Lucene search
+L

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-35628

Malicious code in bioql PyPI...

4.9CVSS7AI score0.00773EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/26 12:0 a.m.4 views

Oracle Linux 7 : aide (ELSA-2025-15728)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-15728 advisory. 0.15.1-13.0.3 - aide security update CVE-2025-54389 Orabug: 38427919 Tenable has extracted the preceding description block directly from the Oracle Linux...

6.2CVSS7.5AI score0.00225EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:21 a.m.8 views

CVE-2019-15728

An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server...

7.5CVSS6.3AI score0.01531EPSS
Exploits0References1
Prion
Prion
added 2023/01/26 6:59 p.m.24 views

Stack overflow

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...

5.8CVSS8.9AI score0.00623EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2023/01/26 12:0 a.m.81 views

CVE-2022-40718

CVE-2022-40718 concerns D-Link DIR-2150 (firmware 4.0.1). The flaw is a stack-based buffer overflow in the anweb service (listening on TCP ports 80/443) caused by improper validation of user-supplied data length, allowing network-adjacent attackers to execute code with root privileges. Multiple s...

8.8CVSS8.9AI score0.00623EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/01/26 12:0 a.m.40 views

CVE-2022-40718

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 4.0.1 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue...

8.8CVSS9.1AI score0.00623EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/03/17 12:26 p.m.16 views

CVE-2020-15728

...

Exploits0
CVE
CVE
added 2021/03/17 12:26 p.m.32 views

CVE-2020-15728

CVE-2020-15728 is rejected/not used per the Initial Description.

6.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2019/09/16 5:15 p.m.18 views

CVE-2019-15728

An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server...

7.5CVSS7.1AI score0.01531EPSS
Exploits0References2
CVE
CVE
added 2019/09/16 4:54 p.m.112 views

CVE-2019-15728

CVE-2019-15728 affects GitLab Community and Enterprise Edition 10.1–12.2.1. The root issue is insufficient SSRF protections in the Kubernetes integration, enabling an attacker to request local network resources reachable from the GitLab server. Impact and exploitation details are as described; re...

7.5CVSS7.1AI score0.01531EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/08/24 7:0 p.m.74 views

CVE-2018-15728

CVE-2018-15728 affects Couchbase Server where the REST/diag/eval endpoint (on TCP 8091 and/or 18091) could be accessed by authenticated Full Admin users to submit arbitrary Erlang code, which would execute on the underlying OS with the attacker's privileges. Affected versions include 4.0.0, 4.1.2...

9CVSS5.9AI score0.02918EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2018/08/24 7:0 p.m.28 views

CVE-2018-15728

Couchbase Server exposed the '/diag/eval' endpoint which by default is available on TCP/8091 and/or TCP/18091. Authenticated users that have 'Full Admin' role assigned could send arbitrary Erlang code to the 'diag/eval' endpoint of the API and the code would subsequently be executed in the...

6.3AI score0.02918EPSS
Exploits3References3
CVE
CVE
added 2017/10/21 10:0 p.m.53 views

CVE-2017-15728

CVE-2017-15728 affects phpMyFAQ prior to 2.9.9, exposing a Stored Cross-site Scripting (XSS) vulnerability through metaDescription or metaKeywords fields. Public sources (NVD entry and Red Hat advisory) describe the flaw as an XSS issue in phpMyFAQ versions before 2.9.9. The OpenVAS entry and CNV...

4.8CVSS5.2AI score0.00615EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2010/12/12 12:0 a.m.5 views

CVE-2010-4507

creationtimestamp| type| source ---|---|--- 2010-12-12 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15728 2026-06-28 15:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpecinjyu72y...

9.3CVSS5.7AI score0.01817EPSS
Exploits6References2
Rows per page
Query Builder