Lucene search
K

27 matches found

Nuclei
Nuclei
added yesterday22 views

WeiPHP 5.0 - SQL Injection

WeiPHP 5.0 contains a SQL injection vulnerability via the wpwhere function. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id: CVE-2020-20300 info: name: WeiPHP 5.0 - SQL...

9.8CVSS7.3AI score0.08752EPSS
Exploits1References5
NVD
NVD
added 2025/07/07 6:15 p.m.8 views

CVE-2025-20300

In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform versions below 9.3.2411.103, 9.3.2408.112, and 9.2.2406.119, a low-privileged user that does not hold the "admin" or "power" Splunk roles, and has read-only access to a specific alert, could suppress that...

4.3CVSS0.0025EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/07 5:47 p.m.9 views

CVE-2025-20300 Improper Access Control Lets Low-Privilege Users Suppress Read-Only Alerts in Splunk Enterprise

In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform versions below 9.3.2411.103, 9.3.2408.112, and 9.2.2406.119, a low-privileged user that does not hold the "admin" or "power" Splunk roles, and has read-only access to a specific alert, could suppress that...

4.3CVSS0.0025EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/07 5:47 p.m.3 views

CVE-2025-20300 Improper Access Control Lets Low-Privilege Users Suppress Read-Only Alerts in Splunk Enterprise

In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform versions below 9.3.2411.103, 9.3.2408.112, and 9.2.2406.119, a low-privileged user that does not hold the "admin" or "power" Splunk roles, and has read-only access to a specific alert, could suppress that...

4.3CVSS7.1AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:49 a.m.6 views

CVE-2024-20300

A vulnerability in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficient...

5.4CVSS6AI score0.0038EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:5 p.m.6 views

CVE-2020-20300

SQL injection vulnerability in the wpwhere function in WeiPHP 5.0...

9.8CVSS8AI score0.08752EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/04/30 12:0 a.m.6 views

Oracle Linux 8 : glibc (ELSA-2025-20300)

"The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20300 advisory. 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni Oracle history: March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 366256...

6.2CVSS6.6AI score0.00349EPSS
Exploits0References2
Prion
Prion
added 2023/03/14 10:15 a.m.29 views

Design/Logic Flaw

A vulnerability has been identified in Tecnomatix Plant Simulation All versions V2201.0006. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the...

4.4CVSS7.7AI score0.00217EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/12/19 12:0 a.m.43 views

Debian dla-3236 : libopenexr-dev - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3236 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3236-1 [email protected]...

7.5CVSS6.5AI score0.01848EPSS
Exploits5References46
Debian
Debian
added 2022/12/11 11:52 p.m.64 views

[SECURITY] [DLA 3236-1] openexr security update

Debian LTS Advisory DLA-3236-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 12, 2022 https://wiki.debian.org/LTS Package : openexr Version : 2.2.1-4.1+deb10u2 CVE ID : CVE-2020-16587 CVE-2020-16588 CVE-2020-16589 CVE-2021-3474 CVE-2021-3475 CVE-2021-34...

7.5CVSS6.3AI score0.01848EPSS
Exploits5
CVE
CVE
added 2022/08/11 3:21 p.m.50 views

CVE-2022-20300

CVE-2022-20300 affects Android 13, where a missing permission check in the Content component allows an attacker with local access to determine whether a given account exists on the device, causing local information disclosure. The issue requires LOW privileges and no user interaction (local attac...

5.5CVSS5.5AI score0.00089EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/03/04 8:30 p.m.5 views

CVE-2021-20300

creationtimestamp| type| source ---|---|--- 2022-03-04 20:30:09+00:00| seen| https://t.me/cibsecurity/38445...

7.1CVSS6.4AI score0.00913EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/12/02 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2021:14846-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.01508EPSS
Exploits1References8
OSV
OSV
added 2021/12/01 3:50 p.m.10 views

SUSE-SU-2021:14846-1 Security update for OpenEXR

This update for OpenEXR fixes the following issues: - CVE-2021-20298: Fixed out-of-memory in B44Compressor bsc1188460. - CVE-2021-20300: Fixed integer-overflow in Imf25:hufUncompress bsc1188458. - CVE-2021-20303: Fixed heap-buffer-overflow in Imf25::copyIntoFrameBuffe bsc1188457. - CVE-2021-20304...

7.5CVSS6.1AI score0.01508EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2021/09/03 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:2913-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01848EPSS
Exploits1References9
OSV
OSV
added 2021/09/02 7:53 a.m.6 views

SUSE-SU-2021:2913-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

7.5CVSS6.3AI score0.01848EPSS
Exploits1References14
OpenVAS
OpenVAS
added 2021/08/26 12:0 a.m.29 views

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:1198-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.01848EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/08/21 12:0 a.m.23 views

openSUSE: Security Advisory for openexr (openSUSE-SU-2021:2793-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.01848EPSS
Exploits1References2
OSV
OSV
added 2021/08/20 8:23 a.m.7 views

OPENSUSE-SU-2021:2793-1 Security update for openexr

This update for openexr fixes the following issues: - CVE-2021-20298 bsc1188460: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 bsc1188459: Fixed Null-dereference READ in Imf25:Header:operator - CVE-2021-20300 bsc1188458: Fixed Integer-overflow in Imf25:hufUncompress - CVE-2021-20302...

7.5CVSS5.8AI score0.01848EPSS
Exploits1References14
OpenVAS
OpenVAS
added 2021/08/20 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:2793-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01848EPSS
Exploits1References9
Rows per page
Query Builder