Lucene search
K

385 matches found

NVD
NVD
added 2026/06/03 2:16 p.m.17 views

CVE-2022-49036

An inclusion of functionality from untrusted control sphere vulnerability in OpenSSL configuration in Synology Active Backup for Business Recovery Media Creator before 2.5.0-2081 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00123EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/03 1:26 p.m.36 views

CVE-2022-49036

An inclusion of functionality from untrusted control sphere vulnerability in OpenSSL configuration in Synology Active Backup for Business Recovery Media Creator before 2.5.0-2081 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00123EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/03 1:23 p.m.9 views

CVE-2022-49042

An inclusion of functionality from untrusted control sphere vulnerability in MinGW DLL component in Synology Hyper Backup Explorer before 3.0.1-0156 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.2AI score0.00123EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/03 1:23 p.m.9 views

CVE-2022-49042

An inclusion of functionality from untrusted control sphere vulnerability in MinGW DLL component in Synology Hyper Backup Explorer before 3.0.1-0156 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.2AI score0.00123EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/03 1:23 p.m.40 views

CVE-2022-49042

An inclusion of functionality from untrusted control sphere vulnerability in MinGW DLL component in Synology Hyper Backup Explorer before 3.0.1-0156 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00123EPSS
Exploits0References1
CVE
CVE
added 2026/06/03 1:23 p.m.23 views

CVE-2022-49042

CVE-2022-49042 affects Synology Hyper Backup Explorer (MinGW DLL component). The vulnerability arises from inclusion of functionality from an untrusted control sphere, enabling local arbitrary code execution via unspecified vectors in versions before 3.0.1-0156. The CVSSv3.1 vector is Local attac...

7.8CVSS6.2AI score0.00123EPSS
Exploits0References1Affected Software1
Snyk
Snyk
added 2026/05/29 10:29 p.m.9 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the direct-prompt CLI. An attacker can access sensitive local...

6.9CVSS5.5AI score0.00014EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2026/05/29 12:0 a.m.58 views

📄 Langflow 1.3.0 Remote Code Execution

Langflow contains a remote code execution caused by inclusion of functionality from untrusted control sphere in the execglobals parameter at the validate endpoint, letting remote attackers execute arbitrary code as root, exploit requires no authentication. Exploit Title: Langflow 1.3.0 - Remote...

9.8CVSS8.1AI score0.10371EPSS
Exploits8
Exploit DB
Exploit DB
added 2026/05/29 12:0 a.m.84 views

Langflow 1.3.0 - Remote Code Execution

Exploit Title: Langflow 1.3.0 - Remote Code Execution Fofa-dork: title="Langflow" Shodan-dork: title:"Langflow" Date: 23-05-2026 Exploit Author: Diamorphine Venodor Homepage: https://www.langflow.org/ Software Link: https://github.com/langflow-ai/langflow Version: 1.2.0 Tested on: Debian CVE :...

9.8CVSS7.3AI score0.10371EPSS
Exploits8
GithubExploit
GithubExploit
added 2026/05/23 9:26 p.m.71 views

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Langflow

No d...

9.8CVSS7.3AI score0.10371EPSS
Exploits8
GithubExploit
GithubExploit
added 2026/05/23 9:26 p.m.91 views

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Langflow

No d...

9.8CVSS5.8AI score0.10371EPSS
Exploits8
ATTACKERKB
ATTACKERKB
added 2026/05/21 8:21 a.m.9 views

CVE-2026-27349

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPFunnels Team Mail Mint allows Retrieve Embedded Sensitive Data. This issue affects Mail Mint: from n/a through 1.19.5...

4.3CVSS5.8AI score0.00171EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/21 8:21 a.m.11 views

EUVD-2026-31249

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPFunnels Team Mail Mint allows Retrieve Embedded Sensitive Data. This issue affects Mail Mint: from n/a through 1.19.5...

4.3CVSS5.8AI score0.00171EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/07 9:31 a.m.10 views

EUVD-2026-28332

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs Happy Addons for Elementor allows Retrieve Embedded Sensitive Data. This issue affects Happy Addons for Elementor: from n/a through 3.20.8...

5.3CVSS5.8AI score0.00336EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/07 7:37 a.m.9 views

CVE-2026-25468

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs Happy Addons for Elementor allows Retrieve Embedded Sensitive Data. This issue affects Happy Addons for Elementor: from n/a through 3.20.8...

5.3CVSS5.8AI score0.00336EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/30 2:47 p.m.9 views

CVE-2026-42644

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper BetterDocs betterdocs allows Retrieve Embedded Sensitive Data.This issue affects BetterDocs: from n/a through = 4.3.10...

5.3CVSS5.2AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2026/04/29 12:16 p.m.6 views

CVE-2026-42644

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper BetterDocs betterdocs allows Retrieve Embedded Sensitive Data.This issue affects BetterDocs: from n/a through = 4.3.10...

5.3CVSS0.00247EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/29 12:0 a.m.7 views

PT-2026-35903

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPDeveloper BetterDocs betterdocs allows Retrieve Embedded Sensitive Data.This issue affects BetterDocs: from n/a through = 4.3.10...

5.3CVSS5.2AI score0.00247EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/28 6:30 a.m.7 views

OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

OpenStack Ironic before 35.0.1 allows ipmitool execution in a non-default configuration that has a console interface...

7.2CVSS6.1AI score0.0057EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/28 6:30 a.m.11 views

GHSA-WQPV-C3PP-3M58 OpenStack Ironic is Vulnerable to Inclusion of Functionality from Untrusted Control Sphere

OpenStack Ironic through 25.0.0 allows ipmitool execution in a non-default configuration that has a console interface...

6.6CVSS5.9AI score0.0057EPSS
Exploits0References5
Rows per page
Query Builder