MainWP: Reflected XSS in “Client Notes” Field
A reflected Cross-Site Scripting (XSS) vulnerability was discovered in the "Notes" functionality under the Edit Client section. User input in the notes input field was not properly s ...
Continue Reading
August 12, 2025
curl: Use after free (or assert triggered) with failed allocations in openssl
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Disk Space Exhaustion leading to a Denial of Service (DoS)
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Exposure of Hard-coded Private Keys and Credentials in curl Source Repository (CWE-321)
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Failure to strip Proxy-Authorization header on change in origin
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
curl: Credential leak on redirect due to improper state clearing when parsing macdef in netrc.c
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Hemi VDP: WordPress Version Exposure via ███████ on hemi.xyz
The WordPress CMS version was exposed in the XML file at https://hemi.xyz███. This disclosure allowed attackers to fingerprint the CMS...Read More ...
Continue Reading
August 12, 2025
curl: Arbitrary File Read via file:// Protocol in cURL
Vulnerability description not...Read More ...
Continue Reading
August 12, 2025
Back to Main
