Lucene search
K

43 matches found

NVD
NVD
added 2026/05/08 4:16 a.m.15 views

CVE-2026-8129

A vulnerability was determined in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file wishlist.php. Executing a manipulation of the argument delwlistid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly...

7.5CVSS0.00254EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:30 a.m.5 views

CVE-2026-8129

A vulnerability was determined in SourceCodester SUP Online Shopping 1.0. The impacted element is an unknown function of the file wishlist.php. Executing a manipulation of the argument delwlistid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly...

7.5CVSS6.9AI score0.00254EPSS
Exploits0References5Affected Software1
vulnersOsv
vulnersOsv
added 2025/10/21 3:9 p.m.13 views

@certd/commercial-core (>=1.25.9 <=1.41.2), @certd/lib-server (>=1.36.25 <=1.41.2) +32 more potentially affected by CVE-2025-62595 +1 more via koa (=2.16.2)

koa NPM version =2.16.2 is affected by a known vulnerability. The following packages have a transitive dependency on koa and may be impacted: - @certd/commercial-core =1.25.9, =1.36.25, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =0.19.3, =3.20.11,...

6.1CVSS5.7AI score0.0028EPSS
Exploits2
vulnersOsv
vulnersOsv
added 2025/07/29 7:11 p.m.7 views

@freon4dsl/server (>=2.0.0-beta.1 <=2.0.0-beta.5), @tachybase/engine (>=1.0.21 <=1.1.2) +3 more potentially affected by CVE-2025-54420 +1 more via koa (=3.0.0)

koa NPM version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on koa and may be impacted: - @freon4dsl/server =2.0.0-beta.1, =1.0.21, =1.3.7, =1.4.0, =15.4.0, =15.4.2 Source cves: CVE-2025-54420, CVE-2025-8129 Source advisory:...

6.1CVSS5.8AI score0.00231EPSS
Exploits1
Cvelist
Cvelist
added 2025/07/25 4:2 a.m.40 views

CVE-2025-8129 KoaJS Koa HTTP Header response.js back redirect

A vulnerability, which was classified as problematic, was found in KoaJS Koa up to 3.0.0. Affected is the function back in the library lib/response.js of the component HTTP Header Handler. The manipulation of the argument Referrer leads to open redirect. It is possible to launch the attack...

5.1CVSS0.00231EPSS
Exploits1References5
CVE
CVE
added 2025/07/25 4:2 a.m.39 views

CVE-2025-8129

CVE-2025-8129 affects Koa (Koa up to v3.0.0). The vulnerability lies in lib/response.js where manipulation of Referrer can trigger an open redirect. Exploitation is remote and the exploit has been disclosed publicly. Remediation per public sources is to upgrade Koa to a version that contains the ...

6.1CVSS3.8AI score0.00231EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 4:50 p.m.7 views

CVE-2020-8129

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

9.8CVSS7.5AI score0.02943EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-8129

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.0.3 allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via a crafted TIFF image, as...

8.8CVSS7AI score0.03821EPSS
Exploits1References2
Circl
Circl
added 2024/08/24 7:3 p.m.9 views

CVE-2024-8129

creationtimestamp| type| source ---|---|--- 2024-08-24 19:03:19+00:00| seen| https://t.me/cvedetector/4058...

9.8CVSS6.9AI score0.2285EPSS
Exploits1References1
Circl
Circl
added 2024/02/04 2:41 p.m.8 views

CVE-2019-8129

creationtimestamp| type| source ---|---|--- 2024-02-04 14:41:14+00:00| seen| https://t.me/ctinow/178831...

5.4CVSS5.5AI score0.00556EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2015-0112)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.05669EPSS
Exploits3References6
Cvelist
Cvelist
added 2021/03/01 11:8 p.m.11 views

CVE-2016-8129

...

Exploits0
NVD
NVD
added 2020/02/14 10:15 p.m.21 views

CVE-2020-8129

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

9.8CVSS9.7AI score0.02943EPSS
Exploits1References1
OSV
OSV
added 2020/02/14 10:15 p.m.16 views

CVE-2020-8129

An unintended require vulnerability in script-manager npm package version 0.8.6 and earlier may allow attackers to execute arbitrary code...

9.8CVSS7.5AI score
Exploits0References1
CVE
CVE
added 2020/02/14 9:28 p.m.128 views

CVE-2020-8129

Summary: CVE-2020-8129 affects the Node.js module script-manager (version 0.8.6 and earlier). The vulnerability arises from how the module loads code via dynamic require using a user-controlled path (execModulePath), which can cause arbitrary code execution on the server. Multiple sources (NVD, R...

9.8CVSS9.6AI score0.02943EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2017-1043)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.13722EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2017-1044)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.13722EPSS
Exploits8References2
CVE
CVE
added 2019/11/05 11:4 p.m.49 views

CVE-2019-8129

Magento exposes a stored XSS vulnerability (CVE-2019-8129) affecting Magento 2.2.x before 2.2.10 and 2.3.x before 2.3.3 or 2.3.2-p1. An authenticated user can inject a payload via translation strings. Impact is described as cross-site scripting with potential credential/session risk for affected ...

5.4CVSS5.2AI score0.00556EPSS
Exploits0References1Affected Software1
ALT Linux
ALT Linux
added 2019/04/09 12:0 a.m.91 views

Security fix for the ALT Linux 10 package libtiff version 4.0.10.0.57.f9fc01c3-alt1

April 9, 2019 Vladimir D. Seleznev 4.0.10.0.57.f9fc01c3-alt1 - Updated to v4.0.10-57-gf9fc01c3 ALT 36575, 34677. - Applied SUSE patches: + tiff-4.0.3-seek.patch; + tiff-4.0.3-compress-warning.patch; + tiff-CVE-2018-12900.patch. - Built with support of: + libjbig; + libwebp; + libzstd. - Fixes: +...

9.3CVSS8.5AI score0.25183EPSS
Exploits5
CVE
CVE
added 2018/05/09 7:0 p.m.123 views

CVE-2018-8129

Technical details about CVE-2018-8129 are not publicly available in the provided documents; no affected products, impact, or remediation are described beyond the general description. Monitor for updates.

5.3CVSS6.4AI score0.01309EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder