Lucene search
K

32 matches found

OSV
OSV
added 2026/05/29 12:0 a.m.8 views

UBUNTU-CVE-2026-48760

Unknown description...

5.8AI score0.00025EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-48760

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Symfony: HtmlSanitizer URL Parser Deny Gates Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass Visual-Spoofing Defense CVE-2026-48760 Not...

5.8AI score0.00025EPSS
Exploits0References2
Circl
Circl
added 2026/05/27 10:4 a.m.13 views

CVE-2026-48760

creationtimestamp| type| source ---|---|--- 2026-05-27 10:04:06+00:00| seen| https://bsky.app/profile/symfony.com/post/3mmtaxn3hnf2h 2026-05-27 14:35:08+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h...

5.3AI score0.00025EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2026/05/14 12:0 a.m.72 views

📄 GestioIP 3.5.7 Remote Command Execution

This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit. This module...

9.8CVSS5.9AI score0.45109EPSS
Exploits5
Exploit DB
Exploit DB
added 2025/04/14 12:0 a.m.260 views

GestioIP 3.5.7 - Remote Command Execution (RCE)

Exploit Title: GestioIP 3.5.7 - Remote Command Execution RCE Exploit Author: m4xth0r Maximiliano Belino Author website: https://maxibelino.github.io/ Author email max.cybersecurity at belino.com GitHub disclosure link: https://github.com/maxibelino/CVEs/tree/main/CVE-2024-48760 Date: 2025-01-13...

9.8CVSS7.1AI score0.45109EPSS
Exploits5
Circl
Circl
added 2025/01/15 12:3 a.m.7 views

CVE-2024-48760

creationtimestamp| type| source ---|---|--- 2025-01-15 00:03:26+00:00| seen| https://t.me/cvedetector/15381...

9.8CVSS4.8AI score0.45109EPSS
Exploits5References1
OSV
OSV
added 2025/01/14 10:15 p.m.4 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8CVSS6.1AI score0.45109EPSS
Exploits5References3
NVD
NVD
added 2025/01/14 10:15 p.m.15 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8CVSS0.45109EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2025/01/14 12:0 a.m.8 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8AI score0.45109EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2024/11/08 12:0 a.m.9 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0015)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.91.3- nfsatomicopen: prevent parallel nfslookup on a negative hashed Al Viro Orabug: 370062394.1.12-124.91.2- vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug:...

7.1CVSS6.8AI score0.00526EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.10 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12806)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12806 advisory. - vtioctl: fix arrayindexnospec in vtsetactivate Jakob Koschel Orabug: 37101899 CVE-2022-48804 - tty: vtioctl: fix potential Spectre v1 Gustavo A...

7.1CVSS6.8AI score0.00526EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/09/12 12:0 a.m.87 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2441)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.3AI score0.01537EPSS
Exploits1References4
OSV
OSV
added 2024/07/09 2:2 p.m.25 views

SUSE-SU-2024:2362-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47247: net/mlx5e: Fix use-after-free of encap entry in neigh update handler bsc1224865. - CVE-2021-47311: net: qcom/emac: fix UAF in emacremove bsc1225010. ...

9.8CVSS8.1AI score0.67994EPSS
Exploits7References155
RedhatCVE
RedhatCVE
added 2024/06/20 2:53 p.m.25 views

CVE-2022-48760

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usbkillurb by adding memory barriers The syzbot fuzzer has identified a bug in which processes hang waiting for usbkillurb to return. It turns out the issue is not unlinking the URB; that works just fine...

4.1CVSS8.6AI score0.00186EPSS
Exploits0References4
CVE
CVE
added 2024/06/20 11:13 a.m.148 views

CVE-2022-48760

The CVE-2022-48760 entry concerns a Linux kernel USB subsystem hang in usb_kill_urb() caused by memory-access ordering issues (SB pattern) between usb_kill_urb() and __usb_hcd_giveback_urb() on SMP systems. The vulnerability is fixed by adding memory barriers, specifically using the smp_mb__after...

7.1CVSS6.4AI score0.00186EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2024/06/19 11:15 a.m.5 views

CVE-2023-48760

Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...

9.8CVSS7.3AI score0.00445EPSS
Exploits0References1
NVD
NVD
added 2024/06/19 11:15 a.m.86 views

CVE-2023-48760

Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...

9.8CVSS0.00445EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/19 10:21 a.m.81 views

CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...

8.2CVSS0.00445EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/19 10:21 a.m.31 views

CVE-2023-48760 WordPress JetElements For Elementor plugin <= 2.6.13 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetElements For Elementor.This issue affects JetElements For Elementor: from n/a through 2.6.13...

8.2CVSS7AI score0.00445EPSS
Exploits0References1
CVE
CVE
added 2024/06/19 10:21 a.m.83 views

CVE-2023-48760

CVE-2023-48760 is a Missing Authorization / Broken Access Control issue affecting Crocoblock JetElements and related Elementor Jet plugins. Connected Patchstack entries confirm unauthenticated access issues for multiple Crocoblock plugins, including: JetElements: vulnerable &lt;= 2.6.13; fixed in...

9.8CVSS8.9AI score0.00445EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder