Security
Headlines

Headlines Latest CVEs

Headline

GHSA-gc95-5mmp-mp6j: Economizzer vulnerable to Clickjacking

The commit 3730880 (April 2023) and v.0.9-beta1 of gugoan Economizzer is vulnerable to Clickjacking. Clickjacking, also known as a "UI redress attack", is when an attacker uses multiple transparent or opaque layers to trick a user into clicking on a button or link on another page when they were intending to click on the top-level page. Thus, the attacker is “hijacking” clicks meant for their page and routing them to another page, most likely owned by another application, domain, or both.

1 year ago

Economizzer vulnerable to Clickjacking

Moderate severity GitHub Reviewed Published Sep 28, 2023 to the GitHub Advisory Database • Updated Sep 28, 2023

ghsa: Latest News

GHSA-gjf6-3w4p-7xfh: Microsoft Security Advisory CVE-2025-21176 | .NET and Visual Studio Remote Code Execution Vulnerability

3 hours ago

GHSA-jjcv-wr2g-4rv4: Microsoft Security Advisory CVE-2025-21172 | .NET and Visual Studio Remote Code Execution Vulnerability

3 hours ago

GHSA-p54p-p3qm-8vgj: Microsoft Security Advisory CVE-2025-21171 | .NET Remote Code Execution Vulnerability

3 hours ago

GHSA-9v8m-qv22-f268: Umbraco Forms's Short and Long Answer Fields Are Not Validated Server-Side For Maximum Length

3 hours ago

GHSA-86c2-4x57-wc8g: Git Credential Manager carriage-return character in remote URL allows malicious repository to leak credentials

3 hours ago