Lucene search
K

13 matches found

vulnersOsv
vulnersOsv
added 2026/04/20 6:54 p.m.6 views

be.ugent.idlab.knows:dataio (>=1.2.0 <=1.3.1), cn.org.expect:modest-build (=1.0.4) +221 more potentially affected by CVE-2026-41245 via com.github.junrar:junrar (>=7.4.0 <=7.5.1)

com.github.junrar:junrar MAVEN version =7.4.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1, =2.7.0, =2.7.2, =2.1, =3.5.3, =3.5.11 and more Source cves: CVE-2026-41245 Source advisory: SNYK:JAVA-COMGITHUBJUNRAR-16115493...

9.3CVSS5.8AI score0.00336EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.7 views

CVE-2021-41245

Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.6 and 3.0.0, CSRF tokens generated by privUITransactionFile aren't properly checked. Versions 2.7.6 and 3.0.0 contain a patch for this issue. As a workaround, use the session implementation by adding in the iTop conf...

8.1CVSS6.9AI score0.00694EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/10 4:5 a.m.0 views

EUVD-2025-41245

Malicious code in dewi-pecel55-sluey npm...

6.6AI score
Exploits0
Circl
Circl
added 2025/09/30 11:35 p.m.4 views

CVE-2025-41245

creationtimestamp| type| source ---|---|--- 2025-09-30 23:35:51+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3m23ov7qisc2b 2025-10-01 04:53:38+00:00| seen| https://bsky.app/profile/samilaiho.com/post/3m24aneihpk2f 2025-10-30 18:05:03+00:00| seen|...

4.9CVSS4.8AI score0.00584EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/09/30 6:41 p.m.2 views

CVE-2025-41245

VMware Aria Operations contains an information disclosure vulnerability. A malicious actor with non-administrative privileges in Aria Operations may exploit this vulnerability to disclose credentials of other users of Aria Operations...

4.9CVSS6.3AI score0.00584EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:49 a.m.6 views

CVE-2024-41245

An Incorrect Access Control vulnerability was found in /smsa/viewteachers.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view TEACHER details...

7.5CVSS7.1AI score0.00548EPSS
Exploits1References1
Circl
Circl
added 2024/08/07 8:19 p.m.3 views

CVE-2024-41245

creationtimestamp| type| source ---|---|--- 2024-08-07 20:19:51+00:00| seen| https://t.me/cvedetector/2723...

7.5CVSS4.8AI score0.00548EPSS
Exploits1References1
Circl
Circl
added 2022/09/21 8:41 p.m.15 views

CVE-2022-41245

creationtimestamp| type| source ---|---|--- 2022-09-21 20:41:21+00:00| seen| https://t.me/cibsecurity/50210 2025-10-06 07:38:48+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m2j46vhouyz2...

8.8CVSS8.1AI score0.00436EPSS
Exploits0References2
NVD
NVD
added 2022/09/21 4:15 p.m.25 views

CVE-2022-41245

A cross-site request forgery CSRF vulnerability in Jenkins Worksoft Execution Manager Plugin 10.0.3.503 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

8.8CVSS0.00436EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/21 3:46 p.m.24 views

CVE-2022-41245

A cross-site request forgery CSRF vulnerability in Jenkins Worksoft Execution Manager Plugin 10.0.3.503 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins...

9AI score0.00436EPSS
Exploits0References1
CVE
CVE
added 2022/09/21 3:46 p.m.69 views

CVE-2022-41245

CVE-2022-41245 concerns the Jenkins Worksoft Execution Manager Plugin (versions 10.0.3.503 and earlier). The issue is a CSRF vulnerability that allows an attacker with Overall/Read permission to cause Jenkins to connect to an attacker-specified URL using attacker-specified credentials IDs obtaine...

8.8CVSS8.7AI score0.00436EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/04/05 6:27 p.m.6 views

CVE-2021-41245

creationtimestamp| type| source ---|---|--- 2022-04-05 18:27:57+00:00| seen| https://t.me/cibsecurity/40166...

8.1CVSS7.8AI score0.00694EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/04/05 3:5 p.m.20 views

CVE-2021-41245 Possible Cross-Site Request Forgery in Combodo iTop

Combodo iTop is a web based IT Service Management tool. In versions prior to 2.7.6 and 3.0.0, CSRF tokens generated by privUITransactionFile aren't properly checked. Versions 2.7.6 and 3.0.0 contain a patch for this issue. As a workaround, use the session implementation by adding in the iTop conf...

6.5CVSS8.2AI score0.00694EPSS
Exploits1References3
Rows per page
Query Builder