The WakaTime OAuth authorization flow was vulnerable to a double-clickjacking attack. The attack allowed an attacker to trick users into unknowingly clicking the "Connect my WakaTime account& ...
Continue Reading
August 12, 2025
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
The exposure of personal IP addresses through email messages has been identified as a potential security issue. Email messages can pass through multiple servers, which may store or record the content, ...
Continue Reading
August 12, 2025
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
The report identifies a bypass vulnerability in the biography field on addons.allizom.org. Despite the application's policy against allowing links, it was possible to embed functional hyperlinks ...
Continue Reading
August 12, 2025
A reflected Cross-Site Scripting (XSS) vulnerability was discovered in the "Notes" functionality under the Edit Client section. User input in the notes input field was not properly s ...
Continue Reading
August 12, 2025
The denial of service vulnerability was identified in the system. The vulnerability could have allowed an attacker to disrupt the availability of the system by exhausting its...Read More ...
Continue Reading
August 12, 2025
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
