smykopaka.pl Cross Site Scripting vulnerability OBB-3076810

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

November 28, 2022

snegir.org Cross Site Scripting vulnerability OBB-3076817

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

November 28, 2022

vBulletin 5.5.2 PHP Object Injection

Post ContentRead More ...

Continue Reading

November 28, 2022

CVE-2022-4020

Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable.Read ...

Continue Reading

November 28, 2022

CVE-2022-38900

decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS.Read More ...

Continue Reading

November 28, 2022

CVE-2022-36193

SQL injection in School Management System 1.0 allows remote attackers to modify or delete data, causing persistent changes to the application's content or behavior by using malicious SQL queries.Read ...

Continue Reading

November 28, 2022

CVE-2022-3601

The Image Hover Effects Css3 WordPress plugin through 4.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting ...

Continue Reading

November 28, 2022

CVE-2022-3865

The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as lo ...

Continue Reading

November 28, 2022

1 82,239 82,240 82,241 82,242 82,243 95,035

Back to Main
Subscribe for the latest news: