actors, are using sophisticated cyber weapons to breach and destroy vital infrastructure in a time when digital and physical security are becoming more intertwined. These tools, often manifesting as malware agents like worms, viruses, and advanced persistent threats (APTs), exploit vulnerabilities in supervisory control and data acquisition […]

The post Threats Actors Use Sophisticated Hacking Tools to Destroy Organizations Critical Infrastructure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Aman Mishra

CVE-2006-0407 | AZbb AZ Bulletin Board up to 1.1.00 post.php Name cross site scripting (EDB-27120 / XFDB-24274)

Vuldb Updates
9 months ago
A vulnerability has been found in AZbb AZ Bulletin Board up to 1.1.00 and classified as problematic. This vulnerability affects unknown code of the file post.php. The manipulation of the argument Name leads to basic cross site scripting. This vulnerability was named CVE-2006-0407. The attack can be initiated remotely. Furthermore, there is an exploit available. The real existence of this vulnerability is still doubted at the moment.
vuldb.com

CVE-2008-0255 | Igamingcms Igaming Cms up to 1.3.1 archive.php section sql injection (EDB-4886 / XFDB-39598)

Vuldb Updates
9 months ago
A vulnerability was found in Igamingcms Igaming Cms up to 1.3.1. It has been rated as critical. This issue affects some unknown processing of the file archive.php. The manipulation of the argument section leads to sql injection. The identification of this vulnerability is CVE-2008-0255. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2017-15012 | EMC OpenText Documentum Content Server up to 7.3 RPC Command input validation (EDB-43003 / BID-101639)

Vuldb Updates
9 months ago
A vulnerability was found in EMC OpenText Documentum Content Server up to 7.3. It has been classified as critical. This affects an unknown part of the component RPC Command Handler. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2017-15012. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com

Managed ad