Lucene search
K

10 matches found

vulnersOsv
vulnersOsv
added 2026/03/11 12:34 a.m.9 views

@openinc/parse-server-opendash (>=4.0.0 <=4.0.3) potentially affected by CVE-2026-31868 via parse-server (=9.6.0-alpha.37)

parse-server NPM version =9.6.0-alpha.37 is affected by a known vulnerability. The following packages have a transitive dependency on parse-server and may be impacted: - @openinc/parse-server-opendash =4.0.0, =4.0.3 Source cves: CVE-2026-31868 Source advisory: SNYK:JS-PARSESERVER-15468614...

6.3CVSS5.8AI score0.00245EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/11 12:34 a.m.7 views

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-31868 via parse-server (>=2.0.8 <=7.5.4)

parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-31868 Source advisory: OSV:GHSA-V5HF-F4C3-M5RV...

6.3CVSS5.8AI score0.00245EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/03 4:36 p.m.12 views

CVE-2025-31868

Missing Authorization vulnerability in JoomSky JS Job Manager js-jobs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Job Manager: from n/a through = 2.0.2...

5.3CVSS7.2AI score0.0032EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/01 2:52 p.m.10 views

CVE-2025-31868 WordPress JS Job Manager plugin <= 2.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in JoomSky JS Job Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects JS Job Manager: from n/a through 2.0.2...

5.3CVSS7.1AI score0.0032EPSS
Exploits0References1
CVE
CVE
added 2025/04/01 2:52 p.m.52 views

CVE-2025-31868

CVE-2025-31868: Missing Authorization in the WordPress plugin JS Job Manager (JS Job Manager) allows an authenticated attacker (Contributor+ level) to exploit Local File Inclusion in versions up to 2.0.2. The vulnerability affects the plugin and is tracked publicly under CVE-2025-31868. Exploitat...

5.3CVSS7.2AI score0.0032EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/04/09 4:15 p.m.12 views

CVE-2024-31868

Improper Encoding or Escaping of Output vulnerability in Apache Zeppelin. The attackers can modify helium.json and exposure XSS attacks to normal users. This issue affects Apache Zeppelin: from 0.8.2 before 0.11.1. Users are recommended to upgrade to version 0.11.1, which fixes the issue...

6.1CVSS5.8AI score0.0131EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/04/09 4:10 p.m.30 views

CVE-2024-31868 Apache Zeppelin: XSS vulnerability in the helium module

Improper Encoding or Escaping of Output vulnerability in Apache Zeppelin. The attackers can modify helium.json and exposure XSS attacks to normal users. This issue affects Apache Zeppelin: from 0.8.2 before 0.11.1. Users are recommended to upgrade to version 0.11.1, which fixes the issue...

6AI score0.0131EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/06/22 12:0 a.m.11 views

CVE-2023-31868

Sage X3 version 12.14.0.50-0 is vulnerable to Cross Site Scripting XSS. Some parts of the Web application are dynamically built using user's inputs. Yet, those inputs are not verified nor filtered by the application, so they mathed the expected format. Therefore, when HTML/JavaScript code is...

6.8AI score0.00352EPSS
Exploits0References1
Circl
Circl
added 2021/08/19 8:18 p.m.7 views

CVE-2021-31868

creationtimestamp| type| source ---|---|--- 2021-08-19 20:18:23+00:00| seen| Telegram/tt37-W4F5XW-w3ZLdkMB6WneWThHAFXZ6BgdrAJwMJysk...

5.5CVSS5.5AI score0.00474EPSS
Exploits0
CVE
CVE
added 2021/08/19 3:25 p.m.46 views

CVE-2021-31868

CVE-2021-31868 affects Rapid7 Nexpose (Security Console) up to version 6.6.95. Authenticated users can view and edit any ticket in the legacy ticketing feature regardless of assignment. The issue is fixed in 6.6.96 (released Aug 4, 2021).

5.5CVSS4.8AI score0.00474EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder