DELTA OBSCURA

We are the team behind Mission Cyber Sentinel, a mission dedicated to securing 446,000 digital assets globally.

Our Partners

Vulnerability DB Entries

Total CVEs
44
Disclosed
Affected Assets
601731
Digital assets impacted
Affected Users
1363830900
Users impacted
Elite Contributor
AlasdairGorniak
with 3 CVEs
Proficient Contributor
daeda1us
with 4 CVEs
Competent Contributor
0xhamy
with 28 CVEs
Title CVE ID Author Credit Severity Post Date Action
Rallly - v3.11.2 - Insufficient login token entropy CVE-2025-47781 xoriath Critical 2025-10-22
Apache JSPWiki - v2.12.3-git-04 - Cross-Site Scripting CVE-2025-24854 0xhamy High 2025-10-22
Vvveb - v1.0.5 - Cross-Site Scripting via posts & pages CVE-2025-8975 0xhamy High 2025-10-22
Vvveb - v1.0.5 - Cross-Site Scripting via SVG CVE-2025-8976 0xhamy High 2025-10-22
Vvveb - v1.0.5 - Cross-Site Scripting via navbar CVE-2025-8521 0xhamy High 2025-10-22
EasyAppointments - v1.5.0 - Password Brute Force CVE-2024-57602 0xhamy Critical 2025-10-22
EasyAppointments - v1.5.0 - Cross-Site Scripting CVE-2024-57601 0xhamy High 2025-10-22
OnlyOffice Community Server - v12.7.0 - Cross-Site Scripting (cross-origin) CVE-2025-10255 0xhamy,daeda1us Low 2025-10-22
OnlyOffice Community Server - v12.7.0 - Cross-Site Scripting CVE-2025-10254 0xhamy,daeda1us High 2025-10-22
Lemon OS - vnightly-2024-07-12 - Remote stack overflow CVE-2025-9001 0xhamy High 2025-10-22
Apache Answer - v1.4.1 - Externally referenced images can leak user privacy CVE-2025-29868 0xhamy,daeda1us Medium 2025-10-22
Mentingo - File Upload to XSS CVE-2025-10741 KhanMarshai Medium 2025-10-16
Frappe LMS - v2.35.0 - Improper Access Controls CVE-2025-11281 0xhamy,KhanMarshai Medium 2025-10-14
Frappe LMS - v2.35.0 - Improper Access Controls (unauthenticated) CVE-2025-11280 0xhamy,KhanMarshai High 2025-10-14
Frappe LMS - v2.35.0 - Cross-Site Scripting as student CVE-2025-11282 0xhamy,KhanMarshai High 2025-10-14
Frappe LMS - v2.35.0 - Cross-Site Scripting as instructor CVE-2025-11283 0xhamy,KhanMarshai Medium 2025-10-14
Typo3 CMS - v13.4.11 - Unrestricted File Upload CVE-2025-47939 0xhamy Medium 2025-09-29
NukeViet - v4.5.06 - Server Side Request Forgery CVE-2025-8772 0xhamy High 2025-09-29
Vvveb - v1.0.5 - Code Execution CVE-2025-8518 0xhamy Critical 2025-09-29
Vvveb - v1.0.5 - Server Side Request Forgery CVE-2025-8520 0xhamy Medium 2025-09-29
« 1 2 3 »

Contributor Ranking System

Composite Score

The contributor ranking prioritizes real-world impact (affected users and digital assets) over the sheer quantity of CVEs, with CVE count as a tiebreaker.

Factors we consider

  • Affected users and assets: Maximum values per unique product to avoid overcounting across multiple vulnerabilities on the same product.
  • Total impact: Sum of max affected users and max affected assets across products.
  • CVE count: Number of CVEs credited, used as tiebreaker.
  • Sorting: Primarily by total impact (descending), then by CVE count (descending).