Lucene search
K

17 matches found

Circl
Circl
added yesterday2 views

CVE-2026-11981

creationtimestamp| type| source ---|---|--- 2026-07-01 12:41:11+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mplk2tcsb32l 2026-07-01 22:03:01+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmjhhnwhj2o...

4.3CVSS5.8AI score0.00154EPSS
Exploits0References2
Cvelist
Cvelist
added yesterday24 views

CVE-2026-11981 GiveWP <= 4.15.3 - Cross-Site Request Forgery

The GiveWP plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.15.3 This is due to missing nonce validation on the givesetnotificationstatushandler function. This makes it possible for unauthenticated attackers to disable donation email notificatio...

4.3CVSS0.00154EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/11/14 11:20 a.m.7 views

CVE-2025-11981 School Management System – WPSchoolPress <= 2.2.23 - Authenticated (Administrator+) SQL Injection

The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'SCodes' parameter in all versions up to, and including, 2.2.23 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...

4.9CVSS0.00269EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/11/13 11:14 p.m.5 views

WordPress School Management System – WPSchoolPress plugin <= 2.2.23 - Authenticated (Administrator+) SQL Injection vulnerability

Authenticated Administrator+ SQL Injection vulnerability discovered by dutafi in WordPress Plugin WPSchoolPress versions = 2.2.23...

4.9CVSS7.8AI score0.00269EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-11981

Malware in sbrugna...

7.8CVSS7.6AI score0.00202EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-11981

Malware in sbrugna...

7.6CVSS6.9AI score0.06939EPSS
Exploits0References2
Circl
Circl
added 2024/11/29 6:29 a.m.7 views

CVE-2024-11981

creationtimestamp| type| source ---|---|--- 2024-11-29 06:29:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113564829002428472...

7.5CVSS7AI score0.00534EPSS
Exploits0References1
CVE
CVE
added 2024/11/29 6:21 a.m.47 views

CVE-2024-11981

CVE-2024-11981 affects Billion Electric routers (e.g., M100, M150, M120N, M500). The vulnerability is an authentication bypass that allows unauthenticated attackers to retrieve contents of arbitrary web pages. Public details in multiple sources confirm the issue and affected models. No explicit r...

7.5CVSS7.5AI score0.00534EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/29 6:21 a.m.9 views

CVE-2024-11981 Billion Electric router - Authentication Bypass

Certain models of routers from Billion Electric has an Authentication Bypass vulnerability, allowing unautheticated attackers to retrive contents of arbitrary web pages...

7.5CVSS7AI score0.00534EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/29 6:21 a.m.17 views

CVE-2024-11981 Billion Electric router - Authentication Bypass

Certain models of routers from Billion Electric has an Authentication Bypass vulnerability, allowing unautheticated attackers to retrive contents of arbitrary web pages...

7.5CVSS0.00534EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/06/13 12:0 a.m.52 views

Apache Airflow < 1.10.11 Multiple Vulnerabilities

The version of Apache Airflow is prior to 1.10.11. It is, therefore, affected by multiple vulnerabilities, including the following: - An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the broker Redis, RabbitMQ directly, it i...

9.8CVSS8AI score0.997EPSS
Exploits11References9
OSV
OSV
added 2020/07/17 12:15 a.m.7 views

CVE-2020-11981

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the broker Redis, RabbitMQ directly, it is possible to inject commands, resulting in the celery worker running arbitrary commands...

9.8CVSS9.4AI score
Exploits0References1
CVE
CVE
added 2020/07/16 11:21 p.m.132 views

CVE-2020-11981

CVE-2020-11981 affects Apache Airflow versions 1.10.10 and earlier when using CeleryExecutor with direct access to the broker (Redis or RabbitMQ). The underlying issue allows an attacker who can connect to the broker to inject commands, enabling the celery worker to run arbitrary commands and pot...

9.8CVSS9.3AI score0.3398EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/07/16 11:21 p.m.35 views

CVE-2020-11981

An issue was found in Apache Airflow versions 1.10.10 and below. When using CeleryExecutor, if an attacker can connect to the broker Redis, RabbitMQ directly, it is possible to inject commands, resulting in the celery worker running arbitrary commands...

9.4AI score0.3398EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2020/05/24 8:45 a.m.5 views

airflow-util-dv (>=1.2.1 <=1.6.2), dbnd-examples (>=0.50.1 <=0.56.7) +2 more potentially affected by CVE-2020-11981 via apache-airflow (>=1.10.1 <=1.10.10)

apache-airflow PYPI version =1.10.1, =1.2.1, =0.50.1, =0.0.1, =10.3.0rc1, =10.3.0rc2 Source cves: CVE-2020-11981 Source advisory: SNYK:PYTHON-APACHEAIRFLOW-570291...

9.8CVSS7.2AI score0.3398EPSS
Exploits1
Cvelist
Cvelist
added 2020/01/09 3:45 p.m.18 views

CVE-2019-11981

...

Exploits1
CVE
CVE
added 2020/01/09 3:45 p.m.48 views

CVE-2019-11981

CVE-2019-11981 is a duplicate of CVE-2019-11984. The connected records describe a SQL injection code execution vulnerability in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. Affected product: HPE IMC PLAT; root cause: improper handling of SQL queries in updateEma...

8.7AI score
Exploits1
Rows per page
Query Builder