Lucene search
K

19 matches found

Circl
Circl
added 2026/02/17 1:10 p.m.9 views

CVE-2026-26045

creationtimestamp| type| source ---|---|--- 2026-02-17 13:10:06+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mf2n76nw5322 2026-02-27 02:00:15+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfsmglp7722q...

7.2CVSS4.7AI score0.00553EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:37 a.m.5 views

CVE-2023-26045

NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...

10CVSS6.8AI score0.00834EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:33 p.m.9 views

CVE-2022-26045

Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...

7.2CVSS7.1AI score0.00237EPSS
Exploits0References1
NVD
NVD
added 2024/03/18 6:15 p.m.16 views

CVE-2024-26045

Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.1AI score0.00427EPSS
Exploits0References1
CVE
CVE
added 2024/03/18 5:54 p.m.71 views

CVE-2024-26045

CVE-2024-26045 affects Adobe Experience Manager (AEM) 6.5.19 and earlier. The issue is a stored Cross-Site Scripting (XSS) vulnerability in vulnerable form fields, allowing an attacker to inject malicious JavaScript that may run in a victim’s browser when the page with the vulnerable field is loa...

5.4CVSS5.3AI score0.00427EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/18 5:54 p.m.22 views

CVE-2024-26045 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.2AI score0.00427EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/18 5:54 p.m.20 views

CVE-2024-26045 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.3AI score0.00427EPSS
Exploits0References1
Circl
Circl
added 2023/07/25 2:38 a.m.5 views

CVE-2023-26045

creationtimestamp| type| source ---|---|--- 2023-07-25 02:38:44+00:00| seen| https://t.me/cibsecurity/67191 2023-07-27 13:26:17+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8742...

10CVSS8.6AI score0.00834EPSS
Exploits0References2
NVD
NVD
added 2023/07/24 10:15 p.m.26 views

CVE-2023-26045

NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...

10CVSS9.2AI score0.00834EPSS
Exploits0References3
CVE
CVE
added 2023/07/24 9:8 p.m.70 views

CVE-2023-26045

CVE-2023-26045 affects NodeBB up to 2.8.7, where a path traversal in the user export path (due to object destructuring) could be triggered by a specially crafted payload to arbitrarily execute local JavaScript. Affected range: 2.5.0 through

10CVSS9.2AI score0.00834EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/07/24 9:8 p.m.47 views

CVE-2023-26045 NodeBB vulnerable to path traversal and code execution via prototype vulnerability

NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to...

10CVSS9.4AI score0.00834EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/11 3:48 p.m.8 views

CVE-2022-26045

Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...

3.3CVSS7.2AI score0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/11 3:48 p.m.20 views

CVE-2022-26045

Improper buffer restrictions in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow a privileged user to potentially enable escalation of privilege via physical access...

3.3CVSS7.4AI score0.00237EPSS
Exploits0References1
CVE
CVE
added 2022/11/11 3:48 p.m.54 views

CVE-2022-26045

Intel XMM 7560 Modem software (M2_7560_R_01.2146.00 and M2_7560_V2_01.2146.00) contains an improper buffer restriction that may allow a privileged user to escalate privileges with physical or adjacent access. The CVE-2022-26045 issue affects Intel XMM 7560 M.2 software for Windows/Linux; remediat...

7.2CVSS7.1AI score0.00237EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/19 3:26 a.m.12 views

CVE-2021-26045

...

Exploits0
CVE
CVE
added 2022/01/19 3:26 a.m.27 views

CVE-2021-26045

CVE-2021-26045 is rejected/not used per the Initial Description.

7.3AI score
Exploits0
Circl
Circl
added 2021/01/05 7:25 p.m.4 views

CVE-2020-26045

creationtimestamp| type| source ---|---|--- 2021-01-05 19:25:27+00:00| seen| https://t.me/cibsecurity/21580...

9.8CVSS8.7AI score0.01846EPSS
Exploits1References1
CVE
CVE
added 2021/01/05 2:16 p.m.34 views

CVE-2020-26045

CVE-2020-26045 affects FUEL CMS 1.4.11 via SQL injection in the name parameter of /fuel/permissions/create/. Exploitation could compromise the application and allow data access/modification per the cited sources. The connected documents confirm the vulnerability but do not provide a concrete reme...

9.8CVSS9.8AI score0.01846EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Linkliste 1.2 Index.PHP Multiple Remote File Include Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/26045/info Linkliste is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to compromise the application and t...

7.1AI score
Exploits0
Rows per page
Query Builder