Lucene search
K

18 matches found

Circl
Circl
added 2026/01/14 9:21 p.m.5 views

CVE-2026-23512

creationtimestamp| type| source ---|---|--- 2026-01-14 21:21:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcfyrte4552u 2026-01-14 23:36:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcgadzuwze2x 2026-01-14 23:44:53+00:00| seen|...

8.6CVSS5.8AI score0.00191EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.7 views

CVE-2020-23512

VR CAM P1 Model P1 v1 has an incorrect access control vulnerability where an attacker can obtain complete access of the device from web remote without authentication...

10CVSS7AI score0.02288EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:44 a.m.8 views

CVE-2022-23512

MeterSphere is a one-stop open source continuous testing platform. Versions prior to 2.4.1 are vulnerable to Path Injection in ApiTestCaseService::deleteBodyFiles which takes a user-controlled string id and passes it to ApiTestCaseService, which uses the user-provided value testId in new...

8.1CVSS7AI score0.00827EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-23512

Malware in sbrugna...

9.8CVSS8.4AI score0.06762EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 7:32 a.m.10 views

CVE-2024-23512

Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...

9.8CVSS8.5AI score0.00519EPSS
Exploits0References1
Circl
Circl
added 2025/01/22 3:18 p.m.2 views

CVE-2025-23512

creationtimestamp| type| source ---|---|--- 2025-01-22 15:18:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdo33vcp32t 2025-01-22 20:01:51+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2628...

7.5CVSS8.7AI score0.00635EPSS
Exploits0References2
NVD
NVD
added 2025/01/22 3:15 p.m.6 views

CVE-2025-23512

Missing Authorization vulnerability in 118group Team 118GROUP Agent team-118group-agent allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team 118GROUP Agent: from n/a through = 1.6.0...

7.5CVSS0.00635EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/22 2:29 p.m.6 views

CVE-2025-23512 WordPress Team 118GROUP Agent plugin <= 1.6.0 - Arbitrary Content Deletion vulnerability

Missing Authorization vulnerability in 118group Team 118GROUP Agent team-118group-agent allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Team 118GROUP Agent: from n/a through = 1.6.0...

7.5CVSS8.6AI score0.00635EPSS
Exploits0References1
NVD
NVD
added 2024/02/12 9:15 a.m.13 views

CVE-2024-23512

Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...

9.8CVSS8.7AI score0.00519EPSS
Exploits0References1
CVE
CVE
added 2024/02/12 8:22 a.m.57 views

CVE-2024-23512

CVE-2024-23512: WordPress ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks is affected by a PHP Object Injection via deserialization of untrusted data in versions ≤ 3.1.4. Patch 3.1.5 resolves the issue. No exploitation details are provided in the supplied documents. Remediation: upg...

9.8CVSS8.5AI score0.00519EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2023/02/27 10:28 p.m.6 views

CVE-2023-23512

creationtimestamp| type| source ---|---|--- 2023-02-27 22:28:14+00:00| seen| https://t.me/cibsecurity/59058 2025-03-24 15:48:03+00:00| seen| https://bsky.app/profile/sentrysecurity.bsky.social/post/3ll545osrjc2d...

6.5CVSS6.3AI score0.00704EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/02/27 12:0 a.m.6 views

CVE-2023-23512

The issue was addressed with improved handling of caches. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Visiting a website may lead to an app denial-of-service...

5.6AI score0.00704EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/02/27 12:0 a.m.24 views

CVE-2023-23512

The issue was addressed with improved handling of caches. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Visiting a website may lead to an app denial-of-service...

6.4AI score0.00704EPSS
Exploits0References4
CVE
CVE
added 2023/02/27 12:0 a.m.120 views

CVE-2023-23512

CVE-2023-23512 affects Apple operating systems and is fixed by updates to: watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3, and iPadOS 16.3. The issue stems from improper cache handling and can cause an application denial-of-service when visiting a website. Affected components are not detail...

6.5CVSS5.3AI score0.00704EPSS
Exploits0References4Affected Software5
Circl
Circl
added 2022/12/14 4:27 p.m.5 views

CVE-2022-23512

creationtimestamp| type| source ---|---|--- 2022-12-14 16:27:30+00:00| seen| https://t.me/cibsecurity/54507 2025-04-21 20:03:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12751...

8.1CVSS7.2AI score0.00827EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/12/14 1:9 p.m.4 views

CVE-2022-23512 Metersphere is vulnerable to Path Injection.

MeterSphere is a one-stop open source continuous testing platform. Versions prior to 2.4.1 are vulnerable to Path Injection in ApiTestCaseService::deleteBodyFiles which takes a user-controlled string id and passes it to ApiTestCaseService, which uses the user-provided value testId in new...

7.7CVSS7.4AI score0.00827EPSS
Exploits1References1
CVE
CVE
added 2022/12/14 1:9 p.m.61 views

CVE-2022-23512

MeterSphere (open source continuous testing platform) has a path injection vulnerability in ApiTestCaseService::deleteBodyFiles. The issue arises when a user-supplied string id is concatenated into the file path (BODY_FILE_DIR + "/" + testId) and later deleted via file.delete(), enabling manipula...

8.1CVSS8AI score0.00827EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/09/15 1:40 p.m.41 views

CVE-2020-23512

VR CAM P1 Model P1 v1 has an incorrect access control vulnerability allowing an unauthenticated remote attacker to obtain complete web access to the device. The issue is described as an access-control flaw with high/critical impact (CVSS v3.1 base score 9.8). No remediation version or patch detai...

10CVSS9.3AI score0.02288EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder