Lucene search
+L

88 matches found

osv
osv
added 2026/07/01 9:27 a.m.2 views

CGA-3XX7-3968-26W8

Bulletin has no description...

8.8CVSS5.7AI score0.0028EPSS
Exploits0
osv
osv
added 2026/06/05 4:51 p.m.6 views

MINI-3968-QVJF-QG77

Bulletin has no description...

6.5CVSS5.1AI score0.00196EPSS
Exploits0
nvd
nvd
added 2026/03/12 1:15 a.m.5 views

CVE-2026-3968

A vulnerability has been found in AutohomeCorp frostmourne up to 1.0. This affects the function scriptEngine.eval of the file ExpressionRule.java of the component Oracle Nashorn JavaScript Engine. Such manipulation of the argument EXPRESSION leads to code injection. The attack can be executed...

6.5CVSS0.00228EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2026/03/12 12:32 a.m.3 views

CVE-2026-3968 AutohomeCorp frostmourne Oracle Nashorn JavaScript ExpressionRule.java scriptEngine.eval code injection

A vulnerability has been found in AutohomeCorp frostmourne up to 1.0. This affects the function scriptEngine.eval of the file ExpressionRule.java of the component Oracle Nashorn JavaScript Engine. Such manipulation of the argument EXPRESSION leads to code injection. The attack can be executed...

6.5CVSS6.3AI score0.00228EPSS
Exploits0References4
cvelist
cvelist
added 2026/03/12 12:32 a.m.33 views

CVE-2026-3968 AutohomeCorp frostmourne Oracle Nashorn JavaScript ExpressionRule.java scriptEngine.eval code injection

A vulnerability has been found in AutohomeCorp frostmourne up to 1.0. This affects the function scriptEngine.eval of the file ExpressionRule.java of the component Oracle Nashorn JavaScript Engine. Such manipulation of the argument EXPRESSION leads to code injection. The attack can be executed...

6.5CVSS0.00228EPSS
Exploits0References4
euvd
euvd
added 2026/01/22 4:52 p.m.4 views

EUVD-2026-3968

Missing Authorization vulnerability in solacewp Solace solace allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Solace: from n/a through = 2.1.16...

5.4AI score0.00311EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/22 11:31 p.m.12 views

CVE-2022-3968

A vulnerability has been found in emlog and classified as problematic. Affected by this vulnerability is an unknown functionality of the file admin/articlesave.php. The manipulation of the argument tag leads to cross site scripting. The attack can be launched remotely. The name of the patch is...

6.1CVSS6.3AI score0.00377EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:7 a.m.11 views

CVE-2016-3968

Multiple cross-site scripting XSS vulnerabilities in Sophos Cyberoam CR100iNG UTM appliance with firmware 10.6.3 MR-1 build 503, CR35iNG UTM appliance with firmware 10.6.2 MR-1 build 383, and CR35iNG UTM appliance with firmware 10.6.2 Build 378 allow remote attackers to inject arbitrary web scrip...

6.1CVSS6AI score0.01424EPSS
Exploits2References1
redhatcve
redhatcve
added 2025/05/21 9:53 p.m.10 views

CVE-2007-3968

index.php in dirLIST before 0.1.1 allows remote attackers to list the contents of an excluded folder via a modified URL containing the folder name...

5.3CVSS6.9AI score0.01258EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/04/29 11:10 a.m.21 views

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS7.5AI score0.00406EPSS
Exploits1References1
nvd
nvd
added 2025/04/27 11:15 a.m.32 views

CVE-2025-3968

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

8.8CVSS0.00406EPSS
Exploits1References4
circl
circl
added 2025/04/27 11:8 a.m.13 views

CVE-2025-3968

creationtimestamp| type| source ---|---|--- 2025-04-27 11:08:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13614 2025-04-27 11:24:33+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lns564iijwi2 2025-04-27...

8.8CVSS6.2AI score0.00406EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2025/04/27 11:0 a.m.9 views

CVE-2025-3968 codeprojects News Publishing Site Dashboard api.php sql injection

A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /api.php. The manipulation of the argument catid leads to sql injection. The attack can be initiated remotely. The exploit has been...

6.5CVSS6.9AI score0.00406EPSS
Exploits1References4
cve
cve
added 2025/04/27 11:0 a.m.67 views

CVE-2025-3968

CVE-2025-3968 affects codeprojects News Publishing Site Dashboard 1.0. The vulnerability is in the file /api.php, where manipulation of the parameter cat_id enables SQL injection . Exploitation can be performed remotely and, according to multiple sources, the exploit has been disclosed publicly. ...

8.8CVSS7.8AI score0.00406EPSS
Exploits1References4Affected Software1
nessus
nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-3968

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vim is vulnerable to Heap-based Buffer Overflow CVE-2021-3968 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL...

8.5CVSS7.5AI score0.02075EPSS
Exploits1References3
redhatcve
redhatcve
added 2025/02/05 9:59 a.m.14 views

CVE-2024-3968

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task...

9.8CVSS8.4AI score0.00672EPSS
Exploits0References3
nessus
nessus
added 2024/06/19 12:0 a.m.31 views

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-3968)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3968 advisory. aardvark-dns 2:1.10.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0 - Related: Jira:RHEL-2110 2:1.9.0-1 - update to...

5.9CVSS7.2AI score0.02085EPSS
Exploits0References3
nessus
nessus
added 2024/06/03 12:0 a.m.25 views

RHEL 9 : vim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - vim: buffer overflow CVE-2020-20703 - vim: Heap based buffer overflow in findfile.c CVE-2021-3973 - vim i...

9.8CVSS8.7AI score0.02645EPSS
Exploits90References99
osv
osv
added 2024/05/15 5:15 p.m.5 views

CVE-2024-3968

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can trigger remote code execution using custom file upload task...

9.8CVSS6.3AI score0.00672EPSS
Exploits0References1
cve
cve
added 2024/05/15 4:39 p.m.42 views

CVE-2024-3968

OpenText iManager 3.2.6.0200 is affected by CVE-2024-3968, a Remote Code Execution vulnerability that can be triggered via a custom file upload task. The vulnerability is documented with high-severity scores (NVD CVSSv3.1: 9.8/CRITICAL; Community security note with 7.8/HIGH) and indicates an atta...

9.8CVSS8AI score0.00672EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder