Lucene search
K

40 matches found

Wolfi
Wolfi
added 5 days ago4 views

CVE-2026-11070 vulnerabilities

Vulnerabilities for packages: chromium...

9.6CVSS5.8AI score0.00216EPSS
Exploits0
Circl
Circl
added 2026/06/05 1:24 p.m.8 views

CVE-2026-11070

creationtimestamp| type| source ---|---|--- 2026-06-05 13:24:02+00:00| seen| https://infosec.exchange/users/cR0w/statuses/116697713800926918 2026-06-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260608 2026-06-07 18:00:00+00:00| seen|...

9.6CVSS5.3AI score0.00216EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/29 10:56 a.m.11 views

CVE-2025-11070

A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cartadd.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...

7.5CVSS7AI score0.00441EPSS
Exploits1References1
NVD
NVD
added 2025/09/27 5:15 p.m.4 views

CVE-2025-11070

A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cartadd.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...

9.8CVSS0.00441EPSS
Exploits1References4
CVE
CVE
added 2025/09/27 5:2 p.m.14 views

CVE-2025-11070

CVE-2025-11070 affects Projectworlds Online Shopping System 1.0. The vulnerable component is the file /store/cart_add.php, where manipulating the ID parameter enables a SQL injection. Public exploitability is indicated, with remote access possible and high impact on confidentiality, integrity, an...

9.8CVSS6.7AI score0.00441EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 7:52 a.m.11 views

CVE-2024-11070

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack ma...

5.4CVSS5.2AI score0.00368EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:10 a.m.3 views

CVE-2016-11070

An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values...

5.4CVSS6.2AI score0.00556EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2019-11070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, or Smooth...

5.3CVSS6.6AI score0.03294EPSS
Exploits0References3
OSV
OSV
added 2024/11/11 3:15 p.m.9 views

CVE-2024-11070

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack ma...

5.4CVSS6.2AI score
Exploits0References3
Circl
Circl
added 2024/11/11 2:36 p.m.14 views

CVE-2024-11070

creationtimestamp| type| source ---|---|--- 2024-11-11 14:36:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113464823279325330 2024-11-11 16:56:33+00:00| seen| https://t.me/cvedetector/10508...

5.4CVSS4.4AI score0.00368EPSS
Exploits1References2
CVE
CVE
added 2024/11/11 2:31 p.m.50 views

CVE-2024-11070

CVE-2024-11070 affects Sanluan PublicCMS 5.202406.d. The issue is a cross-site scripting vulnerability in the Tag Type Handler, specifically in the /admin/cmsTagType/save endpoint where manipulation of the argument name enables XSS. The vulnerability can be triggered remotely and the exploit has ...

5.4CVSS4AI score0.00368EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/11/11 2:31 p.m.21 views

CVE-2024-11070 Sanluan PublicCMS Tag Type save cross site scripting

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack ma...

5.3CVSS0.00368EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/11/11 2:31 p.m.12 views

CVE-2024-11070 Sanluan PublicCMS Tag Type save cross site scripting

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting. The attack ma...

5.3CVSS6.2AI score0.00368EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.39 views

Rocky Linux 8 : GNOME (RLSA-2019:3553)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2019:3553 advisory. - WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, ...

9.3CVSS6.9AI score0.18108EPSS
Exploits15References111
Tenable Nessus
Tenable Nessus
added 2021/10/28 12:0 a.m.44 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : webkitgtk4 Multiple Vulnerabilities (NS-SA-2021-0166)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has webkitgtk4 packages installed that are affected by multiple vulnerabilities: - WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS,...

9.8CVSS7.6AI score0.18108EPSS
Exploits22References221
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2019:1137-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.9AI score0.18108EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2019:1155-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.18108EPSS
Exploits3References6
Circl
Circl
added 2020/06/20 12:55 a.m.4 views

CVE-2016-11070

creationtimestamp| type| source ---|---|--- 2020-06-20 00:55:38+00:00| seen| https://t.me/cibsecurity/12949...

5.4CVSS5.4AI score0.00556EPSS
Exploits0References1
CVE
CVE
added 2020/06/19 7:25 p.m.40 views

CVE-2016-11070

Mattermost Server prior to version 3.1.0 is affected by an XSS vulnerability via theme color-code values. Root cause: improper handling/validation of user-provided theme color data that can be reflected in the client. Impact is documented as cross-site scripting with low to medium severity depend...

5.4CVSS5.1AI score0.00556EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/05/13 6:40 p.m.91 views

CVE-2020-11070

CVE-2020-11070 affects TYPO3 SVG Sanitizer extension. The vulnerability arises when slightly invalid or incomplete SVG markup is not sanitized, allowing the browser to execute cross-site scripting. Affected versions are prior to 1.0.3. The issue stems from inadequate handling of malformed SVG dur...

5.4CVSS5AI score0.0054EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder