Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:15 p.m.11 views

CVE-2026-2450

.NET misconfiguration: use of impersonation vulnerability in upKeeper Solutions upKeeper Instant Privilege Access allows Hijacking a Privileged Thread of Execution.This issue affects upKeeper Instant Privilege Access: through 1.5.0...

7.4CVSS5.4AI score0.00271EPSS
Exploits0References1
NVD
NVD
added 2026/06/02 10:16 a.m.12 views

CVE-2026-46718

Use of Externally-Controlled Input to Select Classes or Code 'Unsafe Reflection' vulnerability in Apache Calcite. This issue affects Apache Calcite: from 1.5.0 before 1.42. Users are recommended to upgrade to version 1.42, which fixes the issue...

6.5CVSS0.00436EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/21 7:34 a.m.37 views

CVE-2026-44053 Weak cryptography in DHCAST128 UAM

Netatalk 1.5.0 through 4.2.2 uses a broken cryptographic algorithm in the DHCAST128 UAM, which allows a remote attacker to obtain authentication credentials or impersonate a user via cryptanalytic attack...

7.4CVSS0.00301EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.10 views

PT-2026-42410

Name of the Vulnerable Software and Affected Versions Netatalk versions 1.5.0 through 4.2.2 Description The DHCAST128 UAM User Authentication Module uses a broken cryptographic algorithm. This allows a remote attacker to perform a cryptanalytic attack to obtain authentication credentials or...

7.4CVSS5.8AI score0.00301EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/04/22 2:31 p.m.22 views

@saltcorn/admin-models (>=1.5.0 <=1.5.0-rc.2), @saltcorn/base-plugin (>=1.5.0 <=1.5.0-rc.2) +5 more potentially affected by unknown CVE via @saltcorn/data (>=1.5.0-beta.0 <=1.5.0)

@saltcorn/data NPM version =1.5.0-beta.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0-rc.2 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNDATA-16318351...

5.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/08 8:30 a.m.5 views

CVE-2026-39698

Missing Authorization vulnerability in PublisherDesk The Publisher Desk ads.txt the-publisher-desk-ads-txt allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Publisher Desk ads.txt: from n/a through = 1.5.0...

5.3CVSS5.9AI score0.00156EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:33 p.m.7 views

CVE-2023-31101

Insecure Default Initialization of Resource Vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.6.0. Users registered in InLong who joined later can see deleted users' data. Users are advised to upgrade to Apache InLong's 1.7.0 or...

6.5CVSS6.9AI score0.0111EPSS
Exploits0References1
OSV
OSV
added 2025/10/11 1:20 p.m.5 views

OESA-2025-2376 cjson security update

cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - %description devel The cjson-devel package contains libraries and header files for developing...

9.8CVSS7.1AI score0.00693EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.5 views

Termix 安全漏洞

Termix is a server management platform for Karmaa individual developers. A security vulnerability exists in Termix 1.5.0 and earlier versions, which stems from an improperly configured Nginx reverse proxy that causes the backend to obtain the proxy IP instead of the client IP, potentially leaking...

9.2CVSS6.7AI score0.0465EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/08/10 12:0 a.m.9 views

PT-2025-32460 · Portabilis · Portabilis I-Diario

Name of the Vulnerable Software and Affected Versions: Portabilis i-Diario versions up to 1.5.0 Description: A cross-site scripting issue exists in Portabilis i-Diario. The issue affects an unknown functionality of the /registros-de-conteudos-por-disciplina/ file within the Registro das atividade...

5.1CVSS6.5AI score0.00264EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.5 views

PT-2024-28210 · Siteground · Siteground Security

Name of the Vulnerable Software and Affected Versions: SiteGround Security versions 1.5.0 and earlier Description: The issue is related to a Missing Authorization vulnerability in SiteGround Security, which allows exploiting incorrectly configured access control security levels. Recommendations:...

5.4CVSS6.5AI score0.00391EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/01 12:0 a.m.4 views

PT-2023-22350 · Pandao · Editor.Md

Name of the Vulnerable Software and Affected Versions: pandao editor.md versions 1.5.0 and earlier Description: The issue allows attackers to inject arbitrary web script or HTML via crafted markdown text, which can lead to Cross Site Scripting XSS attacks. This enables attackers to execute...

6.1CVSS6.1AI score0.00429EPSS
Exploits1References9
CNVD
CNVD
added 2018/09/21 12:0 a.m.5 views

Pivotal Cloud Foundry Elastic Runtime Information Disclosure Vulnerability (CNVD-2018-19741)

Pivotal Cloud Foundry PCF is an open source Platform-as-a-Service PaaS cloud computing platform from Pivotal Software that provides container scheduling, continuous delivery, and automated service deployment.Elastic Runtime is a runtime environment for Pivotal Cloud Foundry. Elastic Runtime is a...

5.9CVSS5.5AI score0.01249EPSS
Exploits0References1
Rows per page
Query Builder