Lucene search
K

206 matches found

CNVD
CNVD
added 2026/03/18 12:0 a.m.5 views

AnythingLLM Code Injection Vulnerability

AnythingLLM is an all-in-one AI application open-sourced by Mintplex. AnythingLLM has a code injection vulnerability that stems from the ImportedPlugin.importCommunityItemFromUrl function downloads a ZIP file and extracts it without verifying the path to the file within the archive, which can be...

6.4CVSS6.2AI score0.00388EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.5 views

PT-2026-22040

Name of the Vulnerable Software and Affected Versions Manyfold versions prior to 0.133.0 Description Manyfold is a self-hosted web application used for managing 3D models, with a focus on 3D printing. Prior to version 0.133.0, a logged-in user could achieve Remote Code Execution RCE when model...

8.8CVSS6AI score0.0037EPSS
Exploits1References10
CVE
CVE
added 2026/02/11 8:37 p.m.9 views

CVE-2020-37193

CVE-2020-37193 concerns ZIP Password Recovery 2.30, which contains a denial-of-service vulnerability that can crash the application when a specially prepared text file (with specific characters) is used while selecting a ZIP file. The initial document provides CVSS data (4.0/4.6 in CVSS 4.0 with ...

7.5CVSS5.5AI score0.00383EPSS
Exploits0References3
Cisco
Cisco
added 2026/02/04 4:0 p.m.12 views

Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability

A vulnerability in the Dynamic Vectoring and Streaming DVS Engine implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass the anti-malware scanner, allowing malicious archive files to be downloaded. This vulnerability is du...

4CVSS5.6AI score0.0014EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : firefox-60.2.0-1.0.1.AXS4 (AXSA:2018-3323:06)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2018-3323:06 advisory. Mozilla: Memory safety bugs fixed in Firefox 62 and Firefox ESR 60.2 CVE-2018-12376 Mozilla: Use-after-free in driver timers CVE-2018-12377 Mozilla:...

9.8CVSS7.5AI score0.03662EPSS
Exploits4References6
OSV
OSV
added 2026/01/13 11:15 p.m.4 views

CVE-2022-50936

WBCE CMS version 1.5.2 contains an authenticated remote code execution vulnerability that allows attackers to upload malicious droplets through the admin panel. Authenticated attackers can exploit the droplet upload functionality in the admin tools to create and execute arbitrary PHP code by...

8.8CVSS6.8AI score
Exploits0References5
EUVD
EUVD
added 2025/12/18 12:34 a.m.4 views

EUVD-2023-60209

TinyWebGallery v2.5 contains a remote code execution vulnerability in the admin upload functionality that allows unauthenticated attackers to upload malicious PHP files. Attackers can upload .phar files with embedded system commands to execute arbitrary code on the server by accessing the uploade...

9.8CVSS8.6AI score0.00931EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-9117

Malware in sbrugna...

5.3CVSS5.3AI score0.02378EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-6005

Malware in sbrugna...

9.3CVSS6.4AI score0.03626EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-1502

Malware in sbrugna...

7.5CVSS7.4AI score0.01676EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-5313

Malware in sbrugna...

7.8CVSS7.5AI score0.08679EPSS
Exploits5References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2007

Malware in sbrugna...

5CVSS6.4AI score0.01602EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2003-0421

Malware in sbrugna...

7.5CVSS6.1AI score0.0334EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-4389

Malware in sbrugna...

7.8CVSS7.6AI score0.0162EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-0847

Malware in sbrugna...

4.3CVSS6.4AI score0.29955EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-0130

Malware in sbrugna...

10CVSS6AI score0.04894EPSS
Exploits0References22
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-2635

Malware in sbrugna...

4.3CVSS6.4AI score0.01212EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-49992

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00465EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.5 views

Ashlar-Vellum Cobalt 缓冲区错误漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A buffer error vulnerability exists in Ashlar-Vellum Cobalt that stems from a lack of validation of user-supplied data when parsing an AR file, which could lead to an out-of-bounds write th...

7.8CVSS8AI score0.00193EPSS
Exploits0References1
NVD
NVD
added 2025/08/18 9:15 p.m.7 views

CVE-2025-41392

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack proper validation of user-supplied data when parsing AR files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute...

8.4CVSS0.00153EPSS
Exploits0References1
Rows per page
Query Builder