Lucene search
K

16953 matches found

EUVD
EUVD
added yesterday3 views

EUVD-2026-42275

App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes. When ack prints a filename whose basename contains terminal control bytes such as ANSI escape sequences, those bytes reach the terminal unchanged. Version 3.10.0 added a...

7.5CVSS5.9AI score
Exploits0References1
NVD
NVD
added 3 days ago5 views

CVE-2026-55380

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile.open read image dimensions from the GD 2.x header and stored them in self.size without calling Image.decompressionbombcheck, allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This iss...

7.5CVSS0.00361EPSS
Exploits1References3
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-41901

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile.open read image dimensions from the GD 2.x header and stored them in self.size without calling Image.decompressionbombcheck, allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This iss...

7.5CVSS6AI score0.00361EPSS
Exploits1References3
OSV
OSV
added 3 days ago2 views

OPENSUSE-SU-2026:11188-1 json-c-devel-0.19-1.1 on GA media

These are all security issues fixed in the json-c-devel-0.19-1.1 package on the GA media of openSUSE Tumbleweed...

7.1CVSS5.9AI score0.04511EPSS
Exploits1References4
OSV
OSV
added 4 days ago4 views

RLSA-2026:33092 Moderate: glibc security, bug fix, and enhancement update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

5CVSS6AI score0.00451EPSS
Exploits1References2
NVD
NVD
added 5 days ago8 views

CVE-2026-14639

A vulnerability has been found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /ecommerce-website-php/customer/myaccount.php?editaccount. Such manipulation of the argument cname leads to sql injection. The attack may be launched remotely. The exploit has been...

6.5CVSS0.002EPSS
Exploits0References6
Cvelist
Cvelist
added 5 days ago29 views

CVE-2026-14639 CodeAstro Ecommerce Website my_account.php sql injection

A vulnerability has been found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /ecommerce-website-php/customer/myaccount.php?editaccount. Such manipulation of the argument cname leads to sql injection. The attack may be launched remotely. The exploit has been...

6.5CVSS0.002EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 6 days ago12 views

Security Bulletin: Multiple Vulnerabilities in IBM Cloud Pak System

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak System version 2.3.6.1 and IBM Cloud Pak System version 2.3.5.1. Vulnerability Details CVEID:CVE-2025-0395 DESCRIPTION: When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for...

9.4CVSS7.5AI score0.64718EPSS
Exploits12Affected Software4
OSV
OSV
added last week2 views

SUSE-SU-2026:2731-1 Security update for editorconfig-core-c

This update for editorconfig-core-c fixes the following issue: - CVE-2026-40489: improper use of strcpy can lead to a stack buffer overflow bsc1262131...

8.6CVSS6.2AI score0.00151EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added last week6 views

CVE-2026-8699

A stored Cross-Site Scripting XSS vulnerability has been identified in the web-based management interface of Archer C5 v6.8 routers, due to insufficient server-side validation and lack of proper output encoding of user-controlled input in a certain field. An attacker with administrative privilege...

7CVSS6AI score0.00177EPSS
Exploits0References2
OSV
OSV
added 2026/07/02 10:17 a.m.3 views

RHSA-2026:34211 Red Hat Security Advisory: glibc security update

Bulletin has no description...

5CVSS5.7AI score0.00451EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2026/07/01 12:19 p.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
OSV
OSV
added 2026/07/01 12:3 p.m.3 views

RLSA-2026:33226 Moderate: glibc security, bug fix, and enhancement update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

5CVSS5.9AI score0.00451EPSS
Exploits1References2
OSV
OSV
added 2026/07/01 6:0 a.m.3 views

RLSA-2026:33126 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

5CVSS5.8AI score0.00451EPSS
Exploits1References2
EUVD
EUVD
added 2026/07/01 12:34 a.m.4 views

EUVD-2026-40422

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using both relative ../ paths and absolute paths...

9.8CVSS5.8AI score0.00435EPSS
Exploits0References4
OSV
OSV
added 2026/06/30 10:16 p.m.3 views

DEBIAN-CVE-2026-50003

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using both relative ../ paths and absolute paths...

9.3CVSS5.9AI score0.00435EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/30 9:27 p.m.4 views

CVE-2026-50003

A malicious or compromised server can make a DCMTK client using bit-preserving C-GET storage mode write files outside the chosen output directory, using both relative ../ paths and absolute paths...

9.8CVSS5.9AI score0.00435EPSS
Exploits0
OSV
OSV
added 2026/06/30 10:49 a.m.4 views

RHSA-2026:33231 Red Hat Security Advisory: glibc security, bug fix, and enhancement update

Bulletin has no description...

5CVSS5.7AI score0.00451EPSS
Exploits1References10
OSV
OSV
added 2026/06/30 10:49 a.m.6 views

RHSA-2026:33230 Red Hat Security Advisory: glibc security update

Bulletin has no description...

5CVSS5.7AI score0.00451EPSS
Exploits1References10
OSV
OSV
added 2026/06/30 10:49 a.m.19 views

RHSA-2026:33126 Red Hat Security Advisory: glibc security update

Bulletin has no description...

5CVSS5.7AI score0.00451EPSS
Exploits1References10
Rows per page
Query Builder