Lucene search
K

458547 matches found

NVD
NVD
added 2026/06/25 2:16 p.m.6 views

CVE-2026-56053

Subscriber PHP Object Injection in EventPrime = 4.3.4.1 versions...

8.8CVSS0.00391EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 2:16 p.m.4 views

CVE-2026-54836

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in YMC Filter allows SQL Injection. This issue affects YMC Filter: from n/a through 3.11.5...

9.3CVSS0.00229EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 2:16 p.m.4 views

CVE-2026-54838

Subscriber SQL Injection in WC Vendors Marketplace = 2.6.8 versions...

8.5CVSS0.0027EPSS
Exploits0References1
NVD
NVD
added 2026/06/25 2:16 p.m.5 views

CVE-2026-54822

Subscriber SQL Injection in SALESmanago & Leadoo = 3.11.2 versions...

8.5CVSS0.0027EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 2:11 p.m.5 views

EUVD-2026-39416

Malicious HTML content could be injected into the content of a page in the pretix-pages plugin...

2.1CVSS5.8AI score0.0033EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 2:11 p.m.30 views

CVE-2026-57534 Stored XSS in pretix-pages

Malicious HTML content could be injected into the content of a page in the pretix-pages plugin...

2.1CVSS0.0033EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 2:11 p.m.12 views

CVE-2026-57534

Summary: CVE-2026-57534 affects the pretix-pages plugin, where malicious HTML content can be injected into a page’s content, causing a stored XSS condition. The root cause is described as unsafe handling of page content within the plugin; exploitation details are not provided beyond the stored-XS...

2.1CVSS5.8AI score0.0033EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/25 2:11 p.m.4 views

CVE-2026-57534

Malicious HTML content could be injected into the content of a page in the pretix-pages plugin...

2.1CVSS5.8AI score0.0033EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/06/25 2:9 p.m.5 views

WordPress JetEngine plugin <= 3.8.10.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Rafie Muhammad in WordPress Plugin JetEngine versions = 3.8.10.2...

9.3CVSS5.8AI score0.00236EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2026/06/25 1:53 p.m.5 views

EUVD-2026-39412

Malicious HTML content could be injected into the content rendered by the pretix-digital plugin...

2CVSS5.8AI score0.0033EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 1:48 p.m.35 views

CVE-2026-46735

Dell Display and Peripheral Manager DDPM Mac, versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command...

7.8CVSS0.00693EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 1:48 p.m.4 views

EUVD-2026-39410

Dell Display and Peripheral Manager DDPM Mac, versions prior to 2.3, contain an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command...

7.8CVSS5.9AI score0.00693EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 1:48 p.m.11 views

CVE-2026-46735

Dell Display and Peripheral Manager (DDPM Mac) versions prior to 2.3 are affected by an OS Command Injection due to improper neutralization of special elements in OS commands. A low-privilege, locally authenticated attacker could potentially execute commands on the system. The vulnerability affec...

7.8CVSS5.9AI score0.00693EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 1:47 p.m.30 views

CVE-2026-57587 SQL Injection in Nessus via Reverse DNS Lookup

A SQL injection vulnerability in Nessus allows a remote, unauthenticated attacker who controls reverse DNS records for a scanned host to inject malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

6.3CVSS0.00339EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/25 1:47 p.m.7 views

CVE-2026-57587 SQL Injection in Nessus via Reverse DNS Lookup

A SQL injection vulnerability in Nessus allows a remote, unauthenticated attacker who controls reverse DNS records for a scanned host to inject malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

6.3CVSS5.9AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 1:47 p.m.33 views

CVE-2026-57588 SQL Injection in Nessus via Malicious Scan Result File Import

A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

4.6CVSS0.00158EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 1:47 p.m.4 views

EUVD-2026-39408

A SQL injection vulnerability in Nessus allows a remote, unauthenticated attacker who controls reverse DNS records for a scanned host to inject malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

6.3CVSS5.9AI score0.00339EPSS
Exploits0References1
CVE
CVE
added 2026/06/25 1:47 p.m.9 views

CVE-2026-57587

The CVE-2026-57587 entry describes a SQL injection in Nessus affecting the scan results database. An unauthenticated remote attacker who controls reverse DNS records for a scanned host can inject malicious SQL, potentially exfiltrating scan-result data. The connected documents specify Nessus as t...

6.3CVSS5.9AI score0.00339EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/06/25 1:47 p.m.17 views

CVE-2026-57588

CVE-2026-57588 is a SQL injection vulnerability in Nessus. A crafted malicious scan result file, when imported by a privileged user, injects SQL into the scan results database, potentially exfiltrating scan data. The vulnerability affects Nessus in scenarios where a scan-result file is imported b...

4.6CVSS5.9AI score0.00158EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/25 1:47 p.m.8 views

CVE-2026-57588 SQL Injection in Nessus via Malicious Scan Result File Import

A SQL injection vulnerability in Nessus allows an attacker to craft a malicious scan result file that, when imported by a privileged user, injects malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

4.6CVSS5.9AI score0.00158EPSS
Exploits0References1
Rows per page
Query Builder