Lucene search
+L

41 matches found

wolfi
wolfi
added 2026/07/03 2:16 p.m.22 views

CVE-2026-9828 vulnerabilities

Vulnerabilities for packages: nextflow, keycloak-config-cli, sonar-scanner-cli, cassandra-reaper, zookeeper, cassandra, akhq, kserve-modelmesh, management-api-for-apache-cassandra-5.0...

6.3CVSS6.1AI score0.0037EPSS
Exploits0
osv
osv
added 2026/07/01 3:39 p.m.4 views

ECHO-68CA-4C02-9828

Bulletin has no description...

6.5CVSS5.7AI score0.00242EPSS
Exploits0References2
opensuse
opensuse
added 2026/06/14 12:0 a.m.7 views

logback-1.5.34-2.1 on GA media (moderate)

logback-1.5.34-2.1 on GA media Announcement ID: openSUSE-SU-2026:11016-1 Rating: moderate Cross-References: CVE-2026-9828 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the logback-1.5.34-2.1...

6.3CVSS5.3AI score0.0037EPSS
Exploits0
nessus
nessus
added 2026/05/29 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-9828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core HardenedObjectInputStream logback-core modules allows Object Injection albei...

6.3CVSS6.5AI score0.0037EPSS
Exploits0References3
osv
osv
added 2026/05/28 3:44 p.m.6 views

MINI-MQXM-9828-9JG8

Bulletin has no description...

4.3CVSS5.7AI score0.00187EPSS
Exploits0
nvd
nvd
added 2026/05/28 2:16 p.m.19 views

CVE-2026-9828

Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core HardenedObjectInputStream logback-core modules allows Object Injection albeit heavily restricted. More precisely, an attacker able to influence serialized data sent to SimpleSocketServer or SimpleSSLSocketServer c...

6.3CVSS0.0037EPSS
Exploits0References1
circl
circl
added 2025/09/02 8:9 p.m.15 views

CVE-2025-9828

creationtimestamp| type| source ---|---|--- 2025-09-02 20:09:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxuwcph4mp27...

6.3CVSS5.9AI score0.00315EPSS
Exploits1References1
osv
osv
added 2025/08/14 6:52 p.m.4 views

MAL-2025-9828 Malicious code in @zalastax/nolb-_bin (npm)

The package @zalastax/nolb-bin was found to contain malicious code...

7.2AI score
Exploits0
redhatcve
redhatcve
added 2025/05/22 4:56 p.m.10 views

CVE-2020-9828

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A remote attacker may be able to leak sensitive user information...

7.5CVSS5.8AI score0.01161EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 2:55 a.m.11 views

CVE-2017-9828

'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote attackers to execute any shell command as root via a crafted HTTP request. This vulnerability is already verified on VIVOTEK Network Camera...

10CVSS7.5AI score0.82455EPSS
Exploits1References1
nessus
nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-9828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file. CVE-2014-9828 Note that Nessus relies on the presence of...

8.8CVSS7.6AI score0.01946EPSS
Exploits0References2
nvd
nvd
added 2024/11/21 11:15 a.m.44 views

CVE-2024-9828

The Taskbuilder WordPress plugin before 3.0.5 does not sanitize user input into the 'loadorders' parameter and uses it in a SQL statement, allowing high privilege users such as admin to perform SQL Injection attacks...

4.1CVSS0.00491EPSS
Exploits1References1
cve
cve
added 2024/11/21 6:0 a.m.62 views

CVE-2024-9828

CVE-2024-9828 affects the Taskbuilder WordPress plugin before 3.0.5. The root cause is failure to sanitize the load_orders input, which is used in a SQL statement, enabling high-privilege users (e.g., admins) to perform SQL Injection. The vulnerability enables partial impact because only input ha...

4.1CVSS4.8AI score0.00491EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2024/11/21 6:0 a.m.53 views

CVE-2024-9828 Taskbuilder < 3.0.5 - Admin+ SQL Injection

The Taskbuilder WordPress plugin before 3.0.5 does not sanitize user input into the 'loadorders' parameter and uses it in a SQL statement, allowing high privilege users such as admin to perform SQL Injection attacks...

0.00491EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/11/21 6:0 a.m.12 views

CVE-2024-9828 Taskbuilder < 3.0.5 - Admin+ SQL Injection

The Taskbuilder WordPress plugin before 3.0.5 does not sanitize user input into the 'loadorders' parameter and uses it in a SQL statement, allowing high privilege users such as admin to perform SQL Injection attacks...

7.8AI score0.00491EPSS
Exploits1References1
patchstack
patchstack
added 2024/11/21 12:0 a.m.15 views

WordPress Taskbuilder Plugin < 3.0.5 is vulnerable to SQL Injection

Software Taskbuilder Type Plugin Vulnerable versions 3.0.5 Fixed in 3.0.5 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-9828 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 2a9c798f6792 Credits Ryoma Yamada Required privilege Administrator Published ...

4.1CVSS7.2AI score0.00491EPSS
Exploits1References3Affected Software1
openvas
openvas
added 2023/03/08 12:0 a.m.20 views

Debian: Security Advisory (DLA-799-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.2AI score0.02131EPSS
Exploits4References3
susecve
susecve
added 2023/02/15 5:24 a.m.2 views

SUSE CVE-2014-9828

coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file...

8.8CVSS7.1AI score0.01946EPSS
Exploits0References10
nessus
nessus
added 2022/09/22 12:0 a.m.36 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9828)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9828 advisory. - netfilter: nftables: do not allow RULEID to refer to another chain Thadeu Lima de Souza Cascardo Orabug: 34495567 CVE-2022-2586 - netfilter:...

7.8CVSS7.3AI score0.12746EPSS
Exploits8References6
cve
cve
added 2020/10/22 5:53 p.m.80 views

CVE-2020-9828

CVE-2020-9828 is an out-of-bounds read in the CoreBluetooth component of macOS (Catalina family). The vulnerability was addressed by Apple via input-validation enhancements, with a fixed release in macOS Catalina 10.15.4 Security Update 2020-002. The Apple entry attributes the issue to Jianjun Da...

7.5CVSS6.5AI score0.01161EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder