Lucene search
K

49 matches found

RedhatCVE
RedhatCVE
added 2026/06/07 2:59 p.m.15 views

CVE-2026-9658

Plack::Middleware::Security::Common versions before 0.13.1 for Perl did not block header injections in request paths. The header injection rule was ineffective at blocking header injections in the request paths unless they were double-encoded, for example, GET /path\r\nHTTP/1.1\r\nHost:...

7.3CVSS5.4AI score0.00226EPSS
Exploits0References1
Circl
Circl
added 2026/05/28 9:33 p.m.11 views

CVE-2026-9658

creationtimestamp| type| source ---|---|--- 2026-05-28 21:33:02+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mmwxwk62fg2u...

7.3CVSS5.8AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 10:1 p.m.4 views

MINI-6R55-9658-4885

Bulletin has no description...

5.7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0251

Malware in sbrugna...

5.3CVSS5.2AI score0.01527EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-9658

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Checkstyle before 8.18 loads external DTDs by default. CVE-2019-9658 Note that Nessus relies on the presence of the package as reported by the vendor...

5.3CVSS5.5AI score0.03676EPSS
Exploits0References2
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-9658 Malicious code in @warnermediacode/wme-theme-gelatap (npm)

The package @warnermediacode/wme-theme-gelatap was found to contain malicious code...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.10 views

RHEL 9 : perl-File-Find-Rule (RHSA-2025:9658)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:9658 advisory. File::Find::Rule is a friendlier interface to File::Find. It allows you to build rules which specify the desired files and directories. Security Fixe...

8.8CVSS7.9AI score0.00736EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/03/09 8:33 a.m.9 views

CVE-2024-9658

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...

8.8CVSS7.2AI score0.0034EPSS
Exploits0References1
Circl
Circl
added 2025/03/07 8:34 a.m.7 views

CVE-2024-9658

creationtimestamp| type| source ---|---|--- 2025-03-07 08:34:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6811 2025-03-07 11:48:59+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114120991612311147...

8.8CVSS7.8AI score0.0034EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/07 8:21 a.m.6 views

CVE-2024-9658 School Management System for Wordpress <= 93.0.0 - Authenticated (Student+) Account Takeover and Privilege Escalation

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...

8.8CVSS7.5AI score0.0034EPSS
Exploits0References2
CVE
CVE
added 2025/03/07 8:21 a.m.44 views

CVE-2024-9658

CVE-2024-9658 affects the WordPress plugin “School Management System for Wordpress” up to version 93.0.0. The root causes are improper identity validation during updates to user data (email/password) via mj_smgt_update_user() and mj_smgt_add_admission(), and a local file inclusion vulnerability. ...

8.8CVSS7.5AI score0.0034EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/03/07 8:21 a.m.13 views

CVE-2024-9658 School Management System for Wordpress <= 93.0.0 - Authenticated (Student+) Account Takeover and Privilege Escalation

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 93.0.0. This is due to the plugin not properly validating a user's identity prior to updating their details like email and password...

8.8CVSS0.0034EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-9658

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ttfaceloadkern function in sfnt/ttkern.c in FreeType before 2.5.4 enforces an incorrect minimum table length, which allows remote attackers to cause a denia...

7.5CVSS7.2AI score0.05059EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2015:0455-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.07687EPSS
Exploits21References23
NVD
NVD
added 2020/06/25 10:15 p.m.22 views

CVE-2020-9658

Adobe Audition versions 13.0.6 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution...

9.3CVSS0.0309EPSS
Exploits0References1
CVE
CVE
added 2020/06/25 9:9 p.m.71 views

CVE-2020-9658

CVE-2020-9658 affects Adobe Audition 13.0.6 and earlier. Root cause: an out-of-bounds write vulnerability that could allow arbitrary code execution on exploit. Impact is consistent with the advisory and CVE details; patched in Adobe APSB20-40 to version 13.0.7 for Windows/macOS. Other records ref...

9.3CVSS7.8AI score0.0309EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2020/06/17 12:0 a.m.22 views

Adobe Audition Multiple Code Execution Vulnerabilities (APSB20-40) - Windows

Adobe Audition is prone to multiple code execution vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

9.3CVSS7.9AI score0.03311EPSS
Exploits0References1
CVE
CVE
added 2020/02/22 12:0 a.m.162 views

CVE-2020-8860

CVE-2020-8860 affects Samsung Galaxy S10 devices with Exynos SoCs (G973FXXS3ASJA etc.). The flaw is a buffer overflow in the Call Control Setup messages, caused by inadequate validation of the length of user-supplied data copied into a fixed-length, stack-based buffer. This enables remote code ex...

8CVSS8.1AI score0.00714EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/02/13 12:0 a.m.42 views

Debian DLA-2099-1 : checkstyle security update

Security researchers from Snyk discovered that the fix for CVE-2019-9658 was incomplete. Checkstyle, a development tool to help programmers write Java code that adheres to a coding standard, was still vulnerable to XML External Entity XXE injection. For Debian 8 'Jessie', this problem has been...

5.3CVSS5.6AI score0.03676EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/02/11 12:0 a.m.46 views

Debian: Security Advisory (DLA-2099-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.3AI score0.01527EPSS
Exploits1References3
Rows per page
Query Builder