Lucene search
+L

162 matches found

cve
cve
added 2026/04/18 1:26 a.m.11 views

CVE-2026-1838

Affected software: Hostel plugin for WordPress (versions up to 1.1.6). Vulnerability: Reflected Cross-Site Scripting via the 'shortcode_id' parameter due to insufficient input sanitization and output escaping. Impact (as stated): Unauthenticated attackers can inject arbitrary web scripts into pag...

6.1CVSS5.9AI score0.00318EPSS
Exploits0References9
osv
osv
added 2026/03/18 1:7 p.m.4 views

MAL-2026-1838 Malicious code in react-router-on-navigation (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51cdeb16aaf568ca4d20ada611c1d6ac957f95f244c9f86b0bfcc64bf76253d4 The package react-router-on-navigation was found to contain malicious code...

5.8AI score
Exploits0
euvd
euvd
added 2026/01/09 2:54 a.m.4 views

EUVD-2026-1838

Malicious code in amdocs-core npm...

6.6AI score
Exploits0References1
redhatcve
redhatcve
added 2026/01/07 9:18 a.m.14 views

CVE-2025-1838

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

6.5CVSS6.5AI score0.00321EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2016-1838

Malware in sbrugna...

6.5CVSS6.6AI score0.01095EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/22 7:4 p.m.9 views

CVE-2021-1838

This issue was addressed with improved checks. This issue is fixed in iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution...

7.8CVSS6.7AI score0.0107EPSS
Exploits0References1
circl
circl
added 2025/05/03 7:17 p.m.23 views

CVE-2025-1838

creationtimestamp| type| source ---|---|--- 2025-05-03 19:17:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14705 2025-05-03 19:40:38+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lobytw7omcf2 2025-05-03 22:03:38+00:00| seen|...

6.5CVSS5.7AI score0.00321EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/05/03 6:23 p.m.10 views

CVE-2025-1838 IBM Cloud Pak for Business Automation denial of service

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

6.5CVSS6.5AI score0.00321EPSS
Exploits0References1
cve
cve
added 2025/05/03 6:23 p.m.67 views

CVE-2025-1838

CVE-2025-1838 affects IBM Cloud Pak for Business Automation (IBM Business Automation Workflow) 24.0.0 and 24.0.1 through 24.0.1 IF001. The vulnerability stems from an authenticated user bypassing client-side data validation in the authoring UI, which could lead to a denial of service. Red Hat/IBM...

6.5CVSS6.3AI score0.00321EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/05/03 6:23 p.m.33 views

CVE-2025-1838 IBM Cloud Pak for Business Automation denial of service

IBM Cloud Pak for Business Automation 24.0.0 and 24.0.1 through 24.0.1 IF001 Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which could cause a denial of service...

6.5CVSS0.00321EPSS
Exploits0References1
ibm
ibm
added 2025/05/03 6:2 a.m.11 views

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2025-1838

Summary IBM Business Automation Workflow Center is vulnerable to a denial of service attack. Vulnerability Details CVEID:CVE-2025-1838 DESCRIPTION: IBM Business Automation Workflow Authoring allows an authenticated user to bypass client-side data validation in an authoring user interface which...

6.5CVSS9.2AI score0.00321EPSS
Exploits0Affected Software2
nessus
nessus
added 2025/03/05 12:0 a.m.19 views

Linux Distros Unpatched Vulnerability : CVE-2023-1838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in vhostnetsetbackend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw...

7.1CVSS6.6AI score0.00251EPSS
Exploits0References3
nessus
nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2016-1838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS...

5.5CVSS7AI score0.06943EPSS
Exploits2References2
openvas
openvas
added 2025/02/25 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2024:1838-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS6.6AI score0.01279EPSS
Exploits0References6
nessus
nessus
added 2024/05/11 12:0 a.m.19 views

RHEL 5 : libxml2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 - libxml2: Missing validation...

9.7AI score0.1398EPSS
Exploits19References32
openvas
openvas
added 2024/04/22 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-6740-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01377EPSS
Exploits4References2
nessus
nessus
added 2024/02/22 12:0 a.m.91 views

AlmaLinux 8 : kernel (ALSA-2024:0897)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0897 advisory. - A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function areacacheget of the file...

7.8CVSS6.4AI score0.01549EPSS
Exploits3References20
nessus
nessus
added 2024/02/20 12:0 a.m.54 views

RHEL 8 : kernel (RHSA-2024:0897)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0897 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/sched: schhfsc UAF...

7.8CVSS7AI score0.01549EPSS
Exploits3References40
osv
osv
added 2023/12/07 3:23 p.m.8 views

CLSA-2023-1701962635 kernel: Fix of 18 CVEs

net/tls: do not free tlsrec on async operation in bpfexectxverdict CVE-2023-6176 - wifi: mac80211: fix MBSSID parsing use-after-free CVE-2022-42719 - mac80211: always allocate struct ieee80211elems CVE-2022-42719 - x86/sev: Check for user-space IOIO pointing to kernel space CVE-2023-46813 -...

8.8CVSS7.1AI score0.09141EPSS
Exploits7References1
nessus
nessus
added 2023/10/06 12:0 a.m.48 views

Amazon Linux AMI : kernel (ALAS-2023-1838)

The version of kernel installed on the remote host is prior to 4.14.326-171.539. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1838 advisory. 2024-03-13: CVE-2023-4244 was added to this advisory. 2023-10-25: CVE-2023-45871 was added to this advisory...

7.8CVSS6.8AI score0.00549EPSS
Exploits4References26
Rows per page
Query Builder