Lucene search
K

19561 matches found

EUVD
EUVD
added 2 hours ago2 views

EUVD-2026-42652

An authenticated administrator may be able to achieve arbitrary code execution on the host system by uploading a malicious file through the Open Source LLM setup feature in the Admin Console. This vulnerability has been addressed in FileMaker Server 26.0.1...

4.9CVSS6.4AI score
Exploits0References1
Cvelist
Cvelist
added 2 hours ago5 views

CVE-2026-43752

An authenticated administrator may be able to achieve arbitrary code execution on the host system by uploading a malicious file through the Open Source LLM setup feature in the Admin Console. This vulnerability has been addressed in FileMaker Server 26.0.1...

Exploits0References1
EUVD
EUVD
added 4 hours ago3 views

EUVD-2026-42613

n8n is an open source workflow automation platform. Prior to 1.123.61, 2.27.4, and, 2.28.1, an authenticated member with use-only editor access to a shared workflow could read credential-populated headers exposed via the $request object inside an HTTP Request node's pagination expression and...

7.1CVSS5.9AI score
Exploits0References3
NVD
NVD
added 8 hours ago6 views

CVE-2026-58303

Stack-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: before b30b63fc63b403907d8137da1c65aaa4521fe74e...

6.1CVSS
Exploits0References2
NVD
NVD
added 8 hours ago5 views

CVE-2026-58306

Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: before ef525f337fafddecde77a3c426212a84bb20cb98...

6.1CVSS
Exploits0References2
The Hacker News
The Hacker News
added 8 hours ago4 views

Summer of Clearinghouses

Everyone seems to have announced a clearinghouse over the past few weeks. We did too. Ours is called Athena, and the main thing that sets it apart is that it was already real and running when we announced it — built quietly months earlier, heads down, taking findings and shipping fixes, because...

6AI score
Exploits0
CVE
CVE
added 9 hours ago9 views

CVE-2026-58306

CVE-2026-58306 describes a heap-based buffer overflow in Samsung Open Source Escargot. Affected: Escargot before ef525f337fafddecde77a3c426212a84bb20cb98. CVSS 3.1 metrics indicate LOCAL attack vector, LOW attack complexity, NO privileges required, USER interaction REQUIRED, with Availability imp...

6.1CVSS6.2AI score
Exploits0References2
EUVD
EUVD
added 9 hours ago5 views

EUVD-2026-42575

Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: before ef525f337fafddecde77a3c426212a84bb20cb98...

6.1CVSS6.2AI score
Exploits0References2
Cvelist
Cvelist
added 9 hours ago6 views

CVE-2026-58305

Access of resource using incompatible type 'type confusion' vulnerability in Samsung Open Source Escargot allows Pointer Manipulation. This issue affects Escargot: before 779f6bedf58f334dec64b0a51ebb724b4708b84a...

6.1CVSS
Exploits0References2
EUVD
EUVD
added 9 hours ago5 views

EUVD-2026-42574

Access of resource using incompatible type 'type confusion' vulnerability in Samsung Open Source Escargot allows Pointer Manipulation. This issue affects Escargot: before 779f6bedf58f334dec64b0a51ebb724b4708b84a...

6.1CVSS5.9AI score
Exploits0References2
Cvelist
Cvelist
added 9 hours ago6 views

CVE-2026-58303

Stack-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: before b30b63fc63b403907d8137da1c65aaa4521fe74e...

6.1CVSS
Exploits0References2
CVE
CVE
added 9 hours ago5 views

CVE-2026-58303

The CVE-2026-58303 entry concerns Samsung Open Source Escargot. It is a stack-based buffer overflow affecting Escargot versions prior to b30b63fc63b403907d8137da1c65aaa4521fe74e. The vulnerability is triggered locally and leads to high availability impact, with confidentiality impact listed as no...

6.1CVSS6.2AI score
Exploits0References2
EUVD
EUVD
added 9 hours ago5 views

EUVD-2026-42571

Stack-based buffer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers. This issue affects Escargot: before b30b63fc63b403907d8137da1c65aaa4521fe74e...

6.1CVSS6.2AI score
Exploits0References2
Nuclei
Nuclei
added 16 hours ago23 views

LaRecipe < 2.8.1 Remote Code Execution via SSTI

LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior to 2.8.1 are vulnerable to Server-Side Template Injection SSTI, which could potentially lead to Remote Code Execution RCE in vulnerable configurations. id: CVE-2025-53833 info:...

10CVSS6.1AI score0.09357EPSS
Exploits0References3
Nuclei
Nuclei
added 16 hours ago67 views

Zitadel - User Registration Bypass

The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Due to a missing security check in versions prior to 2.64.0, 2.63.5, 2.62.7, 2.61.4, 2.60.4, 2.59.5, and 2.58.7, disabling the "User Registration allowed" option only hid the...

7.5CVSS7.1AI score0.02572EPSS
Exploits0References2
Nuclei
Nuclei
added 16 hours ago73 views

Cacti < 1.2.25 Insecure Deserialization

Cacti is an open source operational monitoring and fault management framework. There are two instances of insecure deserialization in Cacti version 1.2.24. id: CVE-2023-30534 info: name: Cacti 1.2.25 Insecure Deserialization author: k0pak4 severity: medium description: | Cacti is an open source...

4.3CVSS6.7AI score0.02569EPSS
Exploits1References5
Nuclei
Nuclei
added 16 hours ago55 views

LionWiki <3.2.12 - Local File Inclusion

LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted strings in the index.php f1 variable, aka local file inclusion. id: CVE-2020-27191 info: name: LionWiki 3.2.12 - Local File Inclusion author: 0xAkoko severity: high description: LionWiki before...

7.5CVSS7.1AI score0.08361EPSS
Exploits1References4
Nuclei
Nuclei
added 16 hours ago116 views

Umbraco <7.4.0- Server-Side Request Forgery

Umbraco before version 7.4.0 contains a server-side request forgery vulnerability in feedproxy.aspx that allows attackers to send arbitrary HTTP GET requests via http://local/Umbraco/feedproxy.aspx?url=http://127.0.0.1:80/index. id: CVE-2015-8813 info: name: Umbraco 7.4.0- Server-Side Request...

8.2CVSS7.3AI score0.11595EPSS
Exploits1References5
Nuclei
Nuclei
added 16 hours ago39 views

Oracle GlassFish Server Open Source Edition 3.0.1 - Local File Inclusion

Oracle GlassFish Server Open Source Edition 3.0.1 build 22 is vulnerable to unauthenticated local file inclusion vulnerabilities that allow remote attackers to request arbitrary files on the server. id: CVE-2017-1000029 info: name: Oracle GlassFish Server Open Source Edition 3.0.1 - Local File...

7.5CVSS7.2AI score0.08348EPSS
Exploits0References3
Nuclei
Nuclei
added 16 hours ago169 views

FlatPress 1.2.1 - Stored Cross-Site Scripting

FlatPress 1.2.1 contains a stored cross-site scripting vulnerability that allows for arbitrary execution of JavaScript commands through blog content. An attacker can possibly steal cookie-based authentication credentials and launch other attacks. id: CVE-2021-41432 info: name: FlatPress 1.2.1 -...

5.4CVSS6.3AI score0.01675EPSS
Exploits2References5
Rows per page
Query Builder