Lucene search
K

7 matches found

AlpineLinux
AlpineLinux
added 2026/06/19 3:0 a.m.6 views

CVE-2026-56132

In libexpat before 2.8.2, there is a heap-based buffer overflow in doProlog in xmlparse.c because scaffold backing array reallocation is mishandled when there is data-structure sharing across parsers...

6.9CVSS6AI score0.00107EPSS
Exploits0
Cvelist
Cvelist
added 2026/01/22 4:52 p.m.36 views

CVE-2026-24368 WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The Grid: from n/a through 2.8.0...

5.3CVSS0.00185EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.6 views

Netgate pfSense CE 跨站脚本漏洞

Netgate pfSense CE is a FreeBSD-based open source firewall and routing platform from Netgate that supports enterprise-class network security and network management features. A cross-site scripting vulnerability exists in Netgate pfSense CE versions prior to 2.8.0 beta, which stems from a cross-si...

5.4CVSS8.1AI score0.01181EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.5 views

PT-2025-4730 · WordPress · Wp Custom Countdown

Name of the Vulnerable Software and Affected Versions: wp custom countdown versions prior to 2.8 Description: The issue is related to improper neutralization of input during web page generation, which allows for stored Cross-site Scripting XSS. This means that an attacker can inject malicious...

6.5CVSS6.4AI score0.00206EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.5 views

Autolab 跨站脚本漏洞

Autolab is a course management service. It supports automatically graded programming assignments. A cross-site scripting vulnerability exists in Autolab versions prior to 2.8.0. No information about this vulnerability is available at this time, so stay tuned to CNNVD or the vendor announcement...

7.6CVSS6.3AI score0.00646EPSS
Exploits1References3
CNVD
CNVD
added 2020/08/05 12:0 a.m.1 views

Solidus Input Validation Error Vulnerability

Solidus is an open source e-commerce system. An input validation error vulnerability exists in Solidus versions prior to 2.8.6, prior to 2.9.6, and prior to 2.10.2. The vulnerability stems from a network system or product that does not properly validate incoming data. No detailed vulnerability...

5.3CVSS6.8AI score0.00896EPSS
Exploits1References1
OSV
OSV
added 2019/04/26 10:29 p.m.1 views

DEBIAN-CVE-2019-11555

The EAP-pwd implementation in hostapd EAP server before 2.8 and wpasupplicant EAP peer before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference denial ...

5.9CVSS8.1AI score0.03252EPSS
Exploits0References1
Rows per page
Query Builder