Lucene search
K

22 matches found

Circl
Circl
added 9 hours ago4 views

CVE-2026-11965

creationtimestamp| type| source ---|---|--- 2026-07-02 08:15:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnlp5dwuo2m...

6.5CVSS5.8AI score
Exploits0References1
NVD
NVD
added 11 hours ago5 views

CVE-2026-11965

The User Registration & Membership WordPress plugin before 5.2.0 does not enforce payment completion before activating a paid membership subscription, allowing unauthenticated users after self-registering an account through the open registration flow to obtain an active subscription on any paid...

6.5CVSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/04 5:50 a.m.5 views

Security Bulletin: IBM Event Endpoint Management is vulnerable to unauthorized access

Summary IBM Event Endpoint Management is vulnerable to unauthorized access due to improper restriction of hidden directories CVE-2025-11965 Vulnerability Details CVEID:CVE-2025-11965 DESCRIPTION: In Eclipse Vert.x versions 4.0.0, 4.5.21 and 5.0.0, 5.0.4, a StaticHandler configuration for...

7.5CVSS5.8AI score0.00459EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/26 10:4 a.m.13 views

Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate with watsonx Assistant Cartridge

Summary Multiple vulnerabilities were addressed in IBM watsonx Orchestrate with watsonx Assistant Cartridge version 5.3.1 Vulnerability Details CVEID:CVE-2025-11965 DESCRIPTION: In Eclipse Vert.x versions 4.0.0, 4.5.21 and 5.0.0, 5.0.4, a StaticHandler configuration for restricting access to hidd...

8.6CVSS6AI score0.03026EPSS
Exploits8Affected Software1
Circl
Circl
added 2026/01/16 9:11 p.m.7 views

CVE-2025-11965

creationtimestamp| type| source ---|---|--- 2026-01-16 21:11:12+00:00| seen| Telegram/v0bFlPUxaA4daJAECyFAZPTM5zTRL708CBV4pLvIHYbHtU...

7.5CVSS4.7AI score0.00459EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.4 views

CVE-2019-11965

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

9CVSS7.9AI score0.0364EPSS
Exploits0References1
Wolfi
Wolfi
added 2025/10/24 2:6 p.m.6 views

CVE-2025-11965 vulnerabilities

Vulnerabilities for packages: strimzi-kafka-operator, keycloak, apache-pulsar...

7.5CVSS5.8AI score0.00459EPSS
Exploits0
Chainguard
Chainguard
added 2025/10/24 2:5 p.m.20 views

CVE-2025-11965 vulnerabilities

Vulnerabilities for packages: keycloak, apache-pulsar, strimzi-kafka-operator, keycloak-fips...

7.5CVSS5.8AI score0.00459EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/22 9:28 p.m.5 views

CVE-2025-11965

In Eclipse Vert.x versions 4.0.0, 4.5.21 and 5.0.0, 5.0.4, a StaticHandler configuration for restricting access to hidden files fails to restrict access to hidden directories, allowing unauthorized users to retrieve files within them e.g. '.git/config'. Mitigation Mitigation for this issue is...

6.3CVSS6.4AI score0.00459EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2025/10/22 7:38 p.m.6 views

ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91), ai.chronon:service_2.12 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +5641 more potentially affected by CVE-2025-11965 via io.vertx:vertx-web (>=3.0.0-milestone6 <=4.5.21)

io.vertx:vertx-web MAVEN version =3.0.0-milestone6, =0.0.86, =0.0.86, =0.0.86, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.0.2, =0.3.0 - ai.konduit.serving:konduit-serving-python-config =0.0.2 and more Source cves: CVE-2025-11965 Source advisory:...

7.5CVSS5.7AI score0.00459EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/10/22 7:38 p.m.11 views

ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91), ai.chronon:service_2.12 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +4384 more potentially affected by CVE-2025-11965 via io.vertx:vertx-web (>=4.0.0-milestone1 <=4.5.21)

io.vertx:vertx-web MAVEN version =4.0.0-milestone1, =0.0.86, =0.0.86, =0.0.86, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =22.9.0, =25.3.10 and more Sou...

7.5CVSS5.7AI score0.00459EPSS
Exploits0
OSV
OSV
added 2024/11/28 5:15 p.m.2 views

CVE-2024-11965

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical. This vulnerability affects unknown code of the file /user/reset-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit h...

9.8CVSS5.8AI score0.00827EPSS
Exploits1References5
NVD
NVD
added 2024/11/28 5:15 p.m.20 views

CVE-2024-11965

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical. This vulnerability affects unknown code of the file /user/reset-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit h...

9.8CVSS0.00827EPSS
Exploits1References5
Cvelist
Cvelist
added 2024/11/28 5:0 p.m.21 views

CVE-2024-11965 PHPGurukul Complaint Management system reset-password.php sql injection

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical. This vulnerability affects unknown code of the file /user/reset-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit h...

7.5CVSS0.00827EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/11/28 5:0 p.m.15 views

CVE-2024-11965 PHPGurukul Complaint Management system reset-password.php sql injection

A vulnerability has been found in PHPGurukul Complaint Management system 1.0 and classified as critical. This vulnerability affects unknown code of the file /user/reset-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit h...

7.5CVSS7.6AI score0.00827EPSS
Exploits1References5
CVE
CVE
added 2020/04/21 12:5 p.m.44 views

CVE-2020-11965

In IQrouter 3.3.1 and earlier, a root password is missing, enabling full remote SSH access. The root account has an empty password during initial setup, allowing an attacker with network access to gain full control. The issue is tied to initial configuration behavior and is stated to also reflect...

9.8CVSS9.5AI score0.02017EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2020/04/21 12:5 p.m.17 views

CVE-2020-11965

In IQrouter through 3.3.1, there is a root user without a password, which allows attackers to gain full remote access via SSH. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step fo...

9.7AI score0.02017EPSS
Exploits0References4
NVD
NVD
added 2019/06/05 4:29 p.m.22 views

CVE-2019-11965

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

9CVSS9AI score0.0364EPSS
Exploits0References1
CVE
CVE
added 2019/06/05 3:19 p.m.64 views

CVE-2019-11965

CVE-2019-11965 affects Hewlett Packard Enterprise’s IMC PLAT prior to 7.3 E0506P09. The vulnerability is a deviceThresholdConfig expression language injection that can lead to remote code execution . The issue arises in handling of the beanName parameter in deviceThresholdConfig.xhtml, enabling a...

9CVSS9AI score0.0364EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/06/05 3:19 p.m.26 views

CVE-2019-11965

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

9AI score0.0364EPSS
Exploits0References1
Rows per page
Query Builder