Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/05/07 3:49 a.m.8 views

CVE-2026-40982

Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack. Spring Cloud Config 3.1.x: affected from...

9.1CVSS5.9AI score0.00727EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/21 12:50 a.m.6 views

CVE-2026-39386

Neko is a a self-hosted virtual browser that runs in Docker and uses WebRTC In versions 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1, any authenticated user can immediately obtain full administrative control of the entire Neko instance member management, room settings, broadcast control, session...

8.8CVSS5.7AI score0.00437EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/10/14 10:15 a.m.5 views

CVE-2025-40765

A vulnerability has been identified in TeleControl Server Basic V3.1 All versions = V3.1.2.2 V3.1.2.3. The affected application contains an information disclosure vulnerability. This could allow an unauthenticated remote attacker to obtain password hashes of users and to login to and perform...

9.3CVSS5.8AI score0.00508EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28121

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00298EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/15 12:0 a.m.6 views

PT-2024-21728 · Unknown · Configure Smtp

Name of the Vulnerable Software and Affected Versions: Configure SMTP versions n/a through 3.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means an attacker can inject...

7.1CVSS9AI score0.00354EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2021/04/08 6:11 p.m.3 views

aether-sdk (>=1.3.4 <=1.3.8), alcali (=3003.1.0) +232 more potentially affected by CVE-2021-28658 via django (>=3.1.0 <=3.1.7)

django PYPI version =3.1.0, =1.3.4, =0.2.0, =0.16.12, =0.8.8, =0.5.0, =0.1.0, =1.0.0b3, =2.2.0, =0.0.1, =2.11.0, =2.12.6 and more Source cves: CVE-2021-28658 Source advisory: OSV:GHSA-XGXC-V2QG-CHMH...

5.3CVSS6.6AI score0.03865EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2013/02/08 8:55 p.m.1 views

CVE-2013-0189

cachemgr.cgi in Squid 3.1.x and 3.2.x, possibly 3.1.22, 3.2.4, and other versions, allows remote attackers to cause a denial of service resource consumption via a crafted request. NOTE: this issue is due to an incorrect fix for CVE-2012-5643, possibly involving an incorrect order of arguments or...

5CVSS5.7AI score0.23026EPSS
Exploits1References19
Rows per page
Query Builder