Lucene search
K

513 matches found

Patchstack
Patchstack
added 2025/08/20 12:0 a.m.8 views

WordPress Kitring Theme <= 2.8 is vulnerable to Local File Inclusion

Software Kitring Type Theme Vulnerable versions = 2.8 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-49426 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 373cf39af191 Credits Bonds Required privilege Unauthenticated Published 20...

4.3CVSS7.2AI score0.00499EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-14858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argumentspec with sub parameters marked as nolog...

7.3CVSS6.6AI score0.00427EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/29 12:6 p.m.5 views

CVE-2025-31428

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BuddhaThemes HYDRO hydro allows Reflected XSS.This issue affects HYDRO: from n/a through = 2.8...

7.1CVSS5.9AI score0.00215EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/27 12:0 a.m.4 views

WordPress plugin HYDRO 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

7.1CVSS5.9AI score0.00215EPSS
Exploits0References1
OSV
OSV
added 2025/06/23 10:3 a.m.3 views

RHSA-2025:9308 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS7.4AI score0.11066EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2025/06/23 3:1 a.m.9 views

Important: Red Hat Security Advisory: gimp:2.8 security update

An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this...

8.8CVSS7.2AI score0.11066EPSS
Exploits0References4
OSV
OSV
added 2025/06/17 10:9 a.m.5 views

RHSA-2025:9165 Red Hat Security Advisory: gimp:2.8 security update

Bulletin has no description...

7.8CVSS7.4AI score0.11066EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2025/05/25 1:19 p.m.5 views

CVE-2025-32284

Deserialization of Untrusted Data vulnerability in designthemes Pet World petsworld allows Object Injection.This issue affects Pet World: from n/a through = 2.8...

8.8CVSS7.2AI score0.00473EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/25 1:19 p.m.5 views

CVE-2025-32293

Deserialization of Untrusted Data vulnerability in designthemes Finance Consultant finance allows Object Injection.This issue affects Finance Consultant: from n/a through = 2.8...

8.8CVSS7.2AI score0.00473EPSS
Exploits0References1
CVE
CVE
added 2025/05/23 12:44 p.m.35 views

CVE-2025-32284

CVE-2025-32284 affects designthemes Pet World

8.8CVSS7.2AI score0.00473EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:58 a.m.5 views

CVE-2024-54731

cpdf through 2.8 allows stack consumption via a crafted PDF document...

4CVSS6.8AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:25 a.m.7 views

CVE-2024-50809

The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the execution of system commands...

8.8CVSS7.1AI score0.007EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:38 p.m.5 views

CVE-2022-41241

Jenkins RQM Plugin 2.8 and earlier does not configure its XML parser to prevent XML external entity XXE attacks...

9.8CVSS8.9AI score0.00725EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:25 p.m.4 views

CVE-2020-11841

Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotely exploited resulting unauthorized information disclosure...

4.3CVSS4.7AI score0.00681EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.4 views

Rancher 安全漏洞

Rancher is an open source container management platform open-sourced by Rancher in the United States, built for organizations that deploy containers in production environments. A security vulnerability exists in Rancher versions 2.7.0 through 2.7.16 prior, 2.8.0 through 2.8.9 prior, and 2.9.0...

9.1CVSS8AI score0.0073EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/03 12:0 a.m.4 views

PT-2025-22639 · Opensuse · Gsl

These are all security issues fixed in the gsl-2.8-4.1 package on the GA media of openSUSE Tumbleweed...

6.8AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.45 views

Amazon Linux 2 : freetype (ALAS-2025-2806)

The version of freetype installed on the remote host is prior to 2.8-14. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2806 advisory. FreeType 2.8.1 has a signed integer overflow in cf2doFlex in cff/cf2intrp.c. CVE-2025-23022 An out of bounds write exists ...

8.1CVSS7.2AI score0.26049EPSS
Exploits2References6
Positive Technologies
Positive Technologies
added 2025/03/31 12:0 a.m.5 views

PT-2025-14372 · Rancher · Rancher

Name of the Vulnerable Software and Affected Versions: Rancher versions 2.8.0 through 2.8.13 Rancher versions 2.9.0 through 2.9.7 Rancher versions 2.10.0 through 2.10.3 Description: A vulnerability in SUSE Rancher allows a Restricted Administrator to change the password of Administrators and take...

9.6CVSS7.6AI score0.00872EPSS
Exploits2References26
CVE
CVE
added 2025/03/05 9:21 a.m.58 views

CVE-2025-1515

CVE-2025-1515 affects the WordPress plugin WP Real Estate Manager (versions up to and including 2.8). The root cause is insufficient identity verification in the LinkedIn login flow , enabling an unauthenticated attacker to perform an authentication bypass and log in as any user, including admini...

9.8CVSS7.5AI score0.00514EPSS
Exploits0References2
NVD
NVD
added 2025/02/07 10:15 p.m.8 views

CVE-2024-55272

An issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via the chat window function...

7.5CVSS0.00553EPSS
Exploits0References1
Rows per page
Query Builder