Lucene search
K

145 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 3 : drupal-6.30-1.AXS3 (AXSA:2014-234:01)

The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2014-234:01 advisory. Drupal is a free software package that allows an individual or a community of users to easily publish, manage and organize a wide variety of content ...

7.5CVSS6.7AI score0.03072EPSS
Exploits0References4
NVD
NVD
added 2026/01/14 3:16 p.m.9 views

CVE-2026-22239

The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable email sending API. Successful exploitation of this vulnerability could allow the...

10CVSS0.0028EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.10 views

Bluspark BLUVOYIX 安全漏洞

Bluspark BLUVOYIX is a digital supply chain management platform from US-based Bluspark, Inc. Bluspark BLUVOYIX suffers from a security vulnerability that stems from a flaw in the design of the email sending API, which could lead to an attacker sending unsolicited emails to anyone on behalf of the...

10CVSS6.6AI score0.0028EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/14 12:0 a.m.6 views

PT-2026-2862

The vulnerability exists in BLUVOYIX due to design flaws in the email sending API. An unauthenticated remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to the vulnerable email sending API. Successful exploitation of this vulnerability could allow the...

10CVSS7AI score0.0028EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.6 views

CVE-2021-22863

An improper access control vulnerability was identified in the GitHub Enterprise Server GraphQL API that allowed authenticated users of the instance to modify the maintainer collaboration permission of a pull request without proper authorization. By exploiting this vulnerability, an attacker woul...

8.1CVSS6.8AI score0.00968EPSS
Exploits0References1
Amazon
Amazon
added 2026/01/05 12:0 a.m.5 views

Medium: python-urllib3

Issue Overview: urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage an...

8.9CVSS6.8AI score0.00622EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/12/19 12:0 a.m.5 views

Synology BeeStation (BSM) Multiple Vulnerabilities (Synology_SA_24_21) - Active Check

Synology BeeStation BSM is prone to multiple vulnerabilities in the Synology Drive Server. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

7.5CVSS5.4AI score0.24866EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/06 12:0 a.m.11 views

PT-2025-49332

The Listar – Directory Listing & Classifieds WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '/wp-json/listar/v1/place/save' REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for...

4.3CVSS5.1AI score0.00158EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/18 3:41 a.m.5 views

CVE-2025-6949

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A critical authorization flaw in the API allows an authenticated, low-privileged user to create a new administrator account, including accounts with usernames identical to...

9.3CVSS7AI score0.00479EPSS
Exploits0References1
NVD
NVD
added 2025/10/17 3:15 a.m.3 views

CVE-2025-6894

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in the API authorization logic of the affected device allows an authenticated, low-privileged user to execute the administrative ping function, which is restricted ...

5.3CVSS0.00532EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 3:22 p.m.22 views

CVE-2025-58903

CVE-2025-58903 affects Fortinet FortiOS FortiOS API in 7.6.0–7.6.3 and earlier than 7.4.8. It is an Unchecked Return Value (CWE-252) vulnerability that, when exploited by an authenticated user via a crafted request, can trigger a Null Pointer Dereference and crash the HTTP daemon, enabling a deni...

4.9CVSS6.3AI score0.00568EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-3671

Malware in sbrugna...

4.3CVSS6.4AI score0.01458EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-7928

Malware in sbrugna...

4.3CVSS5AI score0.01334EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-5997

Malware in sbrugna...

9.3CVSS6.5AI score0.0316EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-4047

Malware in sbrugna...

4.3CVSS6.2AI score0.01271EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-1442

Malware in sbrugna...

5.3CVSS5.5AI score0.01162EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-11729

Malware in sbrugna...

7.5CVSS7.5AI score0.0108EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-42529

Malicious code in bioql PyPI...

5.9CVSS5.9AI score0.00433EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-37719

Malicious code in bioql PyPI...

5.5CVSS5AI score0.00377EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47127

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.02585EPSS
Exploits0References2
Rows per page
Query Builder