Lucene search
K

26 matches found

Circl
Circl
added 2 days ago6 views

CVE-2026-14635

creationtimestamp| type| source ---|---|--- 2026-07-04 20:11:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptun7l5z32o...

7.5CVSS5.9AI score0.00437EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago26 views

CVE-2026-14635 kirilkirkov Ecommerce-CodeIgniter-Bootstrap Vendor Multi-Image Endpoint AddProduct.php path traversal

A security flaw has been discovered in kirilkirkov Ecommerce-CodeIgniter-Bootstrap up to 222ff31c06687b1c6d0e1ab63953f82c3674c52b. This issue affects some unknown processing of the file application/modules/vendor/controllers/AddProduct.php of the component Vendor Multi-Image Endpoint. Performing ...

7.5CVSS0.00437EPSS
Exploits0References7
Circl
Circl
added 2025/12/23 1:8 p.m.5 views

CVE-2025-14635

creationtimestamp| type| source ---|---|--- 2025-12-23 13:08:55+00:00| seen| https://gist.github.com/Darkcrai86/71c204b3b0ba778f7ea8936118f302ad 2025-12-23 13:34:00+00:00| seen| https://gist.github.com/Darkcrai86/4bc120072132e5d041512b321f39204b...

6.4CVSS5.8AI score0.00256EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/12/22 11:59 p.m.6 views

WordPress Happy Addons for Elementor plugin <= 3.20.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom JS vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Custom JS vulnerability discovered by zer0gh0st in WordPress Plugin Happy Addons for Elementor versions = 3.20.3...

6.4CVSS5.5AI score0.00256EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Open Ticket Request System OTRS 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write...

8.8CVSS7.9AI score0.01922EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.8 views

RHEL 7 : openstack-neutron (RHSA-2018:2715)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2715 advisory. OpenStack Networking neutron is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main functi...

6.5CVSS6.4AI score0.02527EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.26 views

RHEL 7 : openstack-neutron (RHSA-2018:3792)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3792 advisory. OpenStack Networking neutron is a pluggable, scalable, and API-driven system that provisions networking services to virtual machines. Its main functi...

6.5CVSS6.5AI score0.02527EPSS
Exploits0References7
Circl
Circl
added 2024/04/12 11:4 a.m.7 views

CVE-2018-14635

creationtimestamp| type| source ---|---|--- 2024-04-12 11:04:21+00:00| seen| https://t.me/arpsyndicate/4598...

6.5CVSS6.1AI score0.02527EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:39 a.m.5 views

SUSE CVE-2017-14635

In Open Ticket Request System OTRS 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write permissions to gain privileges via code injection...

8.8CVSS7.7AI score0.01922EPSS
Exploits0References3
CVE
CVE
added 2020/07/15 5:34 p.m.52 views

CVE-2020-14635

CVE-2020-14635 affects Oracle E-Business Suite Application Object Library (AOL), Logging component. Affects 12.2.5–12.2.9; an unauthenticated, network-accessible attacker over HTTP can read a subset of AOL data due to the underlying issue described in the CVE. Multiple sources (NVD, RH Red Hat, C...

5.3CVSS4.7AI score0.01205EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2018/09/17 4:47 p.m.62 views

Moderate: Red Hat Security Advisory: openstack-neutron security update

An update for openstack-neutron is now available for Red Hat OpenStack Platform 13.0 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.02527EPSS
Exploits0References2
OSV
OSV
added 2018/09/10 7:29 p.m.4 views

DEBIAN-CVE-2018-14635

When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...

6.5CVSS6.6AI score0.02527EPSS
Exploits0References1
CVE
CVE
added 2018/09/10 7:0 p.m.96 views

CVE-2018-14635

The CVE-2018-14635 vulnerability affects OpenStack Neutron’s ml2 Linux Bridge driver. The issue allows non-privileged tenants to create and attach ports without assigning an IP address, bypassing IP address validation. This can lead to a potential denial of service if an IP outside the allowed al...

6.5CVSS6.1AI score0.02527EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2018/09/10 7:0 p.m.46 views

CVE-2018-14635

When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...

6.5CVSS6.2AI score0.02527EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.37 views

Debian: Security Advisory (DLA-1119-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.04913EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2017/12/11 12:0 a.m.227 views

OTRS Unspecified Remote Code Execution (OSA-2017-04)

The version of OTRS running on the remote host is 3.3.x prior to 3.3.18, 4.0.x prior to 4.0.25, 5.0.x prior to 5.0.23 or 6.0.x prior to 6.0.beta2. It is, therefore, affected by a remote code execution vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description...

8.8CVSS8.6AI score0.01922EPSS
Exploits0References2
Debian
Debian
added 2017/11/07 8:52 p.m.25 views

[SECURITY] [DSA 4021-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4021-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 07, 2017 https://www.debian.org/security/faq -...

8.8CVSS8.8AI score0.01922EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/10/03 12:0 a.m.31 views

openSUSE Security Update : otrs (openSUSE-2017-1117)

This update for otrs to version 3.3.18 fixes the following issue : This security issue was fixed : - CVE-2017-14635: Remote authenticated users could have leveraged statistics-write permissions to gain privileges via code injection bsc1059691. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

8.8CVSS8AI score0.01922EPSS
Exploits0References2
Debian
Debian
added 2017/09/30 7:35 p.m.29 views

[SECURITY] [DLA 1119-1] otrs2 security update

Package : otrs2 Version : 3.3.18-1deb7u1 CVE ID : CVE-2014-1695 CVE-2014-2553 CVE-2014-2554 CVE-2017-14635 Debian Bug : 876462 An attacker who is logged into OTRS, a Ticket Request System, as an agent with write permissions for statistics can inject arbitrary code into the system. This can lead t...

8.8CVSS8.7AI score0.04913EPSS
Exploits7
OpenVAS
OpenVAS
added 2017/09/22 12:0 a.m.210 views

OTRS < 3.3.18, 4.x < 4.0.25, 5.x < 5.0.23 Privilege Escalation Vulnerability

OTRS is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if description...

8.8CVSS8.8AI score0.01922EPSS
Exploits0References1
Rows per page
Query Builder