Lucene search
K

98 matches found

OSV
OSV
added 2026/04/11 8:47 p.m.3 views

MINI-8735-WJJ3-F93P

Bulletin has no description...

8.8CVSS5.7AI score0.0034EPSS
Exploits0
OSV
OSV
added 2026/04/08 8:30 p.m.2 views

MINI-73HR-2H4Q-8735

Bulletin has no description...

7.5CVSS5.7AI score0.0064EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.422.b05-1.0.1.el7.AXS7 (AXSA:2024-8735:15)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8735:15 advisory. OpenJDK: RangeCheckElimination array index overflow 8323231 CVE-2024-21147 OpenJDK: potential UTF8 size overflow 8314794 CVE-2024-21131 OpenJDK:...

7.4CVSS8AI score0.01257EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-8735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the componen...

4.8CVSS5AI score0.00145EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/10 7:15 p.m.10 views

CVE-2025-8735

A flaw was found in cflow. The yylex function in c.c exhibits a null pointer dereference due to manipulation, allowing a local attacker to trigger a denial of service via crafted input. This condition arises from improper handling of lexical analysis data. The resulting null pointer dereference c...

4.8CVSS4.1AI score0.00145EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 1:24 a.m.8 views

CVE-2014-8735

The Bad Behavior module 6.x-2.x before 6.x-2.2216 and 7.x-2.x before 7.x-2.2216 for Drupal logs usernames and passwords, which allows remote authenticated users with the "administer bad behavior" permission to obtain sensitive information by reading a log file...

4CVSS6.1AI score0.01218EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-8735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13, iTunes for Windows 12.10.1, iCloud for Windows...

8.8CVSS8.1AI score0.01892EPSS
Exploits0References3
CVE
CVE
added 2024/11/22 5:33 a.m.55 views

CVE-2024-8735

CVE-2024-8735 – MailMunch – Grow your Email List (WordPress) is a reflected cross-site scripting vulnerability in the MailMunch plugin for WordPress, arising from the use of add_query_arg without proper escaping. It affects all versions up to and including 3.1.8. The flaw permits unauthenticated ...

6.1CVSS6AI score0.0048EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/22 5:33 a.m.15 views

CVE-2024-8735 MailMunch – Grow your Email List <= 3.1.8 - Reflected Cross-Site Scripting

The MailMunch – Grow your Email List plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 3.1.8. This makes it possible for unauthenticated attackers to inject arbitrary web...

6.1CVSS6.3AI score0.0048EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.13 views

WordPress MailMunch – Grow your Email List Plugin <= 3.1.8 is vulnerable to Cross Site Scripting (XSS)

Software MailMunch – Grow your Email List Type Plugin Vulnerable versions = 3.1.8 Fixed in 3.2.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8735 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 5f0fbbdecd42 Credits...

6.1CVSS5.6AI score0.0048EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.54 views

Apache Tomcat 8.0.0.RC1 < 8.0.39 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 8.0.39. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat8.0.39security-8 advisory. - Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before...

10CVSS7.4AI score0.92334EPSS
Exploits7References6
Tenable Nessus
Tenable Nessus
added 2024/05/23 12:0 a.m.60 views

Apache Tomcat 7.0.0 < 7.0.73 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 7.0.73. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat7.0.73security-7 advisory. - Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before...

10CVSS7.4AI score0.92334EPSS
Exploits7References6
Circl
Circl
added 2023/05/16 3:47 p.m.9 views

CVE-2016-8735

creationtimestamp| type| source ---|---|--- 2023-05-16 15:47:20+00:00| seen| https://t.me/theninjaway1337/1371 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:34:21+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971811 2025-02-06 02:41:39+00:00|...

9.8CVSS7.1AI score0.90338EPSS
Exploits1References7
VulnCheck KEV
VulnCheck KEV
added 2023/05/12 12:0 a.m.5 views

VulnCheck KEV: CVE-2016-8735

Apache Tomcat contains an unspecified vulnerability that allows for remote code execution if JmxRemoteLifecycleListener is used and an attacker can reach Java Management Extension JMX ports. This CVE exists because this listener wasn't updated for consistency with the Oracle patched issues...

9.8CVSS7.7AI score0.90338EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.158 views

K49820145: Apache Tomcat vulnerability CVE-2016-8735

Security Advisory Description Remote code execution is possible with Apache Tomcat before 6.0.48, 7.x before 7.0.73, 8.x before 8.0.39, 8.5.x before 8.5.7, and 9.x before 9.0.0.M12 if JmxRemoteLifecycleListener is used and an attacker can reach JMX ports. The issue exists because this listener...

9.8CVSS8.4AI score0.90338EPSS
Exploits1Affected Software2
vulnersOsv
vulnersOsv
added 2022/05/13 1:14 a.m.7 views

org.eclipse.che.lib:che-tomcat8-slf4j-logback (>=6.10.0 <=7.2.0), org.eclipse.che:assembly-main (>=6.10.0 <=7.2.0) +2 more potentially affected by CVE-2016-8735 via org.apache.tomcat:tomcat-catalina-jmx-remote (>=8.5.23 <=8.5.46)

org.apache.tomcat:tomcat-catalina-jmx-remote MAVEN version =8.5.23, =6.10.0, =6.10.0, =6.10.0, =12.0, =12.7 Source cves: CVE-2016-8735 Source advisory: OSV:GHSA-CW54-59PW-4G8C...

9.8CVSS7AI score0.90338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:14 a.m.6 views

net.stickycode.deploy:sticky-deployer-tomcat8 (=2.1), org.sakaiproject:sakai-dav-server (>=11.0 <=11.3) potentially affected by CVE-2016-8735 via org.apache.tomcat:tomcat-catalina-jmx-remote (>=8.0.20 <=8.0.32)

org.apache.tomcat:tomcat-catalina-jmx-remote MAVEN version =8.0.20, =11.0, =11.3 Source cves: CVE-2016-8735 Source advisory: OSV:GHSA-CW54-59PW-4G8C...

9.8CVSS7AI score0.90338EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:14 a.m.6 views

org.sakaiproject:sakai-dav-server (>=10.3 <=10.7), org.testatoo.container:testatoo-container-tomcat (>=1.0-rc1 <=1.0-rc2) potentially affected by CVE-2016-8735 via org.apache.tomcat:tomcat-catalina-jmx-remote (>=7.0.5 <=7.0.65)

org.apache.tomcat:tomcat-catalina-jmx-remote MAVEN version =7.0.5, =10.3, =1.0-rc1, =1.0-rc2 Source cves: CVE-2016-8735 Source advisory: OSV:GHSA-CW54-59PW-4G8C...

9.8CVSS7AI score0.90338EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.55 views

Mageia: Security Advisory (MGASA-2016-0417)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.90338EPSS
Exploits7References8
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2019:3044-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.12852EPSS
Exploits10References4
Rows per page
Query Builder