Lucene search
K

20 matches found

NVD
NVD
added yesterday5 views

CVE-2026-57788

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Edge-Themes Aalto aalto allows PHP Local File Inclusion.This issue affects Aalto: from n/a through = 1.8...

7.5CVSS0.00496EPSS
Exploits0References1
CVE
CVE
added yesterday14 views

CVE-2026-57788

CVE-2026-57788 describes an improper filename control in the Edge-Themes Aalto WordPress theme (Aalto

7.5CVSS6.1AI score0.00496EPSS
Exploits0References1
Cvelist
Cvelist
added yesterday7 views

CVE-2026-57788 WordPress Aalto theme <= 1.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Edge-Themes Aalto aalto allows PHP Local File Inclusion.This issue affects Aalto: from n/a through = 1.8...

7.5CVSS0.00496EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/07/02 1:31 p.m.5 views

WordPress Aalto theme <= 1.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Aalto versions = 1.8...

7.5CVSS5.9AI score0.00496EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2026/05/06 9:43 p.m.8 views

a-mailx (=0.1.0), a2 (>=0.1.0 <=0.3.17) +630 more potentially affected by CVE-2026-42557 via jupyterlab (>=0.31.1 <=4.5.6)

jupyterlab PYPI version =0.31.1, =0.1.0, =0.1.0b0, =0.1.0b0, =0.1.0b0, =0.1.0, =0.5.5, =2.0.0, =0.1.1, =0.1.0, =3.0.0, =4.33.0, =5.0.0 and more Source cves: CVE-2026-42557 Source advisory: OSV:GHSA-MQCG-5X36-VFCG...

9.6CVSS5.7AI score0.00386EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/24 12:0 a.m.17 views

SUSE SLED15: jctools / jctools-channels / jctools-experimental / jctools-javadoc / etc (SUSE-SU-2024:4407-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:4407-1 advisory. - CVE-2024-47535: Fixed unsafe reading of large environment files when Netty is loaded by a java...

5.5CVSS6.8AI score0.00408EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2024/12/24 12:0 a.m.6 views

openSUSE Security Advisory (SUSE-SU-2024:4407-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.5AI score0.00408EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2024/12/23 8:49 a.m.4 views

Security update for aalto-xml, flatten-maven-plugin, jctools, moditect, netty, netty-tcnative

This update for aalto-xml, flatten-maven-plugin, jctools, moditect, netty, netty-tcnative fixes the following issues: CVE-2024-47535: Fixed unsafe reading of large environment files when Netty is loaded by a java application can lead to a crash due to the JVM memory limit being exceeded in netty...

5.6CVSS7.6AI score0.00408EPSS
Exploits1References6
Openbugbounty
Openbugbounty
added 2023/07/13 6:54 p.m.18 views

web.lib.aalto.fi Cross Site Scripting vulnerability OBB-3513337

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/14 6:44 p.m.9 views

web.lib.aalto.fi Cross Site Scripting vulnerability OBB-3150644

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/12 2:33 a.m.6 views

aalto-wolfsburg.com Cross Site Scripting vulnerability OBB-1399300

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/08/01 11:38 p.m.10 views

infrabooking.aalto.fi Cross Site Scripting vulnerability OBB-1247295

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2019/12/08 11:49 a.m.11 views

designresearch.aalto.fi Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1033611 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

0.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.279 views

RHEL 7 : kernel (RHSA-2018:3083)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3083 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: A flaw named FragmentSmack was found i...

7.8CVSS7AI score0.24575EPSS
Exploits26References80
RedHat Linux
RedHat Linux
added 2018/09/25 8:51 p.m.386 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.7AI score0.7354EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/08/15 10:20 a.m.79 views

Important: Red Hat Security Advisory: redhat-virtualization-host security update

An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...

7.8CVSS7AI score0.7354EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/08/15 12:0 a.m.90 views

RHEL 6 : kernel (RHSA-2018:2390)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2390 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: Modern operating systems implement...

7.8CVSS7.1AI score0.7354EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2018/08/15 12:0 a.m.110 views

CentOS 6 : kernel (CESA-2018:2390) (Foreshadow)

An update for kernel is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS7AI score0.7354EPSS
Exploits1References10
Openbugbounty
Openbugbounty
added 2017/11/14 8:48 a.m.10 views

web.lib.aalto.fi XSS vulnerability

Open Bug Bounty ID: OBB-413920 Description| Value ---|--- Affected Website:| web.lib.aalto.fi Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

6.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/05/11 11:30 p.m.10 views

blogs.aalto.fi XSS vulnerability

Open Bug Bounty ID: OBB-152033 Description| Value ---|--- Affected Website:| blogs.aalto.fi Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder