Lucene search
K

22173 matches found

UbuntuCve
UbuntuCve
added 2026/02/03 2:0 p.m.8 views

CVE-2025-13473

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. The django.contrib.auth.handlers.modwsgi.checkpassword function for authentication via modwsgi allows remote attackers to enumerate users via a timing attack. Earlier, unsupported Django series such as 5.0.x,...

5.3CVSS5.9AI score0.00713EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/03 3:11 a.m.20 views

CVE-2026-1736

A security vulnerability has been detected in Open5GS up to 2.7.6. Impacted is the function sgwcs11handlecreateindirectdataforwardingtunnelrequest of the file /src/sgwc/s11-handler.c of the component SGWC. Such manipulation leads to reachable assertion. The attack may be launched remotely. The...

6.9CVSS5AI score0.00609EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/03 3:11 a.m.8 views

CVE-2026-1735

A weakness has been identified in Yealink MeetingBar A30 133.321.0.3. This issue affects some unknown processing of the component Diagnostic Handler. This manipulation causes command injection. It is feasible to perform the attack on the physical device. The exploit has been made available to the...

4.6CVSS5AI score0.01067EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/03 3:11 a.m.17 views

CVE-2026-1737

A vulnerability was detected in Open5GS up to 2.7.6. The affected element is the function sgwcs5chandlecreatebearerrequest of the file /src/sgwc/s5c-handler.c of the component CreateBearerRequest Handler. Performing a manipulation results in reachable assertion. Remote exploitation of the attack ...

6.9CVSS4.9AI score0.00492EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 2:16 a.m.7 views

CVE-2025-61656

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

6.1CVSS0.00149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 1:2 a.m.6 views

CVE-2025-61656

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

5.2AI score0.00149EPSS
Exploits0References2
CVE
CVE
added 2026/02/03 1:2 a.m.24 views

CVE-2025-61656

CVE-2025-61656 is a cross-site scripting (XSS) vulnerability in Wikimedia Foundation VisualEditor, caused by improper input neutralization in ve.Ce.ClipboardHandler.Js. Affected products/versions: VisualEditor before 1.39.14, 1.43.4, and 1.44.1. Impact is primarily client-side, enabling script ex...

6.1CVSS5.2AI score0.00149EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/02/03 1:2 a.m.25 views

CVE-2025-61656 XSS when pasting into VE

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 1:2 a.m.5 views

EUVD-2025-206652

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

5.3AI score0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/03 1:2 a.m.2 views

CVE-2025-61656 XSS when pasting into VE

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation VisualEditor. This vulnerability is associated with program files src/ce/ve.Ce.ClipboardHandler.Js. This issue affects VisualEditor: from before 1.39.14, 1.43.4, 1.44.1...

5.3AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2026/02/03 12:16 a.m.4 views

CVE-2025-61634

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Rest/Handler/PageHTMLHandler.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4, 1.44.1...

3.1CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2026/02/03 12:16 a.m.7 views

CVE-2025-61634

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Rest/Handler/PageHTMLHandler.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4, 1.44.1...

3.1CVSS0.00273EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:2 a.m.4 views

EUVD-2025-206645

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 12:2 a.m.31 views

CVE-2025-61647 UserInfoCard: Don't allow access to information about users who are suppressed if you don't have suppressor rights

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS0.00293EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 12:2 a.m.13 views

CVE-2025-61647

Technical details about CVE-2025-61647 are not publicly provided in the supplied documents. Monitor for updates from the referenced sources; current entries reiterate the vulnerability but do not disclose affected products, versions, or remediation steps.

2CVSS5.3AI score0.00293EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:2 a.m.6 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.5 views

PT-2026-6065

Name of the Vulnerable Software and Affected Versions bolo-blog bolo-solo versions up to 2.6.4 Description A flaw exists in bolo-blog bolo-solo up to version 2.6.4, specifically within the FreeMarker Template Handler component and the file...

6.5CVSS5.3AI score0.00333EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.4 views

PT-2026-6062

Name of the Vulnerable Software and Affected Versions bolo-blog bolo-solo versions prior to 2.6.5 Description A path traversal issue exists in the ZIP File Handler component of bolo-blog bolo-solo. The issue is located in the unpackFilteredZip function within the...

6.5CVSS5.3AI score0.00393EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.8 views

PT-2026-6276

Name of the Vulnerable Software and Affected Versions Qwik versions prior to 1.19.0 Description Qwik City’s server-side request handler inconsistently interprets HTTP request headers. This can be exploited by a remote attacker to bypass Cross-Site Request Forgery CSRF protections on forms using...

5.9CVSS5.6AI score0.00159EPSS
Exploits0References16
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

Qwik 输入验证错误漏洞

Qwik is a micro-web framework developed by Qwik Dev. Versions of Qwik prior to 1.19.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from an open redirection vulnerability in the default request handler middleware, which could allow a remote attacker to...

6.9CVSS5.8AI score0.00237EPSS
Exploits0References3
Rows per page
Query Builder