Lucene search
K

22173 matches found

Cvelist
Cvelist
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

0.00129EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.12 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.9 views

CVE-2025-61656

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

5.2AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/04 12:30 a.m.6 views

EUVD-2026-5153

A flaw has been found in bolo-blog bolo-solo up to 2.6.4. This affects the function importFromMarkdown of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. Executing a manipulation of the argument File can lead to path traversal. The attack may ...

6.5CVSS5AI score0.00463EPSS
Exploits1References6
OSV
OSV
added 2026/02/04 12:16 a.m.5 views

CVE-2026-1813

A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of the file src/main/java/org/b3log/solo/bolo/pic/PicUploadProcessor.java of the component FreeMarker Template Handler. The manipulation of the argument File results in unrestricted upload. It is possibl...

9.8CVSS5.4AI score
Exploits0References5
NVD
NVD
added 2026/02/04 12:16 a.m.8 views

CVE-2026-1813

A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of the file src/main/java/org/b3log/solo/bolo/pic/PicUploadProcessor.java of the component FreeMarker Template Handler. The manipulation of the argument File results in unrestricted upload. It is possibl...

9.8CVSS0.00333EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.6 views

PT-2026-6074

Name of the Vulnerable Software and Affected Versions WeKan versions up to 8.20 Description A flaw exists in WeKan, specifically within the Attachment Storage Handler component. The issue resides in the applyWipLimit function located in the models/lists.js file. Exploitation of this flaw can lead...

6.5CVSS5.2AI score0.00276EPSS
Exploits0References14
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.6 views

PT-2026-6075

Name of the Vulnerable Software and Affected Versions WeKan versions prior to 8.21 Description A flaw exists in WeKan that allows for improper access controls. This is due to the manipulation of the boardId argument within the ComprehensiveBoardMigration function located in the file...

6.5CVSS5.2AI score0.00276EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.6 views

bolo-solo 代码问题漏洞

Bolo-Solo is a blog system developed under the open source Bolo-Blog project. Versions of Bolo-Solo 2.6.4 and earlier contained code vulnerabilities. These vulnerabilities stemmed from improper handling of parameters by the FreeMarker Template Handler component in the file...

9.8CVSS6.7AI score0.00333EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that t...

4.7CVSS5.8AI score0.00096EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2026/02/04 12:0 a.m.197 views

OctoPrint 1.11.2 - File Upload

Exploit Title: OctoPrint 1.11.2 - File Upload Date: 2025-09-28 Exploit Author: prabhatverma.addada Vendor Homepage: https://octoprint.org Software Link: https://github.com/OctoPrint/OctoPrint Affected Versions: = 1.11.2 Patched Versions: 1.11.3 CVE: CVE-2025-58180 CVSS per advisory: 7.5 Platform:...

8.8CVSS5.2AI score0.19313EPSS
Exploits4
Vulnrichment
Vulnrichment
added 2026/02/03 11:32 p.m.4 views

CVE-2026-1813 bolo-blog bolo-solo FreeMarker Template PicUploadProcessor.java unrestricted upload

A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of the file src/main/java/org/b3log/solo/bolo/pic/PicUploadProcessor.java of the component FreeMarker Template Handler. The manipulation of the argument File results in unrestricted upload. It is possibl...

6.5CVSS5.1AI score0.00333EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/03 11:32 p.m.3 views

CVE-2026-1813

A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of the file src/main/java/org/b3log/solo/bolo/pic/PicUploadProcessor.java of the component FreeMarker Template Handler. The manipulation of the argument File results in unrestricted upload. It is possibl...

6.5CVSS6.2AI score0.00333EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2026/02/03 11:16 p.m.8 views

CVE-2026-1812

A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. This impacts the function importFromCnblogs of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. The manipulation of the argument File leads to path traversal. It is possible to...

9.8CVSS0.00417EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/02/03 10:32 p.m.28 views

CVE-2026-1812 bolo-blog bolo-solo Filename BackupService.java importFromCnblogs path traversal

A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. This impacts the function importFromCnblogs of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. The manipulation of the argument File leads to path traversal. It is possible to...

6.5CVSS0.00417EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/02/03 10:32 p.m.3 views

CVE-2026-1812

A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. This impacts the function importFromCnblogs of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. The manipulation of the argument File leads to path traversal. It is possible to...

6.5CVSS6.2AI score0.00417EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/03 10:32 p.m.5 views

CVE-2026-1812 bolo-blog bolo-solo Filename BackupService.java importFromCnblogs path traversal

A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. This impacts the function importFromCnblogs of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. The manipulation of the argument File leads to path traversal. It is possible to...

6.5CVSS5.1AI score0.00417EPSS
Exploits1References5
NVD
NVD
added 2026/02/03 10:16 p.m.12 views

CVE-2026-25151

Qwik is a performance focused javascript framework. Prior to version 1.19.0, Qwik City’s server-side request handler inconsistently interprets HTTP request headers, which can be abused by a remote attacker to circumvent form submission CSRF protections using specially crafted or multi-valued...

5.9CVSS0.00159EPSS
Exploits0References2
NVD
NVD
added 2026/02/03 10:16 p.m.5 views

CVE-2026-1811

A flaw has been found in bolo-blog bolo-solo up to 2.6.4. This affects the function importFromMarkdown of the file src/main/java/org/b3log/solo/bolo/prop/BackupService.java of the component Filename Handler. Executing a manipulation of the argument File can lead to path traversal. The attack may ...

8.8CVSS0.00463EPSS
Exploits1References5
NVD
NVD
added 2026/02/03 10:16 p.m.6 views

CVE-2020-37074

Remote Desktop Audit 2.3.0.157 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code during the Add Computers Wizard file import process. Attackers can craft a malicious payload file to trigger a structured exception handler SEH bypass and execute shellcode when...

9.8CVSS0.00337EPSS
Exploits0References3
Rows per page
Query Builder