Vulnerability Research

Common Vulnerabilities and Exposures (CVEs), Emergent Attacks, TTPs, and Threat Actors/Campaigns.

New

Top

Community

XSS and SQLi in Forecast® by Tideworks

Tideworks: CVE-2022-43112 & CVE-2022-43115: Forecast® (10.10.0.13153)

Sep 19 •

CVE-2023-3433 & CVE-2023-3434 - Jami Local Denial Of Service and Passing Strings to QRC URL Vulnerabilities

Public Disclosure of 2 Vulnerabilities found within GNU Jami (Multiple Versions)

Jul 14 •

Privileged Directory Traversal in Brocade Fabric OS

Brocade: CVE-2021-27798: Fabric OS (Multiple Versions)

Aug 1, 2022 •

Reflected XSS in AEM ACS Commons Version 5.1.x and Earlier

AEM ACS Commons: CVE-2022-28820: Version 5.1.x

Jul 21, 2022 •

Privileged Read and Weak Default Credentials in Brocade Fabric OS

Brocade: CVE-2021-27796, CVE-2021-27797: Fabric OS (Multiple Versions)

Feb 16, 2022 •

Cerner Mobile Care Integer Conversion SQL Injection Leading to RCE

Cerner: CVE-2021-36385: Mobile Care 5.0.0

Aug 23, 2021 •

Chase Lindquist

NASCENT RemKon Multiple CVEs

NASCENT: CVE-2021-38611, CVE-2021-38612, CVE-2021-38613: RemKon Device Manager 4.0.0.0

Aug 23, 2021 •

Chase Lindquist

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts