Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

vulnersOsv
vulnersOsvadded 2025/08/19 3:31 p.m.3 views

at.ganzleicht.vaadin:vaadin-server (>=9.1.1 <=9.1.3), br.com.thiagomoreira.liferay.plugins.fix-virtual-host-app:fix-virtual-host-hook (>=2.0.0 <=5.1.0) +663 more potentially affected by CVE-2025-43740 via com.liferay.portal:com.liferay.portal.kernel (>=100.0.0 <=9.4.0)

com.liferay.portal:com.liferay.portal.kernel MAVEN version =100.0.0, =9.1.1, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.0.2.RELEASE, =0.0.2.RELEASE, =0.0.2.RELEASE, =0.0.2.RELEASE, =0.0.2.RELEASE, =1.0.0.RELEASE - com.gitee.pif...

5.4CVSS5.8AI score0.00041EPSS
Exploits0
Circl
Circladded 2025/08/19 2:18 p.m.4 views

CVE-2025-43740

creationtimestamp| type| source ---|---|--- 2025-08-19 14:18:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwr46batcj23...

5.4CVSS5.3AI score0.00041EPSS
Exploits0References1
OSV
OSVadded 2025/08/19 1:15 p.m.1 views

CVE-2025-43740

A Stored cross-site scripting vulnerability in the Liferay Portal 7.4.3.120 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.8, 2025.Q1.0 through 2025.Q1.15, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13 and 2024.Q1.9 through 2024.Q1.19 allows...

5.4CVSS5.7AI score0.00041EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletinsadded 2023/10/14 5:16 a.m.41 views

Security Bulletin: IBM Security Verify Access OpenID Connect Provider container has fixed multiple vulnerabilities (CVE-2022-43868, CVE-2022-43739, CVE-2022-43740)

Summary Multiple security vulnerabilities have been addressed in the IBM Security Verify Access OpenID Connect OIDC Provider container. Vulnerability Details CVEID:CVE-2022-43868 DESCRIPTION: IBM Security Verify Access OIDC Provider could disclose directory information that could aid attackers in...

7.5CVSS7AI score0.00087EPSS
Exploits0Affected Software1
Circl
Circladded 2023/09/29 12:37 a.m.1 views

CVE-2023-43740

creationtimestamp| type| source ---|---|--- 2023-09-29 00:37:06+00:00| seen| https://t.me/cibsecurity/71239...

8.8CVSS8.1AI score0.02099EPSS
Exploits1References1
Cvelist
Cvelistadded 2023/09/28 8:48 p.m.14 views

CVE-2023-43740 Online Book Store Project v1.0 - Insecure File Upload

Online Book Store Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'image' parameter of adminedit.php page, allowing an authenticated attacker to obtain Remote Code Execution on the server hosting the application...

8.8CVSS9AI score0.02099EPSS
Exploits1References2
CVE
CVEadded 2023/09/28 8:48 p.m.54 views

CVE-2023-43740

CVE-2023-43740 affects Online Book Store Project v1.0. The vulnerability is an Insecure File Upload on the image parameter of admin_edit.php, allowing an authenticated attacker to achieve Remote Code Execution on the hosting server. Connected sources corroborate the existence of an insecure file ...

8.8CVSS8.8AI score0.02099EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder