Lucene search
K

152 matches found

Circl
Circl
added 2026/05/30 4:29 p.m.13 views

CVE-2014-3508

creationtimestamp| type| source ---|---|--- 2026-05-30 16:29:34+00:00| seen| https://gist.github.com/xadenryan/c9b467b0ab31ac5f421303705973d5d8...

4.3CVSS6.7AI score0.23292EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/11 4:56 p.m.5 views

crypto-javascri (>=1.3.8 <=3.0.1) potentially affected by unknown CVE via crypto-javascri (=1.4.5)

crypto-javascri NPM version =1.4.5 is affected by a known vulnerability. The following packages have a transitive dependency on crypto-javascri and may be impacted: - crypto-javascri =1.3.8, =3.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3508...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : java-1.6.0-openjdk-1.6.0.40-1.13.12.5.0.1.el7.AXS7 (AXSA:2016-644:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-644:03 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-3458 Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and...

9.6CVSS7AI score0.04797EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : openssl-1.0.1e-16.AXS4.15 (AXSA:2014-494:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-494:04 advisory. Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and...

6.8CVSS6.4AI score0.51436EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.101-3.b13.AXS4 (AXSA:2016-570:06)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-570:06 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-3458 RESERVED This candidate has been reserved by an organization ...

9.6CVSS6.9AI score0.0669EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.101-3.b13.el7 (AXSA:2016-571:05)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-571:05 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-3458 RESERVED This candidate has been reserved by an organization ...

9.6CVSS6.9AI score0.0669EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-3508

Malicious code in bioql PyPI...

5.3CVSS5.8AI score0.01291EPSS
Exploits0References12
Circl
Circl
added 2025/08/30 1:24 p.m.7 views

CVE-2024-3508

creationtimestamp| type| source ---|---|--- 2025-08-30 13:24:45+00:00| seen| Telegram/sgtjajzjPvHoW6ZbGGl1oClE5LDWdS9ov097Yj5YHCLnM...

4.3CVSS4.7AI score0.00491EPSS
Exploits0
Circl
Circl
added 2025/07/25 4:37 p.m.6 views

CVE-2025-3508

creationtimestamp| type| source ---|---|--- 2025-07-25 16:37:34+00:00| seen| Telegram/6aFB0fQGHbjdp4WgiMzqroqoQUKQMQILer-qKlEqmruqbI...

6.5CVSS4.8AI score0.00925EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:16 a.m.8 views

CVE-2023-3508

The WooCommerce Pre-Orders WordPress plugin before 2.0.3 has a flawed CSRF check when processing its tab actions, which could allow attackers to make logged in admins email pre-orders customer, change the released date, mark all pre-orders of a specific product as complete or cancel via CSRF atta...

6.5CVSS6.7AI score0.00261EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:42 a.m.7 views

CVE-2013-3508

html/System-Files.php in the System File Overview feature in the NeDi component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands via vectors involving file editing...

6.5CVSS7.5AI score0.01969EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-3508

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in getxreflinearskipped in pdf.c via a crafted PDF file. CVE-2021-3508 Note that...

5.5CVSS6AI score0.00762EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/04/27 3:5 a.m.4 views

SUSE CVE-2024-3508

A flaw was found in Bombastic, which allows authenticated users to upload compressed bzip2 or zstd SBOMs. The API endpoint verifies the presence of some fields and values in the JSON. To perform this verification, the uploaded file must first be decompressed...

4.3CVSS6.6AI score0.00491EPSS
Exploits0References3
NVD
NVD
added 2024/04/25 6:15 p.m.20 views

CVE-2024-3508

A flaw was found in Bombastic, which allows authenticated users to upload compressed bzip2 or zstd SBOMs. The API endpoint verifies the presence of some fields and values in the JSON. To perform this verification, the uploaded file must first be decompressed...

4.3CVSS4.4AI score0.00491EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/04/09 8:21 a.m.84 views

CVE-2024-3508

A flaw was found in Bombastic, which allows authenticated users to upload compressed bzip2 or zstd SBOMs. The API endpoint verifies the presence of some fields and values in the JSON. To perform this verification, the uploaded file must first be decompressed...

4.3CVSS6.9AI score0.00491EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.1 views

Malicious code in wlwz-2312-3508 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb16e7733f011f620000f3f4d37e7be638c6e08b157eddd5fbd67d685508e66c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/01/24 8:23 p.m.4 views

MAL-2024-493 Malicious code in wlwz-2312-3508 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb16e7733f011f620000f3f4d37e7be638c6e08b157eddd5fbd67d685508e66c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OpenVAS
OpenVAS
added 2023/12/22 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for procps-ng (EulerOS-SA-2023-3508)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.5AI score0.00241EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/31 9:37 a.m.8 views

CVE-2023-3508 WooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF

The WooCommerce Pre-Orders WordPress plugin before 2.0.3 has a flawed CSRF check when processing its tab actions, which could allow attackers to make logged in admins email pre-orders customer, change the released date, mark all pre-orders of a specific product as complete or cancel via CSRF atta...

6.4AI score0.00261EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.24 views

Debian: Security Advisory (DLA-579-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.3AI score0.0669EPSS
Exploits0References3
Rows per page
Query Builder