Lucene search
K

6028 matches found

Cvelist
Cvelist
added 2 days ago36 views

CVE-2026-15518 AREA 17 Twill CMS Media Library Insert FileLibraryController.php storeFile unrestricted upload

A vulnerability has been found in AREA 17 Twill CMS up to 3.6.0. The impacted element is the function FileLibraryController::storeFile of the file src/Http/Controllers/Admin/FileLibraryController.php of the component Media Library Insert Page. Such manipulation of the argument qqfilename leads to...

5.8CVSS0.00248EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago9 views

EUVD-2026-43260

A vulnerability has been found in AREA 17 Twill CMS up to 3.6.0. The impacted element is the function FileLibraryController::storeFile of the file src/Http/Controllers/Admin/FileLibraryController.php of the component Media Library Insert Page. Such manipulation of the argument qqfilename leads to...

5.8CVSS5.7AI score0.00248EPSS
Exploits0References5
Circl
Circl
added 3 days ago9 views

CVE-2026-56281

creationtimestamp| type| source ---|---|--- 2026-07-12 17:21:01+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mqhotdnxkt22...

5.1CVSS6.1AI score0.00197EPSS
Exploits0References1
Circl
Circl
added last week7 views

CVE-2026-54652

creationtimestamp| type| source ---|---|--- 2026-07-08 17:35:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq5nqwlaj32q...

8.1CVSS5.9AI score0.00231EPSS
Exploits0References1
Circl
Circl
added last week7 views

CVE-2026-42505

creationtimestamp| type| source ---|---|--- 2026-07-08 17:20:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mq5mx4lmyo2y 2026-07-09 12:00:57+00:00| seen| https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mq7lkaehpi2d 2026-07-12 12:00:56+00:00| seen|...

5.3CVSS6.1AI score0.00413EPSS
Exploits0References3
Circl
Circl
added 2026/07/03 5:0 p.m.14 views

CVE-2026-14460

creationtimestamp| type| source ---|---|--- 2026-07-03 17:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpqzirh54m26 2026-07-03 18:20:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpr5xznc7d2h 2026-07-04 09:07:53+00:00| seen|...

8.8CVSS5.9AI score0.00163EPSS
Exploits1References3
Circl
Circl
added 2026/07/03 5:0 p.m.12 views

CVE-2026-14459

creationtimestamp| type| source ---|---|--- 2026-07-03 17:00:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpqzikd6a22k 2026-07-03 18:30:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpr6jwkk742z 2026-07-04 08:56:07+00:00| seen|...

8.8CVSS6.1AI score0.00198EPSS
Exploits1References4
NVD
NVD
added 2026/07/03 9:16 a.m.11 views

CVE-2026-47896

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Lucene.Net Lucene.Net.Replicator library. This issue affects Apache Lucene.Net.Replicator: from 4.8.0-beta00005 through 4.8.0-beta00017. Users are recommended to upgrade to version 4.8.0-beta00018...

8.9CVSS0.00703EPSS
Exploits0References2
CVE
CVE
added 2026/07/03 7:47 a.m.18 views

CVE-2026-47898

This CVE affects Lucene.Net.Analysis.Common (PatternParser) in Lucene.Net.Analysis.Common: vulnerable in versions prior to 4.8.0-beta00018. The connected Snyk entry confirms an XML External Entity (XXE) injection vulnerability, where crafted XML could trigger external entity resolution, enabling ...

9.8CVSS5.9AI score0.00328EPSS
Exploits0References2Affected Software1
Circl
Circl
added 2026/07/01 9:17 p.m.9 views

CVE-2026-13999

creationtimestamp| type| source ---|---|--- 2026-07-01 21:17:41+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmgwfxuab26 2026-07-02 07:48:50+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702 2026-07-06 07:21:14+00:00| seen|...

4.3CVSS5.9AI score0.00176EPSS
Exploits0References3
Circl
Circl
added 2026/07/01 4:17 p.m.10 views

CVE-2026-58038

creationtimestamp| type| source ---|---|--- 2026-07-01 16:17:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mplw6dlatg2v 2026-07-02 02:47:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmzdnjc5n2q 2026-07-02 06:47:04+00:00| seen|...

6.1CVSS5.8AI score0.00169EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/30 7:44 p.m.7 views

EUVD-2026-40395

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the apiDiscovery-1.0 feature enabled...

8.5CVSS5.8AI score0.00203EPSS
Exploits0References1
Circl
Circl
added 2026/06/29 5:51 p.m.9 views

CVE-2026-13590

creationtimestamp| type| source ---|---|--- 2026-06-29 17:51:54+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mph2ilx2mu2d 2026-06-29 19:56:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mphbh5w62h2x 2026-06-29 20:42:39+00:00| seen|...

6.3CVSS6.2AI score0.00394EPSS
Exploits0References3
Circl
Circl
added 2026/06/28 5:51 p.m.10 views

CVE-2026-13499

creationtimestamp| type| source ---|---|--- 2026-06-28 17:51:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpejya3pqk2s 2026-06-29 19:44:00+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mphar23kwl2b...

5.3CVSS5.8AI score0.00278EPSS
Exploits0References2
Circl
Circl
added 2026/06/25 11:2 p.m.7 views

CVE-2026-55413

creationtimestamp| type| source ---|---|--- 2026-06-25 23:02:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp5jxw3m5w2r...

9.4CVSS5.8AI score0.00256EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.12 views

PT-2026-51831

Name of the Vulnerable Software and Affected Versions Frappe Framework version 17.0.0-dev Description A Stored Cross-Site Scripting XSS issue occurs due to improper neutralization of user-controlled input within the MultiSelectDialog component. Stored XSS is a type of vulnerability where a...

4.8CVSS6AI score0.00239EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.13 views

PT-2026-51829

Name of the Vulnerable Software and Affected Versions Frappe Framework version 17.0.0-dev Description A Stored Cross-Site Scripting XSS issue occurs due to improper neutralization of user-controlled input within the File View breadcrumb renderer. Stored XSS is a type of vulnerability where a...

4.6CVSS6AI score0.00256EPSS
Exploits0References6
Circl
Circl
added 2026/06/21 5:20 p.m.9 views

CVE-2026-56395

creationtimestamp| type| source ---|---|--- 2026-06-21 17:20:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mosuvtxh662t 2026-06-22 00:46:37+00:00| seen| https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnwsotj62v...

9.6CVSS5.8AI score0.00391EPSS
Exploits0References2
Circl
Circl
added 2026/06/18 5:59 p.m.9 views

CVE-2026-56020

creationtimestamp| type| source ---|---|--- 2026-06-18 17:59:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3molfrsjyox23...

9.2CVSS4.9AI score0.00285EPSS
Exploits0References1
Circl
Circl
added 2026/06/18 2:9 p.m.11 views

CVE-2026-54193

creationtimestamp| type| source ---|---|--- 2026-06-18 14:09:17+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mokywfkbzb2n...

7.7CVSS5AI score0.00337EPSS
Exploits0References1
Rows per page
Query Builder