Lucene search
+L

1264 matches found

CNNVD
CNNVD
added 2025/12/29 12:0 a.m.6 views

Meshtastic 安全漏洞

Meshtastic is a decentralized wireless off-grid mesh network LoRa protocol open-sourced by Meshtastic. A security vulnerability exists in Meshtastic versions 2.5 up to and including 2.7.15, which stems from a degradation attack path in the absence of PKI cryptographic flags, and could lead to an...

5.3CVSS5.7AI score0.00191EPSS
Exploits1References2
OSV
OSV
added 2025/12/11 10:6 a.m.16 views

RHSA-2025:23069 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update

Bulletin has no description...

8.3CVSS6.9AI score0.19396EPSS
Exploits11References38
Patchstack
Patchstack
added 2025/12/09 7:28 a.m.10 views

WordPress Trust.Reviews plugin <= 2.5 - Unauthenticated Stored Cross-Site Scripting via Social Media Reviews vulnerability

Unauthenticated Stored Cross-Site Scripting via Social Media Reviews vulnerability discovered by Kishan Vyas in WordPress Plugin Trust.Reviews versions = 2.5...

7.2CVSS5.5AI score0.00327EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

WordPress plugin Social Reviews Recommendations 跨站脚本漏洞

...

7.2CVSS5.8AI score0.00327EPSS
Exploits0References6
OSV
OSV
added 2025/11/21 10:16 p.m.6 views

CVE-2025-43374

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds rea...

4.3CVSS5.4AI score0.00175EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.4 views

WordPress plugin SKT Skill Bar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

6.5CVSS5.9AI score0.00134EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 9:15 p.m.10 views

PYSEC-2025-210

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS...

3.3CVSS5.8AI score0.00121EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.6 views

PT-2025-46720

Name of the Vulnerable Software and Affected Versions PyTorch versions 2.5 and 2.7.1 Description An issue exists where omitting profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, potentially leading to a Denial of Service DoS. Recommendations Ensure...

3.3CVSS6.7AI score0.00121EPSS
Exploits1References6
OSV
OSV
added 2025/11/12 12:0 a.m.6 views

CVE-2025-63396

An issue was discovered in PyTorch v2.5 and v2.7.1. Omission of profiler.stop can cause torch.profiler.profile PythonTracer to crash or hang during finalization, leading to a Denial of Service DoS...

3.3CVSS6.8AI score0.00121EPSS
Exploits1References5
NVD
NVD
added 2025/11/06 4:16 p.m.18 views

CVE-2025-62067

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Savory savory.This issue affects Savory: from n/a through = 2.5...

8.1CVSS0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/06 3:55 p.m.14 views

CVE-2025-62067 WordPress Savory theme <= 2.5 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Savory savory.This issue affects Savory: from n/a through = 2.5...

8.1CVSS0.00392EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

WordPress plugin Savory 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.1CVSS6.6AI score0.00392EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/06 12:0 a.m.8 views

PT-2025-45322

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes Savory savory.This issue affects Savory: from n/a through = 2.5...

8.1CVSS7.1AI score0.00392EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7840-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.02064EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/10/27 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2025:3776-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00539EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/22 3:31 p.m.4 views

EUVD-2025-35505

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anandaraj Balu Fade Slider fade-slider allows Reflected XSS.This issue affects Fade Slider: from n/a through = 2.5...

5.9AI score0.00228EPSS
Exploits0References2
NVD
NVD
added 2025/10/22 3:15 p.m.5 views

CVE-2025-52770

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in appscreo Hello Followers hellofollowers allows Reflected XSS.This issue affects Hello Followers: from n/a through = 2.5...

7.1CVSS0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.5 views

CVE-2025-49955

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Rajan Vijayan WP Smart Flexslider wp-smart-flexslider allows Reflected XSS.This issue affects WP Smart Flexslider: from n/a through = 2.5...

7.1CVSS0.00228EPSS
Exploits0References1
NVD
NVD
added 2025/10/22 3:15 p.m.5 views

CVE-2025-49956

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anandaraj Balu Fade Slider fade-slider allows Reflected XSS.This issue affects Fade Slider: from n/a through = 2.5...

7.1CVSS0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/22 2:32 p.m.3 views

CVE-2025-52770 WordPress Hello Followers plugin <= 2.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in appscreo Hello Followers hellofollowers allows Reflected XSS.This issue affects Hello Followers: from n/a through = 2.5...

7.1CVSS6AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder