30 matches found
MINI-HRXR-9467-JFMV
Bulletin has no description...
CVE-2026-9467
A vulnerability was identified in debugmcp mcp-debugger up to 0.20.0. Impacted is the function handleGetSourceContext of the file src/server.ts. The manipulation leads to path traversal. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The...
CVE-2026-9467 debugmcp mcp-debugger server.ts handleGetSourceContext path traversal
A vulnerability was identified in debugmcp mcp-debugger up to 0.20.0. Impacted is the function handleGetSourceContext of the file src/server.ts. The manipulation leads to path traversal. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The...
MINI-V745-9467-Q35H
Bulletin has no description...
CVE-2018-9467
In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation...
ca.qc.ircm:plate-layout (=0.8), com.github.ilgun:expandingtextarea (=2.0) +100 more potentially affected by CVE-2025-9467 via com.vaadin:vaadin-server (>=8.0.0 <=8.28.1)
com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.1.8, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.5 and more Source cves: CVE-2025-9467 Source advisory: OSV:GHSA-9GFH-4FWJ-W3RJ...
biz.grundner.vaadin-in-spring:spring-vaadin (=1.0), cn.jhc:umeditor-vaadin-js (=0.0.1) +139 more potentially affected by CVE-2025-9467 via com.vaadin:vaadin-server (>=7.0.0 <=7.7.47)
com.vaadin:vaadin-server MAVEN version =7.0.0, =0.5, =1.1, =1.0, =1.3, =5.0.0, =5.0.0, =5.0.0, =5.2.4 and more Source cves: CVE-2025-9467 Source advisory: OSV:GHSA-9GFH-4FWJ-W3RJ...
ca.qc.ircm:plate-layout (=0.8), com.github.ilgun:expandingtextarea (=2.0) +100 more potentially affected by CVE-2025-9467 via com.vaadin:vaadin-server (>=8.0.0 <=8.28.1)
com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.1.8, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.0, =5.0.5 and more Source cves: CVE-2025-9467 Source advisory: SNYK:JAVA-COMVAADIN-12496925...
biz.grundner.vaadin-in-spring:spring-vaadin (=1.0), cn.jhc:umeditor-vaadin-js (=0.0.1) +139 more potentially affected by CVE-2025-9467 via com.vaadin:vaadin-server (>=7.0.0 <=7.7.47)
com.vaadin:vaadin-server MAVEN version =7.0.0, =0.5, =1.1, =1.0, =1.3, =5.0.0, =5.0.0, =5.0.0, =5.2.4 and more Source cves: CVE-2025-9467 Source advisory: SNYK:JAVA-COMVAADIN-12496925...
CVE-2025-9467
creationtimestamp| type| source ---|---|--- 2025-09-04 07:28:14+00:00| seen| Telegram/AbxEel7Kd4BeOsrZC1V8cphwUvIGXhK4rZsAcTyTZE0f2Gc...
MAL-2025-9467 Malicious code in @taktikangea/quisquam-repudiandae-eligendi (npm)
The package @taktikangea/quisquam-repudiandae-eligendi was found to contain malicious code...
CVE-2020-9467
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
CVE-2015-9467
The broken-link-manager plugin before 0.5.0 for WordPress has wpslDelURL or wpslEditURL SQL injection via the url parameter...
CVE-2018-9467
creationtimestamp| type| source ---|---|--- 2024-11-20 02:02:33+00:00| seen| https://t.me/cvedetector/11555 2026-06-21 12:07:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mosdipjdv22m...
CVE-2018-9467
In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9467
In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2018-9467
In the getHost function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect security decisions with no additional execution privileges needed. User interaction is not needed for exploitation...
Palo Alto Expedition < 1.2.96 Multiple Vulnerabilties
Palo Alto Expedition versions before 1.2.96 suffer from multiple vulnerabilities: - An unauthenticated OS command Injection vulnerability through the /API/convertCSVtoParquet.php endpoint CVE-2024-9264 - An authenticated OS command injection vulnerability CVE-2024-9464 - An unauthenticated SQL...
CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Wednesday added a critical security flaw impacting Fortinet products to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2024-23113 CVSS score: 9.8, relates ...
CVE-2024-9467
creationtimestamp| type| source ---|---|--- 2024-10-09 19:50:22+00:00| seen| https://t.me/cvedetector/7508 2024-10-10 12:00:25+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus24/2024 2024-10-10 13:17:11+00:00| published-proof-of-concept| https://t.me/truesecator/6304...