Lucene search
K

140 matches found

OSV
OSV
added 2026/06/07 3:45 p.m.7 views

MINI-3844-4JFJ-H4M4

Bulletin has no description...

7.5CVSS5.2AI score0.00415EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/05/10 10:55 p.m.103 views

Exploit for CVE-2026-3844

No d...

9.8CVSS6AI score0.36512EPSS
Exploits8
GithubExploit
GithubExploit
added 2026/04/25 5:35 p.m.199 views

Exploit for CVE-2026-3844

CVE-2026-3844 — Breeze Cache move $tempgrava...

9.8CVSS5.9AI score0.36512EPSS
Exploits8
Circl
Circl
added 2026/04/23 3:0 a.m.9 views

CVE-2026-3844

creationtimestamp| type| source ---|---|--- 2026-04-23 03:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116451785443473415 2026-04-23 03:00:32+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mk4zgzcg3k2g 2026-04-23 05:19:00+00:00| seen|...

9.8CVSS6.2AI score0.36512EPSS
Exploits8References25
EUVD
EUVD
added 2026/01/22 4:52 p.m.3 views

EUVD-2026-3844

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in mwtemplates DeepDigital deepdigital allows Code Injection.This issue affects DeepDigital: from n/a through = 1.0.2...

5.3CVSS5.4AI score0.00291EPSS
Exploits0References2
OSV
OSV
added 2025/11/17 10:29 p.m.7 views

CLSA-2025-1763418591 Fix CVE(s): CVE-2019-3843, CVE-2019-3844

SECURITY UPDATE: Privilege chaining vulnerability - debian/patches/CVE-2019-3843.patch: introduce functionality for blocking chmod for suid/sgid files with new unit setting RestrictSUIDSGID= - CVE-2019-3843 SECURITY UPDATE: Privilege chaining vulnerability - debian/patches/CVE-2019-3844.patch:...

7.8CVSS5.8AI score0.00912EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:11 p.m.9 views

CVE-2022-3844

A vulnerability, which was classified as problematic, was found in Webmin 2.001. Affected is an unknown function of the file xterm/index.cgi. The manipulation leads to basic cross site scripting. It is possible to launch the attack remotely. Upgrading to version 2.003 is able to address this issu...

6.1CVSS6.2AI score0.00591EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:35 p.m.8 views

CVE-2020-3844

This issue was addressed with improved checks. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. Users removed from an iMessage conversation may still be able to alter state...

3.3CVSS5.7AI score0.00282EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 1:53 p.m.13 views

CVE-2014-3844

The TinyMCE Color Picker plugin before 1.2 for WordPress does not properly check permissions, which allows remote attackers to modify plugin settings via unspecified vectors. NOTE: some of these details are obtained from third party information...

5CVSS7.1AI score0.01784EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 1:43 a.m.11 views

CVE-2025-3844 PeproDev Ultimate Profile Solutions 1.9.1 - 7.5.2 - Authentication Bypass to Account Takeover

The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to Authentication Bypass in versions 1.9.1 to 7.5.2. This is due to handelajaxreq function not having proper restrictions on the changeusermeta functionality that makes it possible to set a OTP code and subsequently log in...

9.8CVSS9.5AI score0.00549EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/07 1:43 a.m.46 views

CVE-2025-3844 PeproDev Ultimate Profile Solutions 1.9.1 - 7.5.2 - Authentication Bypass to Account Takeover

The PeproDev Ultimate Profile Solutions plugin for WordPress is vulnerable to Authentication Bypass in versions 1.9.1 to 7.5.2. This is due to handelajaxreq function not having proper restrictions on the changeusermeta functionality that makes it possible to set a OTP code and subsequently log in...

9.8CVSS0.00549EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/05/06 8:43 p.m.12 views

WordPress PeproDev Ultimate Profile Solutions 1.9.1-7.5.2 plugin - Authentication Bypass to Account Takeover

Authentication Bypass to Account Takeover vulnerability discovered by kr0d in WordPress Plugin PeproDev Ultimate Profile Solutions versions 1.9.1-7.5.2...

9.8CVSS8.2AI score0.00549EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-3844

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Extensions in Google Chrome prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted Chrome...

4.3CVSS6.8AI score0.00649EPSS
Exploits1References2
Rosalinux
Rosalinux
added 2025/02/15 10:22 p.m.10 views

Advisory ROSA-SA-2025-2696

Software: systemd 239 OS: ROSA Virtualization 3.0 packageevrstring: systemd-239-78.0.1 CVE-ID: CVE-2019-3843 BDU-ID: 2022-00318 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the systemd service initialization and management subsystem is related to improper privilege assignment. Exploitation of...

7.8CVSS7.2AI score0.01217EPSS
Exploits5
Rosalinux
Rosalinux
added 2025/01/28 7:21 p.m.23 views

Advisory ROSA-SA-2025-2650

Software: webmin 2.105 WASP: ROSA-CHROME packageevrstring: webmin-2.105-1 CVE-ID: CVE-2022-3844 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Webmin allows basic client-side scripting to be run via the xterm/index.cgi function. CVE-STATUS: The vulnerability has been resolved CVE-REV...

6.1CVSS5.7AI score0.00591EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/11/01 12:0 a.m.18 views

openSUSE: Security Advisory for 389 (SUSE-SU-2024:3844-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.01256EPSS
Exploits0References2
Circl
Circl
added 2024/07/01 2:30 p.m.8 views

CVE-2008-3844

creationtimestamp| type| source ---|---|--- 2024-07-01 14:30:24+00:00| seen| Telegram/2G0LL9YDDO0dQKSo5p4zQWAL-pbipATIxiBPSKqKsYKP6RG0 2024-07-01 14:33:02+00:00| seen| Telegram/w0w9iKcyXi70OnNrtP96yLy6sw-7f3qLcDmBnN0l3DtxqHg 2024-07-01 14:34:42+00:00| seen|...

9.3CVSS5.7AI score0.02674EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/11 12:0 a.m.33 views

openSUSE 15 Security Update : opera (openSUSE-SU-2024:0156-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0156-1 advisory. Update to 110.0.5130.64 CHR-9748 Update Chromium on desktop-stable-124-5130 to 124.0.6367.243 DNA-116317 Create outline or shadow around emojis o...

9.8CVSS7.7AI score0.14958EPSS
Exploits13References33
OpenVAS
OpenVAS
added 2024/05/17 12:0 a.m.24 views

openSUSE Security Advisory (openSUSE-SU-2024:0128-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.14958EPSS
Exploits10References3
OpenVAS
OpenVAS
added 2024/04/29 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2024-0150)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.14958EPSS
Exploits13References5
Rows per page
Query Builder