Lucene search
K

105 matches found

Packet Storm
Packet Storm
added 2026/04/13 12:0 a.m.76 views

📄 Omega-PSIR Cross Site Scripting

Omega-PSIR suffers from a cross site scripting vulnerability via the lang parameter. CVE-2026-1434: Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a... Overview | Field | Details | |---|---| | CVE ID | CVE-2026-1434 | | Severity | MEDIUM | | Advisory | N/A...

6.1CVSS5.2AI score0.00158EPSS
Exploits2
Circl
Circl
added 2026/02/26 11:55 a.m.7 views

CVE-2026-1434

creationtimestamp| type| source ---|---|--- 2026-02-26 11:55:00+00:00| seen| https://cert.pl/en/posts/2026/02/CVE-2026-1434/ 2026-02-27 14:03:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mftuto5fxl2o 2026-04-12 03:00:07+00:00| published-proof-of-concept|...

6.1CVSS4.8AI score0.00158EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:47 p.m.8 views

CVE-2005-1434

Multiple unknown vulnerabilities in OpenView Network Node Manager OV NNM 6.2, 6.4, 7.01, and 7.50 allow attackers to cause a denial of service or execute arbitrary code...

7.5CVSS7.8AI score0.03954EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/08 12:0 a.m.4 views

EUVD-2026-1434

An issue was discovered in D-Link Router DIR-605L Hardware version F1; Firmware version: V6.02CN02 allowing an attacker with physical access to the UART pins to execute arbitrary commands due to presence of root terminal access on a serial interface without proper access control...

6.8CVSS7AI score0.00373EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-1337

Malware in sbrugna...

6CVSS6.1AI score0.00786EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-1434

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.01756EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 9:39 a.m.7 views

CVE-2024-1434

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jordy Meow Media Alt Renamer allows Stored XSS.This issue affects Media Alt Renamer: from n/a through 0.0.1...

5.9CVSS6.9AI score0.00336EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:5 a.m.7 views

CVE-2019-13929

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

6.5CVSS6.9AI score0.01273EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 a.m.4 views

CVE-2019-1434

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1393, CVE-2019-1394, CVE-2019-1395, CVE-2019-1396, CVE-2019-1408...

7.8CVSS6.6AI score0.01327EPSS
Exploits0References1
NVD
NVD
added 2025/03/11 8:15 a.m.11 views

CVE-2025-1434

The Spreadsheet view is vulnerable to a XSS attack, where a remote unauthorised attacker can read a limited amount of values or DoS the affected spreadsheet. Disclosure of secrets or other system settings is not affected as well as other spreadsheets still work as expected...

6.1CVSS0.0025EPSS
Exploits0References2
CVE
CVE
added 2025/03/11 7:23 a.m.69 views

CVE-2025-1434

CVE-2025-1434 describes an XSS vulnerability in the Spreadsheet view of Areal Topkapi Vision Webserv2. The weakness allows a remote, unauthenticated attacker to read a limited amount of values or perform a denial-of-service (DoS) on the affected spreadsheet. Disclosure of secrets or other system ...

6.1CVSS6.2AI score0.0025EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/11 7:23 a.m.14 views

CVE-2025-1434 XSS in AREAL SAS Topkapi Vision Webserv2

The Spreadsheet view is vulnerable to a XSS attack, where a remote unauthorised attacker can read a limited amount of values or DoS the affected spreadsheet. Disclosure of secrets or other system settings is not affected as well as other spreadsheets still work as expected...

6.1CVSS0.0025EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/25 12:0 a.m.5 views

Siemens SIMATIC Devices Linux Kernel Use of a Broken or Risky Cryptographic Algorithm (CVE-2022-1434)

When using the RC4-MD5 ciphersuite, which is disabled by default, an attacker is able to modify data in transit due to an incorrect use of the AAD data as the MAC key in OpenSSL 3.0. An attacker is not able to decrypt any communication. This plugin only works with Tenable.ot. Please visit...

5.9CVSS6.6AI score0.01026EPSS
Exploits0References6
Circl
Circl
added 2025/02/05 12:0 a.m.47 views

CVE-2023-1434

creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2025-03-21 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-03-21 2025-04-07 00:00:00+00:00| exploited| The Shadowserver...

5.8AI score
In wildExploits0References1
Oracle linux
Oracle linux
added 2024/11/22 12:0 a.m.49 views

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

7.5CVSS7.4AI score0.95764EPSS
Exploits28
Circl
Circl
added 2024/03/25 11:49 a.m.3 views

CVE-2011-1434

creationtimestamp| type| source ---|---|--- 2024-03-25 11:49:23+00:00| seen| https://t.me/ETHICALHACKERSCOMMUNITY2/3889 2024-03-25 14:38:09+00:00| seen| https://t.me/tengkorakcybercrewz/810 2024-03-25 14:38:09+00:00| seen| Telegram/HKj6TR4hMohrGsEUcNFDijNGdim3MCZhggfzha3EYtXw 2024-03-25...

6.8CVSS8.6AI score0.01352EPSS
Exploits1References3
NVD
NVD
added 2024/02/29 6:15 a.m.15 views

CVE-2024-1434

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jordy Meow Media Alt Renamer allows Stored XSS.This issue affects Media Alt Renamer: from n/a through 0.0.1...

5.9CVSS5.7AI score0.00336EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/29 5:9 a.m.19 views

CVE-2024-1434 WordPress Media Alt Renamer Plugin 0.0.1 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Jordy Meow Media Alt Renamer allows Stored XSS.This issue affects Media Alt Renamer: from n/a through 0.0.1...

5.9CVSS5.9AI score0.00336EPSS
Exploits0References1
CVE
CVE
added 2024/02/29 5:9 a.m.91 views

CVE-2024-1434

CVE-2024-1434 affects the WordPress plugin Media Alt Renamer, with a stored XSS in _wp_attachment_image_alt postmeta that impacts version 0.0.1 (and earlier unspecified in the initial entry). Public details in connected documents confirm the vulnerability type (Stored XSS) and the affected softwa...

5.9CVSS6.9AI score0.00336EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/02/26 12:0 a.m.11 views

WordPress Media Alt Renamer Plugin 0.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Media Alt Renamer Type Plugin Vulnerable versions 0.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-1434 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 238d9530b18d Credits Joshua Chan Required privilege Author...

5.9CVSS6.5AI score0.00336EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder