Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:44 p.m.7 views

CVE-2026-8409

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/logs/delete. The The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan...

8.8CVSS5.5AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/21 9:31 p.m.36 views

CVE-2026-8412 Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/cache

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/page/bulk/cache. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan...

2.3CVSS0.0013EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-23610

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package. Versions prior to 9.5.12 and 10.0.6 are vulnerable to Improper Privilege Management. Any user having...

6.5CVSS6.4AI score0.0073EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.5 views

Weaver E-Office 代码问题漏洞

Weaver E-Office is a collaborative office system from China's Panavision Technologies Weaver. A security vulnerability exists in weaver e-office versions prior to v9.5. The vulnerability stems from the presence of an arbitrary file upload vulnerability, which allows an attacker to execute arbitra...

9.8CVSS8.8AI score0.0071EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/07/09 12:0 a.m.6 views

Kaseya VSA SQL注入漏洞

Kaseya VSA is the RMM Remote Monitoring and Management software commonly used by Kaseya's Managed Service Providers MSPs in the United States to manage their customers' networks. A SQL injection vulnerability exists in Kaseya VSA versions prior to 9.5.5, which can be exploited by an attacker to...

9.8CVSS6AI score0.72054EPSS
Exploits0References3
OSV
OSV
added 2016/02/10 8:59 p.m.3 views

CVE-2016-0948

Cross-site request forgery CSRF vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

8.8CVSS5.8AI score0.01879EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2012/04/10 8:24 p.m.5 views

acroread: multiple unspecified flaws (APSB12-08, APSB12-01)

Adobe Reader and Acrobat before 9.5, and 10.x before 10.1.2, on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2011-4370 and CVE-2011-4373...

9.8CVSS7.7AI score0.12763EPSS
Exploits0References5
Rows per page
Query Builder