Lucene search
K

7 matches found

OSV
OSV
added 2026/04/01 9:37 a.m.4 views

CLEANSTART-2026-HX97842 Security fixes for CVE-2025-47911, CVE-2025-47913, CVE-2025-47914, CVE-2025-54410, CVE-2025-58181, CVE-2025-58190, CVE-2025-61727, CVE-2025-61729, CVE-2025-68121, CVE-2026-1229, CVE-2026-24051, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 2.2.2-r6, 2.3.2-r4, 2.4.4-r2, 2.5.0-r0, 2.5.0-r1

Multiple security vulnerabilities affect the openbao-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.9AI score0.01557EPSS
Exploits6References33
OSV
OSV
added 2025/08/11 5:59 p.m.5 views

GO-2025-3855 OpenBao Userpass and LDAP User Lockout Bypass in github.com/openbao/openbao

OpenBao Userpass and LDAP User Lockout Bypass in github.com/openbao/openbao. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please...

5.3CVSS7AI score0.00394EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/05/30 12:0 a.m.5 views

PT-2023-19041 · Stormshield · Stormshield Endpoint Security

Name of the Vulnerable Software and Affected Versions: Stormshield Endpoint Security versions 2.3.0 through 2.3.2 Description: The issue allows authenticated users to read sensitive information due to incorrect access control. Recommendations: For versions 2.3.0 through 2.3.2, update to a version...

5.5CVSS6.6AI score0.00147EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/05/11 1:57 a.m.7 views

SUSE CVE-2023-30861

Flask is a lightweight WSGI web application framework. When all of the following conditions are met, a response containing data intended for one client may be cached and subsequently sent by the proxy to other clients. If the proxy also caches Set-Cookie headers, it may send one client's session...

7.5CVSS9.2AI score0.01261EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2022/06/13 12:0 a.m.8 views

PT-2022-13712 · WordPress · Ultimate Member

Name of the Vulnerable Software and Affected Versions: The Ultimate Member plugin for WordPress versions up to, and including, 2.3.2 Description: The issue is related to Stored Cross-Site Scripting via the Biography field on individual user profile pages. This is due to insufficient input...

6.4CVSS5AI score0.00872EPSS
Exploits1References8
CNNVD
CNNVD
added 2021/08/04 12:0 a.m.5 views

GD Graphics Library 缓冲区错误漏洞

LibGD is an open source library for programmers to dynamically create images. an out-of-bounds read vulnerability exists in LibGD 2.3.2 and earlier. An attacker can exploit the vulnerability to cause a denial of service via specially crafted TGA files...

6.5CVSS5.7AI score0.01869EPSS
Exploits1References5
CNVD
CNVD
added 2019/06/28 12:0 a.m.4 views

Magento cross-site scripting vulnerability (CNVD-2019-26233)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. A cross-site scripting vulnerability exists in Magento version 2.1.18 before version 2.1, version 2.2.9 before...

4.8CVSS6.5AI score0.00557EPSS
Exploits0References1
Rows per page
Query Builder