Lucene search
+L

78 matches found

osv
osv
added 2025/11/02 2:25 a.m.1 views

MINI-9XG9-4XCX-8866

Bulletin has no description...

7.5CVSS6.6AI score0.00361EPSS
Exploits0
nessus
nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-8866

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is...

6.5CVSS6.2AI score0.09579EPSS
Exploits4References2
osv
osv
added 2025/08/23 9:27 a.m.1 views

CGA-V848-8866-F5PX

Bulletin has no description...

9.8CVSS9.4AI score0.05999EPSS
Exploits0
circl
circl
added 2025/08/11 6:6 p.m.17 views

CVE-2025-8866

creationtimestamp| type| source ---|---|--- 2025-08-11 18:06:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lw5f6wzkny2e...

5.1CVSS4.8AI score0.00224EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 5:11 p.m.6 views

CVE-2020-8866

This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The specific flaw exists within add.php. The issue results from the lack of proper validation of...

6.5CVSS6.9AI score0.09579EPSS
Exploits4References1
circl
circl
added 2024/09/15 5:4 a.m.6 views

CVE-2024-8866

creationtimestamp| type| source ---|---|--- 2024-09-15 05:04:18+00:00| seen| https://t.me/cvedetector/5678...

6.9CVSS4.5AI score0.00592EPSS
Exploits1References1
osv
osv
added 2024/09/15 2:15 a.m.4 views

CVE-2024-8866

A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

6.1CVSS3.8AI score0.00592EPSS
Exploits1References4
openvas
openvas
added 2023/03/08 12:0 a.m.45 views

Debian: Security Advisory (DLA-499-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.19455EPSS
Exploits15References2
susecve
susecve
added 2023/02/15 5:25 a.m.3 views

SUSE CVE-2014-8866

The compatibility mode hypercall argument translation in Xen 3.3.x through 4.4.x, when running on a 64-bit hypervisor, allows local 32-bit HVM guests to cause a denial of service host crash via vectors involving altering the high halves of registers while in 64-bit mode...

4.7CVSS6.2AI score0.00432EPSS
Exploits0References10
nessus
nessus
added 2023/01/23 12:0 a.m.31 views

RHEL 8 : Red Hat OpenStack Platform 16.1.9 (python-XStatic-Angular) (RHSA-2022:8866)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8866 advisory. Angular JavaScript library packaged for setuptools easyinstall / pip. Security Fixes: Prototype pollution in merge function could result in code...

7.5CVSS7.2AI score0.02179EPSS
Exploits1References5
openvas
openvas
added 2021/06/09 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2016:1310-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.1AI score0.07287EPSS
Exploits4References7
openvas
openvas
added 2021/06/09 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2016:1277-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.19455EPSS
Exploits5References2
openvas
openvas
added 2021/06/09 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2016:3256-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.04613EPSS
Exploits3References8
openvas
openvas
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2016:3258-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.9AI score0.04613EPSS
Exploits3References8
openvas
openvas
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2015:0022-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.6AI score0.02221EPSS
Exploits0References2
checkpoint_advisories
checkpoint_advisories
added 2020/03/26 12:0 a.m.62 views

Horde Groupware PHP File Inclusion (CVE-2020-8866)

A file inclusion vulnerability exists in Horde Groupware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

4CVSS3.7AI score0.09579EPSS
Exploits4
nvd
nvd
added 2020/03/23 9:15 p.m.14 views

CVE-2020-8866

This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The specific flaw exists within add.php. The issue results from the lack of proper validation of...

6.5CVSS5.5AI score0.09579EPSS
Exploits4References3
cve
cve
added 2020/03/23 8:15 p.m.78 views

CVE-2020-8866

CVE-2020-8866 affects Horde Groupware Webmail Edition 5.2.22, with a flaw in add.php where insufficient validation of user-supplied data allows remote attackers (authenticated) to upload arbitrary files. This can enable code execution in the www-data context when combined with other vulnerabiliti...

6.5CVSS6.5AI score0.09579EPSS
Exploits4References3Affected Software2
nessus
nessus
added 2020/03/18 12:0 a.m.21 views

Fedora 30 : php-horde-Horde-Form (2020-a69f99bc67)

HordeForm 2.0.20 - mjr SECURITY: Prevent ability to specify temporary filename CVE-2020-8866, Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

6.5CVSS5.3AI score0.09579EPSS
Exploits4References2
nessus
nessus
added 2020/03/18 12:0 a.m.34 views

Fedora 31 : php-horde-Horde-Form (2020-a55b70b4ab)

HordeForm 2.0.20 - mjr SECURITY: Prevent ability to specify temporary filename CVE-2020-8866, Reported By: Andrea Cardaci working with Trend Micro Zero Day Initiative. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

6.5CVSS5.3AI score0.09579EPSS
Exploits4References2
Rows per page
Query Builder