Lucene search
K

17 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/18 11:37 p.m.6 views

CVE-2026-12047

HTML injection in pgAdmin 4's cloud deployment module. The verifycredentials, deploy, regions, and update-server endpoints under /rds/, /azure/, /google/, and the top-level /cloud/ blueprint propagated AWS / Azure / Google SDK exception text — and the related file-resolution and database-commit...

4.8CVSS5.2AI score0.00137EPSS
Exploits0References3Affected Software1
vulnersOsv
vulnersOsv
added 2026/01/30 7:54 p.m.8 views

heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-62348 via salt (=3007.14.0)

salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...

7.8CVSS5.7AI score0.00179EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/06/13 9:30 a.m.9 views

heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-22237 via salt (=3007.14.0)

salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...

6.7CVSS6.6AI score0.00157EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/06/13 9:30 a.m.9 views

heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2024-38825 via salt (=3007.14.0)

salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...

6.4CVSS6.5AI score0.00132EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/06/13 7:43 a.m.9 views

heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2024-38822 via salt (=3007.14.0)

salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...

2.7CVSS5.7AI score0.00214EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/06/13 7:43 a.m.8 views

heist-salt (>=1.0.0 <=5.3.1), isalt (>=2019.12.0 <=2021.2.2) +9 more potentially affected by CVE-2025-22240 via salt (=3007.14.0)

salt PYPI version =3007.14.0 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - heist-salt =1.0.0, =2019.12.0, =2019.6.28a3, =2.6.2.dev0, =2020.7.0, =1.1.1, =22.9.8.0rc1, =0.3.2, =0.5.7 - slskit =2022.4.0 Source cves:...

6.3CVSS6.5AI score0.00143EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/03/14 12:50 p.m.2 views

Security update for google-guest-agent

This update for google-guest-agent fixes the following issues: CVE-2025-22868: golang.org/x/oauth2/jws: Fixed unexpected memory consumption during token parsing bsc1239197 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

8.7CVSS7.4AI score0.00804EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.10 views

多款SUSE产品安全漏洞

SUSE Linux Enterprise Server is an enterprise server edition of the Linux operating system from the German company SUSE. A security vulnerability exists in SUSE that stems from a problem with rmt-server and affects the following products and versions: SUSE Enterprise Storage 7, SUSE Linux...

7.8CVSS6.3AI score0.00248EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/08/13 12:0 a.m.4 views

netless Agora Flat Server 安全漏洞

The netless Agora Flat Server is a Node.js server for the Agora Flat open source classroom. A security vulnerability exists in netless Agora Flat Server, which stems from the remove API handling file ownership error in v1/controller/cloudStorage/alibabaCloud/remove/index.ts...

9.1CVSS8.2AI score0.00986EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/26 12:0 a.m.2 views

File Upload Vulnerability in YunMOK

YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co. A file upload vulnerability exists in YunMOK, which can be exploited by attackers to gain access to the web server...

7.2AI score
Exploits0
CNVD
CNVD
added 2019/12/06 12:0 a.m.2 views

File Upload Vulnerability in YunMOK Backend

YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co. A file upload vulnerability exists in the background of YunMOK, which can be exploited by attackers to gain control of the web server...

7.3AI score
Exploits0
CNVD
CNVD
added 2019/12/03 12:0 a.m.2 views

File Upload Vulnerability in YunMOk Background Resource File Management

YunMOk is a general website management system under Nanchong Tiger Cloud Network Technology Co. There is a file upload vulnerability in the background resource file management of the cloud module, which can be exploited by an attacker to gain access to website administrator privileges...

7.2AI score
Exploits0
CNVD
CNVD
added 2019/01/28 12:0 a.m.2 views

Cloud Module v3.1.01 has an xss vulnerability

Cloud module is a general website management system under Nanchong Tiger Cloud Network Technology Co. Cloud Module v3.1.01 has an xss vulnerability that can be exploited by an attacker to obtain an administrator cookie...

6.9AI score
Exploits0
CNVD
CNVD
added 2018/08/21 12:0 a.m.2 views

File Upload Vulnerability in Cloud Module

Cloud module is a general website management system under Nanchong Tiger Cloud Network Technology Co. Cloud module background template management file upload vulnerability, the vulnerability stems from the failure to filter the file suffix and dangerous functions, attackers can use the...

7.1AI score
Exploits0
CNVD
CNVD
added 2018/08/16 12:0 a.m.2 views

Arbitrary File Deletion Vulnerability in YunMok

YunMOK cloud module is a free website management system launched by Nanchong Tiger Cloud Network Technology Co., Ltd. can build a website without technology software system. Can help businesses and individuals to quickly build a website and reduce the costs associated with secondary development...

7.1AI score
Exploits0
CNVD
CNVD
added 2018/08/16 12:0 a.m.2 views

Arbitrary File Deletion Vulnerability in YunMOK 3.1.00

YunMOK cloud module is a free and open source website management system launched by Nanchong Tiger Cloud Network Technology Co. Can be no technology to build a website software system that can help businesses and individuals to quickly build a website and reduce the costs associated with secondar...

7.1AI score
Exploits0
CNVD
CNVD
added 2018/06/08 12:0 a.m.2 views

Drupal Cloud Module Cross-Site Request Forgery Vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Services is one of the modules that allows users to programmatically create customized Web service items. A cross-site request forgery vulnerability exists in Drupal's Cloud module. An...

6.8AI score
Exploits0References1
Rows per page
Query Builder