Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2025/06/13 8:13 a.m.4 views

CVE-2025-41661

An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...

8.8CVSS7.7AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/06/11 9:15 a.m.11 views

CVE-2025-41661

An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...

8.8CVSS0.00256EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/11 8:13 a.m.2 views

CVE-2025-41661 Weidmueller: Security routers IE-SR-2TX are affected by CSRF

An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...

8.8CVSS7.7AI score0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/11 8:13 a.m.14 views

CVE-2025-41661 Weidmueller: Security routers IE-SR-2TX are affected by CSRF

An unauthenticated remote attacker can execute arbitrary commands with root privileges on affected devices due to lack of Cross-Site Request Forgery CSRF protection...

8.8CVSS0.00256EPSS
Exploits0References1
CVE
CVE
added 2025/06/11 8:13 a.m.47 views

CVE-2025-41661

CVE-2025-41661 affects Weidmueller IE-SR-2TX-WL security routers. The vulnerability is a lack of CSRF protection in the main web interface, enabling an unauthenticated remote attacker to execute arbitrary commands with root privileges on affected devices. Several connected sources (Red Hat, NVD, ...

8.8CVSS7.7AI score0.00256EPSS
Exploits0References1
Circl
Circl
added 2025/06/11 8:4 a.m.13 views

CVE-2025-41661

creationtimestamp| type| source ---|---|--- 2025-06-11 08:04:57+00:00| seen| https://infosec.exchange/users/certvde/statuses/114663692500389345 2025-06-11 08:05:02+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lrcx4ijeuks2 2025-06-11 08:32:30+00:00| seen|...

8.8CVSS4.8AI score0.00256EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 9:22 p.m.9 views

CVE-2021-41661

Church Management System version 1.0 is affected by a SQL anjection vulnerability through creating a user with a PHP file as an avatar image, which is accessible through the /uploads directory. This can lead to RCE on the web server by uploading a PHP webshell...

9.8CVSS7.5AI score0.01214EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/02/05 11:32 p.m.10 views

CVE-2022-41661

A vulnerability has been identified in JT2Go All versions V14.1.0.4, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.7, Teamcenter Visualization V14.0 All versions V14.0.0.3, Teamcenter Visualization V14.1 All versions V14.1.0.4. The...

7.8CVSS6.8AI score0.00382EPSS
Exploits0References1
Circl
Circl
added 2024/07/23 8:34 p.m.4 views

CVE-2024-41661

creationtimestamp| type| source ---|---|--- 2024-07-23 20:34:58+00:00| seen| https://t.me/cvedetector/1522...

4.8AI score
Exploits1References1
OSV
OSV
added 2024/07/23 6:15 p.m.19 views

CVE-2024-41661

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-50094. Reason: This candidate is a duplicate of CVE-2023-50094. Notes: All CVE users should reference CVE-2023-50094 instead of this candidate...

6.3AI score
Exploits0
Cvelist
Cvelist
added 2024/07/23 5:22 p.m.34 views

CVE-2024-41661

...

Exploits1
Circl
Circl
added 2023/09/29 6:37 p.m.2 views

CVE-2023-41661

creationtimestamp| type| source ---|---|--- 2023-09-29 18:37:50+00:00| seen| https://t.me/cibsecurity/71300...

5.9CVSS6.5AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2023/09/29 2:15 p.m.24 views

CVE-2023-41661

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

4.8CVSS5.7AI score
Exploits0References1
NVD
NVD
added 2023/09/29 2:15 p.m.13 views

CVE-2023-41661

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.9CVSS5.5AI score0.00358EPSS
Exploits0References1
CVE
CVE
added 2023/09/29 1:36 p.m.111 views

CVE-2023-41661

CVE-2023-41661 : Authenticated (admin+) Stored Cross-Site Scripting in the Smarty for WordPress plugin (WordPress) version <= 3.1.35. The underlying issue is an XSS flaw in the plugin when an admin injects payloads that are stored and later rendered to users, enabling a stored XSS vector. Impa...

5.9CVSS5AI score0.00358EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/29 1:36 p.m.26 views

CVE-2023-41661 WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PressPage Entertainment Inc. Smarty for WordPress plugin = 3.1.35 versions...

5.9CVSS5.6AI score0.00358EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/09/01 12:0 a.m.8 views

WordPress Smarty for WordPress Plugin <= 3.1.35 is vulnerable to Cross Site Scripting (XSS)

Software Smarty for WordPress Type Plugin Vulnerable versions = 3.1.35 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-41661 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 3df7564a9cc9 Credits Prasanna V Balaji...

5.9CVSS5.8AI score0.00358EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2022/11/08 2:35 p.m.4 views

CVE-2022-41661

creationtimestamp| type| source ---|---|--- 2022-11-08 14:35:15+00:00| seen| https://t.me/cibsecurity/52626...

7.8CVSS7.5AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2022/11/08 11:15 a.m.5 views

CVE-2022-41661

A vulnerability has been identified in JT2Go All versions V14.1.0.4, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.7, Teamcenter Visualization V14.0 All versions V14.0.0.3, Teamcenter Visualization V14.1 All versions V14.1.0.4. The...

7.8CVSS5.9AI score0.00382EPSS
Exploits0References1
CVE
CVE
added 2022/11/08 12:0 a.m.71 views

CVE-2022-41661

CVE-2022-41661 affects Siemens JT2Go and Teamcenter Visualization: an out-of-bounds read when parsing CGM files could allow code execution in the current process. Affected products include JT2Go (all versions before 14.1.0.4) and Teamcenter Visualization (various lines: V13.2 before 13.2.0.12, V1...

7.8CVSS7.5AI score0.00382EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder