Lucene search
+L

24 matches found

circl
circl
added 2026/04/13 2:38 a.m.5 views

CVE-2026-25204

creationtimestamp| type| source ---|---|--- 2026-04-13 02:38:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjdtjoqwny2r...

7.5CVSS5.7AI score0.00302EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/04/13 12:47 a.m.3 views

CVE-2026-25204

Deserialization of untrusted data vulnerability in Samsung Open Source Escargot Java Script allows denial of service condition via process abort. This issue affects escarogt prior to commit hash 97e8115ab1110bc502b4b5e4a0c689a71520d335...

6.2CVSS5.8AI score0.00302EPSS
Exploits0References2
circl
circl
added 2026/03/31 2:40 a.m.4 views

CVE-2018-25204

creationtimestamp| type| source ---|---|--- 2026-03-31 02:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mid5lf5jud2f...

9.8CVSS5.8AI score0.00541EPSS
Exploits1References1
cve
cve
added 2026/03/26 11:39 a.m.16 views

CVE-2018-25204

The CVE-2018-25204 entry describes an SQL injection in Library CMS 1.0 where unauthenticated attackers can bypass authentication by injecting SQL into the username field of the admin login. The vulnerability stems from improper handling of the username input, allowing boolean-based blind SQL payl...

9.8CVSS6AI score0.00541EPSS
Exploits1References3Affected Software1
nessus
nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: gh (CVE-2025-25204)

The version of gh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-25204 advisory. - gh is GitHub's official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain...

6.3CVSS5.7AI score0.00392EPSS
Exploits0References2
openvas
openvas
added 2025/10/28 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-3d0ada20e1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.7CVSS6.8AI score0.00868EPSS
Exploits2References10
nessus
nessus
added 2025/08/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-25204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gh is GitHub's official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact...

6.3CVSS6.5AI score0.00392EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 12:4 a.m.8 views

CVE-2022-25204

Jenkins Doktor Plugin 0.4.1 and earlier implements functionality that allows agent processes to render files on the controller as Markdown or Asciidoc, and error messages allow attackers able to control agent processes to determine whether a file with a given name exists...

5.5CVSS6.6AI score0.00591EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 6:25 p.m.10 views

CVE-2021-25204

Cross-site scripting XSS vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote attackers to inject arbitrary web script or HTM via the subject field to feedbackprocess.php...

5.4CVSS6.1AI score0.00658EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 4:33 p.m.13 views

CVE-2020-25204

The God Kings application 0.60.1 for Android exposes a broadcast receiver to other apps called com.innogames.core.frontend.notifications.receivers.LocalNotificationBroadcastReceiver. The purpose of this broadcast receiver is to show an in-game push notification to the player. However, the...

5.5CVSS6.8AI score0.00393EPSS
Exploits3
cbl_mariner
cbl_mariner
added 2025/03/13 3:10 p.m.19 views

CVE-2025-25204 affecting package gh for versions less than 2.62.0-6

CVE-2025-25204 affecting package gh for versions less than 2.62.0-6. A patched version of the package is available...

6.3CVSS6.4AI score0.00392EPSS
Exploits0
redhatcve
redhatcve
added 2025/02/14 6:52 p.m.11 views

CVE-2025-25204

gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...

6.3CVSS6.3AI score0.00392EPSS
Exploits0References6
wolfi
wolfi
added 2025/02/14 5:15 p.m.13 views

CVE-2025-25204 vulnerabilities

Vulnerabilities for packages: gh...

6.3CVSS7.2AI score0.00392EPSS
Exploits0
ubuntucve
ubuntucve
added 2025/02/14 5:15 p.m.8 views

CVE-2025-25204

gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...

6.3CVSS6.9AI score0.00392EPSS
Exploits0References4
cvelist
cvelist
added 2025/02/14 4:38 p.m.22 views

CVE-2025-25204 `gh attestation verify` returns incorrect exit code during verification if no attestations are present

gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...

6.3CVSS0.00392EPSS
Exploits0References3
debiancve
debiancve
added 2025/02/14 4:38 p.m.8 views

CVE-2025-25204

gh is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...

6.3CVSS7.1AI score0.00392EPSS
Exploits0
cnvd
cnvd
added 2022/03/28 12:0 a.m.11 views

Unspecified vulnerability exists in radare2 (CNVD-2022-25204)

radare2 is a set of libraries and tools for working with binary files. radare2 has a security vulnerability that stems from a heap buffer overflow in iteratechainedfixups. No detailed vulnerability details are currently available...

7.3CVSS2.1AI score0.00414EPSS
Exploits1References1
osv
osv
added 2022/02/15 5:15 p.m.3 views

CVE-2022-25204

Jenkins Doktor Plugin 0.4.1 and earlier implements functionality that allows agent processes to render files on the controller as Markdown or Asciidoc, and error messages allow attackers able to control agent processes to determine whether a file with a given name exists...

5.4CVSS5.8AI score
Exploits0References1
cve
cve
added 2022/02/15 4:11 p.m.149 views

CVE-2022-25204

CVE-2022-25204 affects Jenkins Doktor Plugin (versions 0.4.1 and earlier). The vulnerability arises from the plugin’s ability to render agent-controlled files on the Jenkins controller as Markdown or Asciidoc, coupled with error messages that can let an attacker who controls agent processes deter...

5.5CVSS5.7AI score0.00591EPSS
Exploits0References1Affected Software1
cve
cve
added 2021/07/23 1:24 p.m.87 views

CVE-2021-25204

CVE-2021-25204 corresponds to a cross-site scripting (XSS) vulnerability in SourceCodester E-Commerce Website v1.0 . The flaw allows remote attackers to inject arbitrary web script via the subject field of the form handled by feedback_process.php . The description does not specify affected versio...

5.4CVSS5.3AI score0.00658EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder