Lucene search
K

89 matches found

EUVD
EUVD
added 2026/01/02 6:30 p.m.4 views

EUVD-2026-0275

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.7 views

TencentOS Server 4: buildah (TSSA-2025:0275)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0275 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.6CVSS7.1AI score0.00358EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/17 5:29 a.m.13 views

CVE-2025-0275

HCL BigFix Mobile 3.3 and earlier is affected by improper access control. Unauthorized users can access a small subset of endpoint actions, potentially allowing access to select internal functions...

5.3CVSS6.7AI score0.0024EPSS
Exploits0References1
Circl
Circl
added 2025/10/16 6:16 a.m.3 views

CVE-2025-0275

creationtimestamp| type| source ---|---|--- 2025-10-16 06:16:17+00:00| seen| Telegram/Tz9DPk2FYmGzHnCBoa2nsugM7slQqiMZi7nJx2yw2Nveu4...

5.3CVSS4.8AI score0.0024EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:59 p.m.4 views

CVE-2020-0275

In MediaProvider, there is a possible way to access ContentResolver and MediaStore entries the app shouldn't have access to due to a permissions bypass. This could lead to local escalation of privilege, with no additional execution privileges needed. User interaction is not needed for...

7.8CVSS7AI score0.00163EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:8 p.m.7 views

CVE-2009-0275

Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: the provenance...

6.5CVSS7AI score0.06282EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.22 views

RHEL 9 : Red Hat OpenStack Platform 17.0 (openstack-neutron) (RHSA-2023:0275)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:0275 advisory. OpenStack Networking neutron is a virtual network service for OpenStack. Just as OpenStack Compute nova provides an API to dynamically request and...

6.5CVSS5.9AI score0.01056EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.22 views

openSUSE: Security Advisory for rubygem (SUSE-SU-2023:0275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01712EPSS
Exploits0References2
Circl
Circl
added 2024/01/07 1:31 p.m.3 views

CVE-2024-0275

creationtimestamp| type| source ---|---|--- 2024-01-07 13:31:48+00:00| seen| https://t.me/ctinow/164101 2024-01-08 21:17:05+00:00| seen| https://t.me/ctinow/164631 2024-01-24 20:46:54+00:00| seen| https://t.me/ctinow/173069...

6.5CVSS6.2AI score0.00577EPSS
Exploits1References3
CVE
CVE
added 2024/01/07 12:0 p.m.41 views

CVE-2024-0275

CVE-2024-0275 documents a SQL injection in Kashipara Food Management System up to v1.0, caused by unsafely handling the id parameter in item_edit_submit.php. The vulnerability allows remote attackers to inject SQL statements, potentially exposing database data. Multiple referenced sources (NVD en...

6.5CVSS6.9AI score0.00577EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/07 12:0 p.m.15 views

CVE-2024-0275 Kashipara Food Management System item_edit_submit.php sql injection

A vulnerability was found in Kashipara Food Management System up to 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file itemeditsubmit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...

6.5CVSS7.1AI score0.00577EPSS
Exploits1References3
Circl
Circl
added 2023/02/13 6:35 p.m.8 views

CVE-2023-0275

creationtimestamp| type| source ---|---|--- 2023-02-13 18:35:59+00:00| seen| https://t.me/cibsecurity/58005...

5.4CVSS5.5AI score0.0054EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/02/13 2:32 p.m.5 views

CVE-2023-0275 Easy Accept Payments for PayPal < 4.9.10 - Contributor+ Stored XSS

The Easy Accept Payments for PayPal WordPress plugin before 4.9.10 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site...

5.4AI score0.0054EPSS
Exploits2References1
Patchstack
Patchstack
added 2023/01/17 12:0 a.m.15 views

WordPress Easy Accept Payments Plugin < 4.9.10 is vulnerable to Cross Site Scripting (XSS)

Software Easy Accept Payments Type Plugin Vulnerable versions 4.9.10 Fixed in 4.9.10 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0275 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 334f1469f03f Credits Lana Codes...

5.4CVSS5.6AI score0.0054EPSS
Exploits2References4Affected Software1
Photon
Photon
added 2022/11/04 12:0 a.m.47 views

Important Photon OS Security Update - PHSA-2022-0275

Updates of 'linux-aws', 'linux-secure', 'linux', 'linux-rt' packages of Photon OS have been released...

1.7AI score0.0123EPSS
Exploits1
Photon
Photon
added 2022/11/04 12:0 a.m.74 views

Important Photon OS Security Update - PHSA-2022-4.0-0275

Updates of 'linux-rt', 'linux-esx', 'linux-aws', 'linux-secure' packages of Photon OS have been released...

8.8CVSS6.7AI score0.01364EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2022/04/03 11:15 p.m.1 views

CVE-2022-26233

Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /...." substring...

7.5CVSS5.8AI score0.15028EPSS
Exploits3References4
Packet Storm
Packet Storm
added 2021/07/05 12:0 a.m.261 views

Trojan.Win32.Inject.adwas Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/acfce60da9031e00c22818f2616d6424.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Inject.adwas Vulnerability: Insecure Permissions Description: The malware creates a dir...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2021/04/22 7:37 p.m.16 views

CVE-2021-0275 Junos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.

A Cross-site Scripting XSS vulnerability in J-Web on Juniper Networks Junos OS allows an attacker to target another user's session thereby gaining access to the users session. The other user session must be active for the attack to succeed. Once successful, the attacker has the same privileges as...

8.8CVSS8.4AI score0.01171EPSS
Exploits0References1
CVE
CVE
added 2021/04/22 7:37 p.m.61 views

CVE-2021-0275

The CVE-2021-0275 entry identifies a Cross-site Scripting (XSS) vulnerability in Juniper Networks Junos OS J-Web that can hijack another active user session and potentially grant full device control if the compromised user has root privileges. Affected are Junos OS versions across multiple series...

9.3CVSS8.3AI score0.01171EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder