CVE-2022-44587 WordPress WP 2FA plugin <= 2.6.3 - Sensitive Data Exposure via Log File vulnerability
Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP 2FA: from n/a through...
5.3CVSS
EPSS
Keycloak leaks configured LDAP bind credentials through the Keycloak admin console
Impact The LDAP testing endpoint allows to change the Connection URL independently of and without having to re-enter the currently configured LDAP bind credentials. An attacker with admin access (permission manage-realm) can change the LDAP host URL ("Connection URL") to a machine they control....
2.7CVSS
6.7AI Score
0.0004EPSS
CVE-2022-38055 WordPress wpForo Forum plugin <= 2.0.9 - Auth. HTML Injection vulnerability
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in gVectors Team wpForo Forum allows Content Spoofing.This issue affects wpForo Forum: from n/a through...
4.3CVSS
EPSS
Security Bulletin: Multiple PostgreSQL Vulnerabilities Affect IBM Storage Scale System
Summary There are vulnerabilities in PostgreSQL versions used by IBM Storage Scale System that could allow a remote authenticated attacker to obtain sensitive information or bypass security restrictions, a denial of service and a buffer overflow. IBM Storage Scale System has addressed the...
8.8CVSS
9.5AI Score
0.015EPSS
thamm-it.de Cross Site Scripting vulnerability OBB-3937463
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: ko, slsa-verifier, kubescape, flux-source-controller, goreleaser, vexctl, spire-server, zot, melange, zarf, falcoctl, neuvector-sigstore-interface, apko, policy-controller, tekton-chains, skaffold, wolfictl, aactl, tkn, falco,...
7.5AI Score
7.5AI Score
0.0004EPSS
GHSA-RHH4-RH7C-7R5V vulnerabilities
Vulnerabilities for packages: k9s, wolfictl, nuclei, kubescape, zarf,...
7.5AI Score
5.9CVSS
6.7AI Score
0.0004EPSS
CVE-2024-36129 vulnerabilities
Vulnerabilities for packages: opentelemetry-collector-contrib, opentelemetry-collector, tempo,...
8.2CVSS
8AI Score
0.001EPSS
CVE-2024-25710 vulnerabilities
Vulnerabilities for packages: neo4j, opensearch, gradle, spdx-tools-java, dependency-track, jenkins, wavefront-proxy,...
8.1CVSS
7AI Score
0.001EPSS
GHSA-4265-CCF5-PHJ5 vulnerabilities
Vulnerabilities for packages: neo4j, opensearch, gradle, spdx-tools-java, dependency-track, jenkins, wavefront-proxy,...
7.5AI Score
7.5AI Score
7.5AI Score
6.5CVSS
7.1AI Score
0.003EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5CVSS
7.5AI Score
0.001EPSS
7.5CVSS
6.8AI Score
0.001EPSS
7.5CVSS
6.8AI Score
0.001EPSS
7.5AI Score
7.5AI Score
CVE-2021-38561 vulnerabilities
Vulnerabilities for packages: hey, dynamic-localpv-provisioner, k3d, gitleaks,...
7.5CVSS
7.9AI Score
0.001EPSS
7.5CVSS
7.9AI Score
0.001EPSS
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: wireguard-go, gke-gcloud-auth-plugin, go, dynamic-localpv-provisioner, hey, restic, k3d, falco,...
7.5AI Score
9.8CVSS
10AI Score
0.003EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
5.5CVSS
7.7AI Score
0.001EPSS
9.8CVSS
7.2AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5CVSS
8.1AI Score
0.001EPSS
8.1CVSS
7.1AI Score
0.0004EPSS
7.5CVSS
7.1AI Score
0.002EPSS
7.5AI Score
9.8CVSS
7.7AI Score
0.001EPSS
7.5AI Score
6.8AI Score
0.0005EPSS
7.5AI Score
0.0004EPSS
7.5AI Score
7.5AI Score