Apache Answer | Privacy leak & user information disclosure
Disclosure of an information disclosure vulnerability in Apache Answer.
Posted on: April 11, 2025 11:47 AM
ViewEasyAppointments 1.5.0 | Stored XSS leads to account takeover
Disclosure of a stored XSS vulnerability in EasyAppointments that resulted in account takeover.
Posted on: January 11, 2025 12:06 AM
ViewEasyAppointments 1.5.0 | Admin Login bruteforce rate limit bypass
Disclosure of an admin bruteforce vulnerability in EasyAppointments CMS.
Posted on: January 10, 2025 11:58 PM
ViewVvveb 1.0.5 | Stored site-wide silent XSS
Disclosure of a stored site-wide XSS affecting navigation menu in Vvveb.
Posted on: January 10, 2025 11:28 PM
ViewVvveb 1.0.5 | Internal file read via drag-and-drop editor
Disclosure of an internal file read vulnerability via drag-and-drop editor in Vvveb.
Posted on: January 10, 2025 11:22 PM
ViewVvveb 1.0.5 | Authenticated SSRF port scanning as an editor
Disclosure of an internal SSRF vulnerability in Vvveb that facilitates internal data disclosure.
Posted on: January 10, 2025 10:59 PM
ViewVvveb 1.0.5 | Non-validated Theme Editing Allows Privilege Abuse and RCE
Disclosure of a Remote Code Execution vulnerability via non-validated theme editor in Vvveb.
Posted on: January 10, 2025 10:55 PM
ViewVvveb 1.0.5 | Authenticated Stored XSS on uploading image in posts & pages
Disclosure of stored XSS via malicious SVG affecting posts and pages in Vvveb CMS.
Posted on: January 10, 2025 10:48 PM
ViewVvveb 1.0.5 | Authenticated Stored XSS on creating posts & pages
Disclosure of stored XSS affecting posts and pages in Vvveb CMS.
Posted on: January 10, 2025 10:36 PM
ViewVvveb 1.0.5 | User account bruteforce
Disclosure of user login bruteforce vulnerability in Vvveb CMS.
Posted on: January 10, 2025 09:25 PM
ViewVvveb 1.0.5 | Admin password bruteforce
Disclosure of admin login bruteforce vulnerability in Vvveb CMS.
Posted on: January 10, 2025 09:17 PM
ViewFuel CMS 1.5.2 | Stored XSS in block preview
Disclosure of stored XSS vulnerability in Fuel CMS.
Posted on: January 10, 2025 08:29 PM
ViewezBookkeeping 0.7.0 - 2FA backup code bruteforce
Disclosure of login OTP bruteforce vulnerability in ezBookkeeping web app.
Posted on: January 01, 2025 10:36 AM
ViewezBookkeeping 0.7.0 - Login Bruteforce
Disclosure of login bruteforce vulnerability in ezBookkeeping web app.
Posted on: January 01, 2025 10:03 AM
View