Lucene search
K

21 matches found

OSV
OSV
added 2026/07/01 10:22 a.m.1 views

CGA-6WW2-7682-R667

Bulletin has no description...

7.5CVSS7.1AI score0.00426EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.4 views

RockyLinux 10 : openexr (RLSA-2026:7682)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7682 advisory. openexr: OpenEXR: Arbitrary code execution via integer overflow in EXR file processing CVE-2026-27622 Tenable has extracted the preceding description block...

8.4CVSS6.3AI score0.00201EPSS
Exploits2References3
OSV
OSV
added 2026/04/13 10:7 a.m.3 views

RHSA-2026:7682 Red Hat Security Advisory: openexr security update

Bulletin has no description...

7.4CVSS5.7AI score0.00201EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2026/04/13 12:0 a.m.3 views

Oracle Linux 10 : openexr (ELSA-2026-7682)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-7682 advisory. 3.1.10-8.1 - fix CVE-2026-27622 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has no...

8.4CVSS5.9AI score0.00201EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2025/08/20 12:0 a.m.2 views

Ubuntu: Security Advisory (USN-7682-6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.00174EPSS
Exploits0References2
Circl
Circl
added 2024/08/12 3:56 p.m.8 views

CVE-2024-7682

creationtimestamp| type| source ---|---|--- 2024-08-12 15:56:10+00:00| seen| https://t.me/cvedetector/2828...

9.8CVSS7.3AI score0.00655EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/08/12 12:31 a.m.53 views

CVE-2024-7682 code-projects Job Portal rw_i_nat.php sql injection

A vulnerability was found in code-projects Job Portal 1.0. It has been rated as critical. This issue affects some unknown processing of the file rwinat.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the publ...

7.5CVSS0.00655EPSS
Exploits1References4
CVE
CVE
added 2024/08/12 12:31 a.m.71 views

CVE-2024-7682

CVE-2024-7682 affects code-projects Job Portal 1.0. The vulnerability is a SQL injection in rw_i_nat.php triggered by the id parameter, potentially exploitable remotely. Public disclosures exist, but the connected documents do not specify a fixed patch version. Recommended mitigations from the so...

9.8CVSS7.5AI score0.00655EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2020/07/25 9:15 a.m.22 views

CVE-2020-7682

This affects all versions of package marked-tree. There is no path sanitization in the path provided at fs.readFile in index.js...

7.5CVSS7.5AI score0.01738EPSS
Exploits1References1
CVE
CVE
added 2020/07/25 8:35 a.m.50 views

CVE-2020-7682

CVE-2020-7682 concerns all versions of the npm package marked-tree, with no path sanitization in fs.readFile called from index.js. The connected Snyk entry confirms a Directory Traversal vulnerability that can read arbitrary files outside the web root and provides a PoC demonstrating traversal vi...

7.5CVSS7.5AI score0.01738EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/07/25 8:35 a.m.22 views

CVE-2020-7682 Directory Traversal

This affects all versions of package marked-tree. There is no path sanitization in the path provided at fs.readFile in index.js...

7.5CVSS7.5AI score0.01738EPSS
Exploits1References1
CVE
CVE
added 2018/06/22 10:0 p.m.38 views

CVE-2018-7682

Micro Focus Solutions Business Manager (SBM) prior to version 11.4 is affected by a cross-domain call vulnerability affecting SBM RESTful services. The CVE entry notes that an attacker could invoke SBM RESTful endpoints across domains, implying potential information exposure or unintended access ...

6.5CVSS6.3AI score0.0084EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2017/07/14 3:0 p.m.75 views

CVE-2017-7682

Summary: Apache OpenMeetings 3.2.0 is described as vulnerable to parameter manipulation attacks, enabling access to restricted areas (CVE-2017-7682). The Connected documents corroborate the same issue across multiple feeds (NVD, GHSA, OSV, CNVD, CNVD, etc.). Affected product/version: OpenMeetings...

8.2CVSS8.1AI score0.01642EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2017/05/11 2:30 p.m.3 views

CVE-2016-7682

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none...

5.8AI score
Exploits0References1
CVE
CVE
added 2017/05/11 2:1 p.m.27 views

CVE-2016-7682

CVE-2016-7682 entry is rejected/not used and does not represent an active vulnerability.

6.6AI score
Exploits0
securityvulns
securityvulns
added 2015/10/26 12:0 a.m.109 views

CVE-2015-7682: Multiple Blind SQL Injections in Pie Register WordPress Plugin

Details ================ Software: Pie Register Version: 2.0.18 Homepage: https://github.com/GTSolutions/Pie-Register CVE: CVE-2015-7682 Pending CVSS: 3.5 Low; AV:N/AC:M/Au:S/C:P/I:N/A:N CWE: CWE-89 Description ================ Two blind SQL injection vulnerabilities in Pie Register 2.0.18 allow...

6.5CVSS1AI score0.01383EPSS
Exploits3
Cvelist
Cvelist
added 2015/10/16 8:0 p.m.34 views

CVE-2015-7682

Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the 1 selectinvitaioncodebulkoption or 2 invidelid parameter in the pie-invitation-codes page to...

8.5AI score0.01383EPSS
Exploits3References4
CVE
CVE
added 2015/10/16 8:0 p.m.55 views

CVE-2015-7682

CVE-2015-7682 concerns the Pie Register WordPress plugin (version 2.0.18 or earlier). The connected sources confirm two blind SQL injection vulnerabilities in pie-register/pie-register.php, exploitable via POST parameters: “select_invitaion_code_bulk_option” and “invi_del_id” on the pie-invitatio...

6.5CVSS8.7AI score0.01383EPSS
Exploits3References4Affected Software1
Packet Storm
Packet Storm
added 2015/10/12 12:0 a.m.39 views

WordPress Pie Register 2.0.18 SQL Injection

Details ================ Software: Pie Register Version: 2.0.18 Homepage: https://github.com/GTSolutions/Pie-Register CVE: CVE-2015-7682 Pending CVSS: 3.5 Low; AV:N/AC:M/Au:S/C:P/I:N/A:N CWE: CWE-89 Description ================ Two blind SQL injection vulnerabilities in Pie Register 2.0.18 allow...

6.5CVSS0.3AI score0.01383EPSS
Exploits3
CVE
CVE
added 2014/10/21 10:0 a.m.43 views

CVE-2014-7682

CVE-2014-7682 concerns the GR8! TV Android app (com.magzter.greighttv), version 3.0, which does not verify X.509 certificates from SSL servers. This flaw allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Affected software is the GR8! T...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder