Lucene search
K

8 matches found

NVD
NVD
added 2026/05/14 6:16 p.m.26 views

CVE-2025-15023

Incorrect Authorization vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Library Automation System: from v.19.5...

8.8CVSS0.00216EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.5 views

PT-2026-20910

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4 Description The software contains an arbitrary directory existence enumeration issue in the ListServer.IsPathExist web method, accessible via the API endpoint...

5.3CVSS5.5AI score0.00244EPSS
Exploits0References4
CVE
CVE
added 2025/10/09 3:44 p.m.19 views

CVE-2025-59958

This CVE affects Juniper Networks Junos OS Evolved on PTX Series (Packet Forwarding Engine). Affected component: firewall filters (output, on WAN/revenue interfaces). Root cause: improper handling when action is 'reject' causing matching packets to be sent to the Routing Engine, consuming RE reso...

6.9CVSS6.3AI score0.00256EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/04/09 8:15 p.m.6 views

CVE-2025-21595

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause an FPC to crash, leading to Denial of Service DoS. On all Junos OS and Junos OS Evolved...

7.1CVSS5.7AI score0.00229EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/08 12:0 a.m.5 views

PT-2023-33004 · Tinymce +1 · Tinymce +1

Name of the Vulnerable Software and Affected Versions: TinyMCE versions prior to 20.2.0 OpenMage magento-lts versions prior to 20.2.0 Description: The TinyMCE WYSIWYG editor fails to filter scripts when rendering HTML in specially crafted HTML tags, allowing for potential exploitation. This issue...

7.5CVSS7AI score
Exploits0References6
OSV
OSV
added 2023/08/09 8:15 a.m.4 views

CVE-2023-24477

In certain conditions, depending on timing and the usage of the Chrome web browser, Guardian/CMC versions before 22.6.2 do not always completely invalidate the user session upon logout. Thus an authenticated local attacker may gain acces to the original user's session...

7CVSS5.8AI score0.00137EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/14 12:0 a.m.7 views

PT-2023-20458 · Nokia · Nokia Web Element Manager

Name of the Vulnerable Software and Affected Versions: Nokia Web Element Manager versions prior to 22 R1 Description: A mobile network solution internal fault is found in Nokia Web Element Manager, where an authenticated, unprivileged user can execute administrative functions. Exploitation is not...

7.8CVSS7.6AI score0.00167EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/09/11 9:15 p.m.3 views

CVE-2022-40325

SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR 67262...

6.1CVSS6.4AI score0.00363EPSS
Exploits0References2
Rows per page
Query Builder