Lucene search
K

42 matches found

Circl
Circl
added 2026/03/06 9:4 p.m.4 views

CVE-2026-30846

creationtimestamp| type| source ---|---|--- 2026-03-06 21:04:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgg7mjmbwh2n...

8.7CVSS5.8AI score0.00345EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/06 7:35 p.m.2 views

CVE-2026-30846 Wekan Exposes All Global Webhook Integrations through globalwebhooks Publication

Wekan is an open source kanban tool built with Meteor. In versions 8.31.0 through 8.33, the globalwebhooks publication exposes all global webhook integrations—including sensitive url and token fields—without performing any authentication check on the server side. Although the subscription is...

8.7CVSS5.7AI score0.00345EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-30846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15...

7.8CVSS7.2AI score0.0127EPSS
Exploits0References2
NVD
NVD
added 2025/03/27 11:15 a.m.4 views

CVE-2025-30846

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows PHP Local File Inclusion.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.4...

8.8CVSS0.0069EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 10:55 a.m.53 views

CVE-2025-30846

CVE-2025-30846 — In the WordPress plugin Restaurant Menu by MotoPress , there is an improper validation in PHP include/require that enables a local file inclusion vulnerability. Affected: versions up to 2.4.4. The vulnerability is described as an authenticated Local File Inclusion (LFI) exposure;...

8.8CVSS7.2AI score0.0069EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 10:55 a.m.4 views

CVE-2025-30846 WordPress Restaurant Menu by MotoPress plugin <= 2.4.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows PHP Local File Inclusion.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.4...

8.8CVSS7.4AI score0.0069EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 10:55 a.m.13 views

CVE-2025-30846 WordPress Restaurant Menu by MotoPress plugin <= 2.4.4 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in jetmonsters Restaurant Menu by MotoPress mp-restaurant-menu allows PHP Local File Inclusion.This issue affects Restaurant Menu by MotoPress: from n/a through = 2.4.4...

8.8CVSS0.0069EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/04/27 2:2 p.m.5 views

@axosoft/azure-devops-node-api (=6.6.3), @capgeminiuk/generator-powerapps-project (>=0.1.55 <=0.6.6) +92 more potentially affected by CVE-2023-30846 via typed-rest-client (>=0.10.0 <=1.7.3)

typed-rest-client NPM version =0.10.0, =0.1.55, =1.0.8-1, =2.0.0, =2.0.1-1, =1.1.0, =1.79.5, =0.0.1, =1.0.0, =6.0.0 - @kcutils/color =0.2.0-rc.3 and more Source cves: CVE-2023-30846 Source advisory: OSV:GHSA-558P-M34M-VPMQ...

9.1CVSS7.1AI score0.02224EPSS
Exploits0
Circl
Circl
added 2023/04/27 12:25 a.m.7 views

CVE-2023-30846

creationtimestamp| type| source ---|---|--- 2023-04-27 00:25:22+00:00| seen| https://t.me/cibsecurity/62948...

9.1CVSS7.8AI score0.02224EPSS
Exploits0References1
NVD
NVD
added 2023/04/26 9:15 p.m.23 views

CVE-2023-30846

typed-rest-client is a library for Node Rest and Http Clients with typings for use with TypeScript. Users of the typed-rest-client library version 1.7.3 or lower are vulnerable to leak authentication data to 3rd parties. The flow of the vulnerability is as follows: First, send any request with...

9.1CVSS9.3AI score0.02224EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/26 8:58 p.m.11 views

CVE-2023-30846 typed-rest-client vulnerable to potential leak of authentication data to 3rd parties

typed-rest-client is a library for Node Rest and Http Clients with typings for use with TypeScript. Users of the typed-rest-client library version 1.7.3 or lower are vulnerable to leak authentication data to 3rd parties. The flow of the vulnerability is as follows: First, send any request with...

9.1CVSS9.3AI score0.02224EPSS
Exploits0References3
CVE
CVE
added 2023/04/26 8:58 p.m.65 views

CVE-2023-30846

The CVE-2023-30846 issue affects typed-rest-client

9.1CVSS7.8AI score0.02224EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:41 a.m.2 views

SUSE CVE-2021-30846

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution...

7.8CVSS8AI score0.0127EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2022/05/10 1:27 p.m.77 views

Moderate: Red Hat Security Advisory: webkit2gtk3 security, bug fix, and enhancement update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References34
OSV
OSV
added 2022/05/10 6:24 a.m.44 views

ALSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

9.3CVSS9.3AI score0.16342EPSS
Exploits4References31
OSV
OSV
added 2022/05/10 6:24 a.m.45 views

RLSA-2022:1777 Moderate: webkit2gtk3 security, bug fix, and enhancement update

WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. The following packages have been upgraded to a later upstream version: webkit2gtk3 2.34.6. BZ1985042 Security Fixes: webkitgtk: maliciously crafted web content may lead to arbitrary code execution due to use...

8.8CVSS9.3AI score0.16342EPSS
Exploits4References33
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.174 views

CentOS 8 : webkit2gtk3 (CESA-2022:1777)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:1777 advisory. - webkitgtk: Use-after-free leading to arbitrary code execution CVE-2021-30809 - webkitgtk: Type confusion issue leading to arbitrary code execution...

9.3CVSS7.4AI score0.16342EPSS
Exploits4References31
OpenVAS
OpenVAS
added 2022/02/08 12:0 a.m.26 views

openSUSE: Security Advisory for webkit2gtk3 (openSUSE-SU-2021:1557-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.4AI score0.02319EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/12/10 12:0 a.m.38 views

Security update for webkit2gtk3 (important)

openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2021:1557-1 Rating: important References: 1192063 Cross-References: CVE-2021-30846 CVE-2021-30851 CVSS scores: CVE-2021-30846 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-30846 SUSE: 7.8...

7.8CVSS7.4AI score0.02319EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/12/03 12:0 a.m.22 views

openSUSE: Security Advisory for webkit2gtk3 (openSUSE-SU-2021:3874-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.4AI score0.02319EPSS
Exploits0References2
Rows per page
Query Builder