Lucene search
K

86 matches found

OSV
OSV
added 2026/04/30 2:30 p.m.5 views

MINI-58HC-4247-53C5

Bulletin has no description...

8.1CVSS4.8AI score0.00703EPSS
Exploits1
Circl
Circl
added 2026/03/26 9:8 a.m.4 views

CVE-2026-4247

creationtimestamp| type| source ---|---|--- 2026-03-26 09:08:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhxaxo55sy2t 2026-03-27 00:01:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhystcceec2r 2026-03-27 00:01:30+00:00| seen|...

7.5CVSS5.8AI score0.01121EPSS
Exploits0References4
FreeBSD Advisory
FreeBSD Advisory
added 2026/03/26 12:0 a.m.15 views

FreeBSD-SA-26:06.tcp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:06.tcp Security Advisory The FreeBSD Project Topic: TCP: remotely exploitable DoS vector mbuf leak Category: core Module: tcp Announced: 2026-03-26 Credits:...

7.5CVSS5.9AI score0.01121EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/11/28 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2025:4247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.00756EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/06 5:14 a.m.7 views

CVE-2025-4247

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /deletetask.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS7.4AI score0.00406EPSS
Exploits1References1
OSV
OSV
added 2025/05/04 5:15 a.m.8 views

CVE-2025-4247

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /deletetask.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS5.7AI score0.00406EPSS
Exploits1References5
NVD
NVD
added 2025/05/04 5:15 a.m.24 views

CVE-2025-4247

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /deletetask.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS0.00406EPSS
Exploits1References5
Circl
Circl
added 2025/05/04 4:50 a.m.29 views

CVE-2025-4247

creationtimestamp| type| source ---|---|--- 2025-05-04 04:50:03+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lod2ikxsemz2 2025-05-04 05:19:39+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14710 2025-05-04...

8.8CVSS6.2AI score0.00406EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/04 4:31 a.m.25 views

CVE-2025-4247 SourceCodester Simple To-Do List System delete_task.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /deletetask.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS0.00406EPSS
Exploits1References5
CVE
CVE
added 2025/05/04 4:31 a.m.58 views

CVE-2025-4247

CVE-2025-4247 affects SourceCodester Simple To-Do List System 1.0. The vulnerability exists in an unknown function of the file /delete_task.php, where manipulation of the ID parameter enables SQL injection. Remote exploitation is possible, and public exploits have been disclosed. The CVE entry no...

8.8CVSS7.4AI score0.00406EPSS
Exploits1References5Affected Software1
Circl
Circl
added 2025/04/14 3:41 p.m.6 views

CVE-2022-4247

creationtimestamp| type| source ---|---|--- 2025-04-14 15:41:38+00:00| exploited| https://t.me/truesecator/6943 2025-04-18 14:08:24+00:00| seen| https://t.me/ViralCyber/12392...

9.8CVSS8.7AI score0.00496EPSS
Exploits1References2
OSV
OSV
added 2024/09/25 5:34 a.m.19 views

CGA-V5FX-59QM-4247

Bulletin has no description...

8.7CVSS7.5AI score0.02772EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.28 views

AlmaLinux 8 : libuv (ALSA-2024:4247)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4247 advisory. libuv: Improper Domain Lookup that potentially leads to SSRF attacks CVE-2024-24806 Tenable has extracted the preceding description block directly from the AlmaLin...

7.3CVSS6.9AI score0.02003EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/27 9:31 a.m.18 views

CVE-2024-4247 Tenda i21 formQosManage_auto stack-based overflow

A vulnerability has been found in Tenda i21 1.0.0.144656 and classified as critical. This vulnerability affects the function formQosManageauto. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. The attack can be initiated remotely. VDB-262138 is the identifier...

9CVSS7AI score0.01453EPSS
Exploits0References4
CVE
CVE
added 2024/04/27 9:31 a.m.63 views

CVE-2024-4247

CVE-2024-4247 affects Tenda i21 (firmware 1.0.0.14(4656)). The vulnerability is in the formQosManage_auto function; manipulating the ssidIndex parameter triggers a stack-based buffer overflow. Exploitation is described as remote. Connected advisories reiterate the same details and point to VDB-26...

9CVSS7AI score0.01453EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2024/01/11 8:33 a.m.70 views

CVE-2023-4247

The CVE-2023-4247 issue affects the GiveWP WordPress plugin (up to 2.33.3). Root cause: missing/incorrect nonce validation in GiveWP’s give_sendwp_disconnect function enables CSRF to deactivate the SendWP plugin by forged requests, exploitable by unauthenticated attackers who trick an admin. Impa...

5.4CVSS5AI score0.00259EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/10/31 12:0 a.m.10 views

WordPress GiveWP Plugin <= 2.33.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software GiveWP Type Plugin Vulnerable versions = 2.33.3 Fixed in 2.33.4 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-4247 Patch priority Low CVSS severity Low 4.3 Developer Liquid Web / StellarWP PSID fe1779b76e9b Credits Marco Wotschka...

5.4CVSS7AI score0.00259EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:3 a.m.3 views

SUSE CVE-2016-4247

Race condition in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to obtain sensitive information via unspecified vectors...

5.3CVSS6.5AI score0.03205EPSS
Exploits0References6
CVE
CVE
added 2022/12/18 12:0 a.m.48 views

CVE-2021-4247

The CVE describes a denial-of-service in OWASP NodeGoat, affecting the Query Parameter Handler component specifically the file app/routes/research.js. The vulnerability arises from unknown code within that file, allowing a remote attacker to trigger a DoS condition. A patch is identified by the h...

7.5CVSS6AI score0.01007EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/18 12:0 a.m.7 views

CVE-2021-4247 OWASP NodeGoat Query Parameter research.js denial of service

A vulnerability has been found in OWASP NodeGoat and classified as problematic. This vulnerability affects unknown code of the file app/routes/research.js of the component Query Parameter Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The name of the...

4.3CVSS7.3AI score0.01007EPSS
Exploits1References3
Rows per page
Query Builder