Lucene search
K

85 matches found

EUVD
EUVD
added 2026/01/07 8:21 a.m.7 views

EUVD-2026-1275

The Page Keys plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘pagekey’ parameter in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, ...

4.4CVSS4.5AI score0.00189EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-1275

Malware in sbrugna...

10CVSS6.1AI score0.03513EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 11:30 p.m.7 views

CVE-2022-1275

The BannerMan WordPress plugin through 0.2.4 does not sanitize or escape its settings, which could allow high-privileged users to perform Cross-Site Scripting attacks when the unfilteredhtml is disallowed such as in multisite...

4.8CVSS6AI score0.00565EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:14 p.m.15 views

CVE-2020-1275

An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0986, CVE-2020-1237, CVE-2020-1246, CVE-2020-1262, CVE-2020-1264, CVE-2020-1266,...

9.3CVSS7.7AI score0.15932EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 9:19 p.m.7 views

CVE-2003-1275

Pocket Internet Explorer PIE 3.0 allows remote attackers to cause a denial of service crash via a Javascript function that uses the object.innerHTML function to recursively call that function...

5CVSS6.9AI score0.16698EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/17 9:4 p.m.24 views

CVE-2025-1275

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.5AI score0.0031EPSS
Exploits0References1
Circl
Circl
added 2025/04/16 2:56 p.m.7 views

CVE-2025-1275

creationtimestamp| type| source ---|---|--- 2025-04-16 14:56:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12068...

7.8CVSS4.8AI score0.0031EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 8:54 p.m.74 views

CVE-2025-1275

The CVE-2025-1275 entry concerns a heap-based overflow in JPG parsing when linked or imported into Autodesk applications. The vulnerability affects Autodesk products using JPG handling in affected workflows (e.g., AutoCAD/Revit-related components) and can allow a malicious actor to crash the appl...

7.8CVSS7.8AI score0.0031EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/15 8:54 p.m.11 views

CVE-2025-1275 JPG File Parsing Heap-Based Overflow Vulnerability

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.9AI score0.0031EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/15 8:54 p.m.22 views

CVE-2025-1275 JPG File Parsing Heap-Based Overflow Vulnerability

A maliciously crafted JPG file, when linked or imported into certain Autodesk applications, can force a Heap-Based Overflow vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS0.0031EPSS
Exploits0References3
Circl
Circl
added 2025/02/27 1:26 a.m.5 views

RHSA-2025:1275

creationtimestamp| type| source ---|---|--- 2025-02-27 01:26:02+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5635 2025-04-16 18:56:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12130...

5.3AI score
Exploits0References2
Circl
Circl
added 2025/01/16 8:55 p.m.7 views

CVE-2013-1275

creationtimestamp| type| source ---|---|--- 2025-01-16 20:55:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2035...

7CVSS4.8AI score0.01047EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/31 5:23 p.m.11 views

CVE-2024-1275 Vulnerability in Baxter Welch Allyn Connex Spot Monitor

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

9.1CVSS6.9AI score0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/31 5:23 p.m.26 views

CVE-2024-1275 Vulnerability in Baxter Welch Allyn Connex Spot Monitor

Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch Allyn Connex Spot Monitor in all versions prior to 1.52...

9.1CVSS6.6AI score0.00392EPSS
Exploits0References1
ICS
ICS
added 2024/05/30 6:0 a.m.35 views

Baxter Welch Allyn Connex Spot Monitor

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.1 ATTENTION : Exploitable remotely Vendor : Baxter Equipment : Welch Allyn Connex Spot Monitor CSM Vulnerability : Use of Default Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to modify device...

9.1CVSS6.6AI score0.00392EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.28 views

RHEL 8 : Red Hat OpenStack Platform (etcd) (RHSA-2023:1275)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:1275 advisory. etcd is a highly-available key value store for shared configuration. The following Important impact security fixes are applicable to Red Hat...

7.5CVSS7.4AI score0.05623EPSS
Exploits5References26
Circl
Circl
added 2023/03/08 8:23 p.m.10 views

CVE-2023-1275

creationtimestamp| type| source ---|---|--- 2023-03-08 20:23:20+00:00| seen| https://t.me/cibsecurity/59681...

6.1CVSS4.7AI score0.00557EPSS
Exploits1References1
CVE
CVE
added 2023/03/08 5:57 p.m.49 views

CVE-2023-1275

CVE-2023-1275 affects SourceCodester Phone Shop Sales Managements System 1.0, specifically the CAPTCHA Handler component. The vulnerability targets the file /osms/assets/plugins/jquery-validation-1.11.1/demo/captcha/index.php and enables cross-site scripting via manipulated input, with remote ini...

6.1CVSS4.9AI score0.00557EPSS
Exploits1References3Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.299 views

K29042031: Multiple Spring Framework vulnerabilities

Security Advisory Description On April 5th, 2018, three new vulnerabilities were published in the popular Java web framework called Spring. Details on these vulnerabilities and exploit code are not yet available, and mitigation details may change if and when the exploit code is available. You can...

9.8CVSS8.8AI score0.95649EPSS
Exploits15
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.4 views

SUSE CVE-2009-1275

Apache Tiles 2.1 before 2.1.2, as used in Apache Struts and other products, evaluates Expression Language EL expressions twice in certain circumstances, which allows remote attackers to conduct cross-site scripting XSS attacks or obtain sensitive information via unspecified vectors, related to th...

6.8CVSS6.1AI score0.02811EPSS
Exploits0References3
Rows per page
Query Builder