Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/02/24 10:25 p.m.7 views

CVE-2026-22567

Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios...

7.6CVSS5.3AI score0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/23 4:13 p.m.3 views

CVE-2026-22567 ZIA Admin UI Input Validation Bug

Improper validation of user-supplied input in the ZIA Admin UI could allow an authenticated administrator to initiate backend functions through specific input fields in limited scenarios...

7.6CVSS5.3AI score0.00196EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/23 12:0 a.m.9 views

PT-2026-21526

Name of the Vulnerable Software and Affected Versions Zscaler Internet Access versions affected versions not specified Description An issue exists in the ZIA Admin UI where improper validation of user-supplied input can allow an authenticated administrator to initiate backend functions through...

7.6CVSS5.2AI score0.00196EPSS
Exploits0References8
CVE
CVE
added 2024/06/25 3:4 p.m.145 views

CVE-2024-5806

CVE-2024-5806 affects the MOVEit Transfer SFTP module. The issue is an Improper Authentication vulnerability that can lead to an Authentication Bypass . Affected versions include MOVEit Transfer 2023.0.x prior to 2023.0.11, 2023.1.x prior to 2023.1.6, and 2024.0.x prior to 2024.0.2. Root cause is...

9.8CVSS9.2AI score0.75812EPSS
In wildExploits3References2Affected Software1
OSV
OSV
added 2017/07/08 5:29 p.m.1 views

DEBIAN-CVE-2017-11109

Vim 8.0 allows attackers to cause a denial of service invalid free or possibly have unspecified other impact via a crafted source aka -S file. NOTE: there might be a limited number of scenarios in which this has security relevance...

7.8CVSS6.5AI score0.01088EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2012/10/10 6:55 p.m.18 views

CVE-2009-5067

Directory traversal vulnerability in html2ps before 1.0b6 allows remote attackers to read arbitrary files via a .. dot dot in the "include file" SSI directive. NOTE: this issue only might be a vulnerability in limited scenarios, such as if html2ps is invoked by a web application, or if a...

4.3CVSS6AI score0.0763EPSS
Exploits1References8
Cvelist
Cvelist
added 2012/10/10 6:0 p.m.22 views

CVE-2009-5067

Directory traversal vulnerability in html2ps before 1.0b6 allows remote attackers to read arbitrary files via a .. dot dot in the "include file" SSI directive. NOTE: this issue only might be a vulnerability in limited scenarios, such as if html2ps is invoked by a web application, or if a...

6.7AI score0.0763EPSS
Exploits1References8
Rows per page
Query Builder