Lucene search
K

36 matches found

OSV
OSV
added 2026/06/05 4:32 a.m.3 views

MINI-5955-JR6V-G492

Bulletin has no description...

9.8CVSS5.7AI score0.00356EPSS
Exploits0
OSV
OSV
added 2026/05/16 9:30 p.m.4 views

MINI-5955-2QQF-66FM

Bulletin has no description...

8.4CVSS5.7AI score0.00387EPSS
Exploits0
Circl
Circl
added 2025/09/19 8:1 a.m.7 views

CVE-2025-5955

creationtimestamp| type| source ---|---|--- 2025-09-19 08:01:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lz6fkytigd2g 2026-04-26 01:33:05+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mkefxgfrwx2h...

8.1CVSS5.8AI score0.00407EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/09/18 9:38 p.m.11 views

WordPress Service Finder SMS System plugin <= 2.0.0 - Authentication Bypass vulnerability

Authentication Bypass vulnerability discovered by Foxyyy in WordPress Plugin Service Finder SMS System versions = 2.0.0...

8.1CVSS6.8AI score0.00407EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 5:42 p.m.6 views

CVE-2020-5955

An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges...

9.8CVSS6.9AI score0.01368EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:43 a.m.8 views

CVE-2019-5955

CREATE SD official App for Android version 1.0.2 and earlier allows remote attackers to bypass access restriction to lead a user to access an arbitrary website via vulnerable application and conduct phishing attacks...

5.8CVSS7.4AI score0.01133EPSS
Exploits0References1
NVD
NVD
added 2024/12/20 6:15 a.m.31 views

CVE-2024-5955

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...

5.4CVSS0.00356EPSS
Exploits0References1
Circl
Circl
added 2024/12/20 5:56 a.m.12 views

CVE-2024-5955

creationtimestamp| type| source ---|---|--- 2024-12-20 05:56:17+00:00| seen| https://infosec.exchange/users/cve/statuses/113683606875514578 2024-12-20 06:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpqdw7r2u2s 2024-12-20 08:23:00+00:00| seen|...

5.4CVSS4.8AI score0.00356EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/20 5:53 a.m.27 views

CVE-2024-5955

Cross-site scripting vulnerability in Trellix ePolicy Orchestrator prior to ePO 5.10 Service Pack 1 Update 3 allows a remote authenticated attacker to craft requests causing arbitrary content to be injected into the response when accessing the epolicy Orchestrator...

5.4CVSS0.00356EPSS
Exploits0References1
CVE
CVE
added 2024/12/20 5:53 a.m.78 views

CVE-2024-5955

Summary: CVE-2024-5955 is a cross-site scripting vulnerability in Trellix ePolicy Orchestrator (ePO) prior to 5.10 Service Pack 1 Update 3. The issue allows a remote authenticated attacker to craft requests that inject arbitrary content into the response when accessing ePolicy Orchestrator. Affec...

5.4CVSS6.3AI score0.00356EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.196 views

GitStack Unauthenticated REST API Requests

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitStack Unauthenticated REST API Requests', 'Description' = %q This modules exploits unauthenticated REST API requests in GitStack through...

9.8CVSS7AI score0.80982EPSS
Exploits9
Circl
Circl
added 2024/01/01 2:31 p.m.8 views

CVE-2023-5955

creationtimestamp| type| source ---|---|--- 2024-01-01 14:31:24+00:00| seen| https://t.me/ctinow/161312...

6.1CVSS4.9AI score0.00455EPSS
Exploits2References1
NVD
NVD
added 2023/12/11 8:15 p.m.32 views

CVE-2023-5955

The Contact Form Email WordPress plugin before 1.3.44 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

6.1CVSS0.00455EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/12/11 7:30 p.m.42 views

CVE-2023-5955 Contact Form Email < 1.3.44 - Editor+ Stored Cross-Site Scripting

The Contact Form Email WordPress plugin before 1.3.44 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5AI score0.00455EPSS
Exploits2References1
CVE
CVE
added 2023/12/11 7:30 p.m.59 views

CVE-2023-5955

CVE-2023-5955 affects the WordPress plugin Contact Form Email up to version 1.3.44 . The issue arises because the plugin does not adequately sanitize and escape certain settings, enabling stored XSS via an exploited admin/editor action, including scenarios where the unfiltered_html capability is ...

6.1CVSS4.6AI score0.00455EPSS
Exploits2References1Affected Software1
OpenVAS
OpenVAS
added 2023/03/16 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5955-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS9AI score0.01132EPSS
Exploits0References2
Circl
Circl
added 2021/11/03 6:23 a.m.6 views

CVE-2020-5955

creationtimestamp| type| source ---|---|--- 2021-11-03 06:23:17+00:00| seen| https://t.me/cibsecurity/31687...

9.8CVSS8.7AI score0.01368EPSS
Exploits0References1
CVE
CVE
added 2021/11/03 12:19 a.m.56 views

CVE-2020-5955

CVE-2020-5955 is a privilege-escalation vulnerability in the InsydeH2O BIOS/firmware stack, specifically in the Int15MicrocodeSmm component of InsydeInsydeH2O on Intel client chipsets. The issue arises from uncontrolled input to the SMI handler in the Int15MicrosoftSmm driver, enabling a caller t...

9.8CVSS9.4AI score0.01368EPSS
Exploits0References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2020/06/16 12:0 a.m.5 views

GitStack Authentication Bypass (CVE-2018-5955)

A vulnerability exists in smart-mobile-software GitStack. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...

7.5CVSS6.4AI score0.80982EPSS
Exploits9
Circl
Circl
added 2019/05/17 4:51 p.m.6 views

CVE-2019-5955

creationtimestamp| type| source ---|---|--- 2019-05-17 16:51:36+00:00| seen| https://t.me/cvemitreorg/45...

5.8CVSS6AI score0.01133EPSS
Exploits0References1
Rows per page
Query Builder