Lucene search
K

7654 matches found

CNVD
CNVD
added 2023/06/14 12:0 a.m.28 views

Siemens Teamcenter Visualization and JT2Go Out-of-Bounds Read Vulnerability (CNVD-2023-48556)

JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML with available JT, VFZ, CGM and TIF data.Teamcenter Visualization software is able to enhance its Product Lifecycle Management PLM environments with a comprehensive range of visualization solutions. PLM environme...

7.8CVSS6.9AI score0.00217EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/06/13 7:0 a.m.39 views

GitHub: CVE-2023-29012 Git CMD erroneously executes `doskey.exe` in current directory, if it exists

...

7.8CVSS7.8AI score0.0038EPSS
Exploits0
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.5 views

Siemens JT2Go 缓冲区错误漏洞

JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML with available JT, VFZ, CGM and TIF data.Teamcenter Visualization software is able to enhance its Product Lifecycle Management PLM environments with a comprehensive range of visualization solutions. PLM environme...

7.8CVSS7.1AI score0.00217EPSS
Exploits0References2
OSV
OSV
added 2023/06/12 12:23 a.m.5 views

USN-6153-1 jupyter-core vulnerability

It was discovered that Jupyter Core executed untrusted files in the current working directory. An attacker could possibly use this issue to execute arbitrary code...

8.8CVSS7.1AI score0.01056EPSS
Exploits0References2
OSV
OSV
added 2023/06/10 5:15 a.m.2 views

DEBIAN-CVE-2023-26132

Versions of the package dottie before 2.0.4 are vulnerable to Prototype Pollution due to insufficient checks, via the set function and the current variable in the /dottie.js file...

7.5CVSS7.6AI score0.01062EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2023/06/10 12:0 a.m.3 views

PT-2023-20511

Name of the Vulnerable Software and Affected Versions dottie versions prior to 2.0.4 Description The issue is related to Prototype Pollution due to insufficient checks. It can be exploited via the set function and the current variable in the /dottie.js file. Recommendations For versions prior to...

7.5CVSS7.1AI score0.01062EPSS
Exploits2References17
OSV
OSV
added 2023/06/09 6:16 a.m.2 views

CVE-2023-2558

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcscurrentcurrency shortcode in versions up to, and including, 1.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This...

5.4CVSS6.8AI score0.00365EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/06/09 6:16 a.m.3 views

CVE-2023-2558

The WPCS – WordPress Currency Switcher Professional plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpcscurrentcurrency shortcode in versions up to, and including, 1.1.9 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS7AI score0.00365EPSS
Exploits0References3
Slackware Linux
Slackware Linux
added 2023/06/09 1:27 a.m.19 views

[slackware-security] php8

New php8 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/php81/php81-8.1.20-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues. For more information, see:...

7AI score
Exploits0
Slackware Linux
Slackware Linux
added 2023/06/09 1:27 a.m.20 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.12.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mo...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/06/09 12:0 a.m.5 views

PT-2023-20177 · WordPress · Wpcs – Wordpress Currency Switcher Professional

Name of the Vulnerable Software and Affected Versions: WPCS – WordPress Currency Switcher Professional plugin versions up to, and including, 1.1.9 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the wpcs current currency...

6.4CVSS6.3AI score0.00365EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/06/09 12:0 a.m.9 views

Slackware: Security Advisory (SSA:2023-159-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2023/06/09 12:0 a.m.16 views

Slackware: Security Advisory (SSA:2023-159-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.20459EPSS
Exploits3References3
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.18 views

Ashlar-Vellum Cobalt Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

7CVSS6.8AI score0.00763EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.25 views

Fuji Electric Tellus Lite V-Simulator 6 X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.8AI score0.00301EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.27 views

Fuji Electric Tellus Lite V-Simulator 6 X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.8AI score0.00301EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.19 views

Fuji Electric Tellus Lite V-Simulator 6 X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.8AI score0.00301EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.21 views

Sante DICOM Viewer Pro JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS6.8AI score0.00916EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/06/08 12:0 a.m.23 views

Sante DICOM Viewer Pro DCM File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS6AI score0.00821EPSS
Exploits0
0day.today
0day.today
added 2023/06/07 12:0 a.m.272 views

Expert Job Portal Management System 1.0 SQL Injection Vulnerability

┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐ ┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ┌┘ Vulnerability ┌┘ └───────────────────────────────────────────────────────────────────────────────────────┘┘ : Author : CraCkEr : │...

7.1AI score
Exploits0
Rows per page
Query Builder