Lucene search
K

314 matches found

CNNVD
CNNVD
added 2025/12/01 12:0 a.m.5 views

CPython 安全漏洞

CPython is a Python interpreter implemented in C from the Python Foundation. A security vulnerability exists in CPython that stems from the plistlib module reading data without limiting the size, which could lead to out-of-memory and denial-of-service issues with malicious files...

5.5CVSS6.5AI score0.00193EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/11/14 12:0 a.m.6 views

Django 安全漏洞

Django is an open-source web framework based on the Python language, developed by the Django Foundation. This framework includes an object-oriented mapper, view system, template system, etc. Django has security vulnerabilities, which stem from SQL injection via the connector, potentially allowing...

5.8AI score
Exploits0References1
OSV
OSV
added 2025/11/07 4:15 p.m.4 views

CVE-2025-54168

A cross-site scripting XSS vulnerability has been reported to affect QuLog Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following version:...

4.8CVSS5.7AI score0.00208EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.6 views

QNAP Notification Center 跨站脚本漏洞

QNAP Notification Center is a system event alert and notification software from Taiwan, China-based QNAP Technology QNAP. A cross-site scripting vulnerability exists in QNAP Notification Center versions 2.1.0.3443, 1.9.2.3163, and 3.0.0.3466, which stems from susceptibility to cross-site scriptin...

9.2CVSS6AI score0.00487EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/22 8:18 p.m.5 views

CVE-2025-53048

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Rich Text Editor. Supported versions that are affected are 8.60, 8.61 and 8.62. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise PeopleSoft...

5.4CVSS5.2AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2025/10/21 8:20 p.m.6 views

CVE-2025-53034

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications component: Platform. Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows unauthenticated attacker with...

5.4CVSS0.00219EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/21 8:3 p.m.4 views

EUVD-2025-35256

Vulnerability in the Oracle Scripting product of Oracle E-Business Suite component: Miscellaneous. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful...

6.1CVSS4.9AI score0.00213EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/21 8:3 p.m.6 views

EUVD-2025-35274

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime SEC. Supported versions that are affected are 9.2.0.0-9.2.9.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards EnterpriseO...

6.1CVSS5.1AI score0.00213EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/21 8:2 p.m.4 views

EUVD-2025-35298

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications component: Platform. Supported versions that are affected are 8.0.7.9, 8.0.8.7 and 8.1.2.5. Easily exploitable vulnerability allows unauthenticated attacker with...

5.4CVSS4.9AI score0.00219EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/21 11:48 a.m.3 views

CVE-2025-10641 Unencrypted cleartext communication in EfficientLab WorkExaminer Professional

All WorkExaminer Professional traffic between monitoring client, console and server is transmitted as plain text. This allows an attacker with access to the network to read the transmitted sensitive data. An attacker can also freely modify the data on the wire. The monitoring clients transmit the...

6.4AI score0.00297EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.7 views

Oracle Database Server 安全漏洞

Oracle Database Server is a relational database management system from Oracle Corporation USA. This database management system provides data management, distributed processing, and other functions. A security vulnerability exists in Portable Clusterware versions 19.3 through 19.28, 21.3 through...

5.8CVSS7.3AI score0.00291EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.2 views

Oracle Fusion Middleware 安全漏洞

Oracle Fusion Middleware Oracle Fusion Middleware is a set of business innovation platforms for enterprise and cloud environments from Oracle Corporation. The platform provides middleware, software collections, and other capabilities.WebLogic Server is one of the application server components for...

5.3CVSS7AI score0.00239EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.3 views

Work Examiner Professional 安全漏洞

Work Examiner Professional is an employee computer monitoring software from Work Examiner USA. A security vulnerability exists in Work Examiner Professional that originates when traffic between the monitoring client, console, and server is transmitted in clear text, which could allow an attacker ...

7.1CVSS9.1AI score0.00297EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.4 views

Oracle Health Sciences Applications 安全漏洞

Oracle Health Sciences Applications is a suite of clinical development solutions for the healthcare industry from Oracle Corporation. A security vulnerability exists in Oracle Life Sciences InForm version 7.0.1.0 for Oracle Health Sciences Applications, which originates from an HTTP web access...

4.3CVSS7.1AI score0.00214EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/14 9:50 p.m.4 views

CVE-2025-62392

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

6.5CVSS6AI score0.00769EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/13 9:12 p.m.4 views

CVE-2025-62391

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

6.5CVSS6AI score0.00768EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-5492

Malware in sbrugna...

5.5CVSS7.3AI score0.01957EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5271

Malware in sbrugna...

10CVSS8.3AI score0.00907EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-4341

Malware in sbrugna...

5CVSS6.4AI score0.02381EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-2434

Malware in sbrugna...

9.4CVSS6.4AI score0.02334EPSS
Exploits0References8
Rows per page
Query Builder