Lucene search
K

20 matches found

EUVD
EUVD
added 2026/05/13 9:32 p.m.12 views

EUVD-2026-30110

Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access...

1.8CVSS5.8AI score0.00143EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/13 6:3 p.m.10 views

CVE-2026-30906

Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.8 views

PT-2026-33978

The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if the Web User attempting to be logged in to is configured to log in with an SSH Key, making the SSH key vulnerable to being guessed via Brute Force...

7.3CVSS5.7AI score0.00155EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/06 7:8 a.m.35 views

CVE-2026-29058 AVideo: Unauthenticated OS Command Injection via base64Url in objects/getImage.php

AVideo is a video-sharing Platform software. Prior to version 7.0, an unauthenticated attacker can execute arbitrary OS commands on the server by injecting shell command substitution into the base64Url GET parameter. This can lead to full server compromise, data exfiltration e.g., configuration...

9.8CVSS0.02132EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/11/11 8:2 a.m.5 views

CVE-2025-5317 Improper access restriction to critical folder in Bitdefender Endpoint Security Tools for Mac

An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac BEST before 7.20.52.200087 allows local users with administrative privileges to bypass the configured uninstall password protection. An unauthorized user with sudo privileges can manually remove the...

6.8CVSS6.2AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.4 views

CVE-2021-37162

A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malformed UDP message, a buffer underflow occurs, leading to an out-of-bounds copy and possible remote co...

9.8CVSS7.8AI score0.03264EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/31 12:0 a.m.2 views

Unraid 安全漏洞

Unraid is a suite of operating systems from Unraid, Inc. intended primarily for personal and small business use. A security vulnerability exists in Unraid versions prior to 7.0.1 that originates from a remote user being able to access the Unraid WebGUI and web console as root without authenticati...

9.6CVSS6.5AI score0.00406EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/31 12:0 a.m.4 views

WordPress Plugin Vertical marquee SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

8.8CVSS7.7AI score0.00797EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.4 views

SUSE CVE-2020-27757

A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is processed by...

5.3CVSS6.5AI score0.01072EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2023/01/02 12:0 a.m.5 views

PT-2023-13793 · WordPress · Wp User

Name of the Vulnerable Software and Affected Versions: WP User WordPress plugin versions prior to 7.0 Description: The issue is related to a SQL injection that can be exploited by unauthenticated users due to improper sanitization and escaping of a parameter in a SQL statement. Recommendations: F...

9.8CVSS8.1AI score0.04756EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2022/08/23 4:15 p.m.1 views

CVE-2022-2965

Improper Restriction of Rendered UI Layers or Frames in GitHub repository notrinos/notrinoserp prior to 0.7...

6.4CVSS5.9AI score0.00615EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/08/09 1:15 p.m.2 views

CVE-2022-2734

Improper Restriction of Rendered UI Layers or Frames in GitHub repository openemr/openemr prior to 7.0.0.1...

10CVSS6.8AI score0.00638EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/05/17 9:15 p.m.2 views

CVE-2022-28616

A remote server-side request forgery ssrf vulnerability was discovered in HPE OneView versions: Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView...

9.8CVSS7.2AI score0.01292EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/17 8:15 p.m.4 views

CVE-2022-23706

A remote cross-site scripting xss vulnerability was discovered in HPE OneView versions: Prior to 7.0. HPE has provided a software update to resolve this vulnerability in HPE OneView...

6.1CVSS6.2AI score0.00662EPSS
Exploits0References2
OSV
OSV
added 2020/04/01 10:15 p.m.2 views

UBUNTU-CVE-2018-11802

In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all...

4.3CVSS6.1AI score0.0202EPSS
Exploits0References3
OSV
OSV
added 2019/06/05 4:29 p.m.3 views

CVE-2019-11985

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

8.8CVSS7.8AI score
Exploits0References1
OSV
OSV
added 2019/06/05 4:29 p.m.1 views

CVE-2019-11957

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

8.1CVSS7.8AI score
Exploits0References1
OSV
OSV
added 2019/06/05 3:29 p.m.2 views

CVE-2019-5369

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

8.8CVSS6.3AI score0.03462EPSS
Exploits0References1
OSV
OSV
added 2019/06/05 3:29 p.m.4 views

CVE-2019-5353

A remote code execution vulnerability was identified in HPE Intelligent Management Center IMC PLAT earlier than version 7.3 E0506P09...

8.8CVSS7.8AI score0.0364EPSS
Exploits0References1
OSV
OSV
added 2017/06/09 4:29 p.m.3 views

CVE-2017-2187

Cross-site scripting vulnerability in WP Live Chat Support prior to version 7.0.07 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score0.01293EPSS
Exploits0References2
Rows per page
Query Builder