NAME__________FileZilla Client code executionPlatforms Affected:FileZilla FileZilla Client 3.63.1Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________FileZilla Client could allow a local authenticated attacker to execute...
NAME__________Microsoft Edge (Chromium-based) security bypassPlatforms Affected:Microsoft Edge for AndroidRisk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Microsoft Edge (Chromium-based) could allow a remote attacker to...
NAME__________GitHub Enterprise Server security bypassPlatforms Affected:GitHub GitHub Enterprise ServerRisk Level:7.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GitHub Enterprise Server could allow a remote authenticated attacker...
NAME__________Online Computer and Laptop Store SQL injectionPlatforms Affected:Sourcecodester Online Computer and Laptop Store 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online Computer and Laptop...
NAME__________GitHub Enterprise Server security bypassPlatforms Affected:GitHub GitHub Enterprise ServerRisk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________GitHub Enterprise Server could allow a remote authenticated attacker...
NAME__________Contact Forms Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Contact Forms by Cimatti Plugin for WordPress 1.5.4Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Contact Forms...
NAME__________Continuous Image Carousel With Lightbox Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Continuous Image Carousel With Lightbox Plugin for WordPress 1.0.15Risk...
NAME__________Apache OFBiz file disclosurePlatforms Affected:Apache OFBiz 18.12.06Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache OFBiz could allow a remote attacker to obtain sensitive information....
NAME__________Product page shipping calculator for WooCommerce Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Product page shipping calculator for WooCommercePlugin for WordPress...
NAME__________PropertyHive Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Magic Post Thumbnail Plugin for WordPress 4.1.10Risk Level:7.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PropertyHive Plugin for WordPress...
NAME__________xxl-job cross-site scriptingPlatforms Affected:xxl-job xxl-job 2.4.0Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________xxl-job is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
Belgian HR and payroll giant SD Worx has suffered a cyberattack causing them to shut down all IT systems for...
Yum! Brands, the brand owner of the KFC, Pizza Hut, and Taco Bell fast food chains, is now sending data...
The Cybersecurity and Infrastructure Security Agency (CISA) ordered federal agencies to patch two security vulnerabilities actively exploited in the wild...
High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info grinnellplans -- grinnellplans A vulnerability...
Reportly is an AzureAD user activity report tool. About the tool This is a tool that will help blue teams...
Apple, as the maker of one of the most widely used devices, is also one of the most targeted brands....
Programme HackerOne Nextcloud Nextcloud Submitted by ctulhu ctulhu Report Full Passcode bypass on Nextcloud App iOS Full Report A...
Programme HackerOne Nextcloud Nextcloud Submitted by ctulhu ctulhu Report Ability to control the filename when uploading a logo or favicon...
Programme HackerOne Nextcloud Nextcloud Submitted by mdfarhanchowdhuryhasin mdfarhanchowdhuryhasin Report Website PHP source code returned in javascript Full Report A...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by ostracize ostracize Report Session mismatch leading to potential...
Threat actors are flooding the npm open source package repository with bogus packages that briefly even resulted in a denial-of-service...
An Estonian national has been charged in the U.S. for purchasing U.S.-made electronics on behalf of the Russian government and...
As technology advances, cyberattacks are becoming more sophisticated. With the increasing use of technology in our daily lives, cybercrime is...
