Lucene search
K

1799 matches found

Vulnrichment
Vulnrichment
added 2026/06/05 1:52 a.m.8 views

CVE-2026-50591

In Znuny LTS before 6.5.21 and Znuny before 7.3.3, XSS can occur via stored user preferences...

5.4CVSS5.4AI score0.00133EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/05 1:52 a.m.10 views

CVE-2026-50591

In Znuny LTS before 6.5.21 and Znuny before 7.3.3, XSS can occur via stored user preferences...

5.4CVSS5.4AI score0.00133EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/05 12:0 a.m.25 views

PT-2026-46898

IN Znuny LTS before 6.5.21 and Znuny before 7.3.3, XSS can occur via stored user preferences...

5.4CVSS5.8AI score0.00133EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/05 12:0 a.m.16 views

Znuny 安全漏洞

Znuny is a ticket system of the Znuny company. Versions of Znuny prior to 7.3.3 contained security vulnerabilities; these vulnerabilities stemmed from user preference settings stored in the system, which could lead to cross-site scripting attacks...

5.4CVSS5AI score0.00133EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.11 views

Oracle Linux 8 : firefox (ELSA-2026-21382)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-21382 advisory. 140.11.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 - diable wasisdk to prevent build failure with newer llvm 140.11.0 -...

9.8CVSS5.9AI score0.00605EPSS
Exploits0References19
Oracle linux
Oracle linux
added 2026/05/27 12:0 a.m.16 views

thunderbird security update

140.10.1-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.10.1 - Add OpenELA debranding 140.10.1-1 - Update to 140.10.1 ESR...

9.6CVSS5.8AI score0.00375EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/05/21 6:52 p.m.71 views

rgui-3.4.4-seh-bof-exploit

Exploração de Buffer Overflow SEH Overwrite no RGui 3.4.4...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/13 2:20 a.m.11 views

CVE-2026-28988

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, watchOS 26.5. An app may be able to bypass certain Privacy preferences...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 9:18 p.m.15 views

CVE-2026-28988

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, watchOS 26.5. An app may be able to bypass certain Privacy preferences...

5.5CVSS0.00129EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/11 8:8 p.m.9 views

CVE-2026-28988

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, watchOS 26.5. An app may be able to bypass certain Privacy preferences...

5.8AI score0.00129EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/11 8:8 p.m.34 views

CVE-2026-28988

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, watchOS 26.5. An app may be able to bypass certain Privacy preferences...

0.00129EPSS
Exploits0References4
CVE
CVE
added 2026/05/11 8:8 p.m.17 views

CVE-2026-28988

CVE-2026-28988 describes a permissions issue where an app may bypass certain Privacy preferences. The vulnerability is addressed in Apple security updates: iOS 26.5, iPadOS 26.5, macOS Tahoe 26.5, visionOS 26.5, and watchOS 26.5. The connected advisories (NCSC-2026-0138/0139 and Apple security no...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References4Affected Software5
Oracle linux
Oracle linux
added 2026/05/11 12:0 a.m.18 views

thunderbird security update

140.10.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.10.0 - Add OpenELA debranding 140.10.0-1 - Update to 140.10.0 ESR...

9.8CVSS6AI score0.04938EPSS
Exploits1
NVD
NVD
added 2026/05/07 4:16 a.m.18 views

CVE-2026-41663

Admidio is an open-source user management solution. Prior to version 5.0.9, several administrative operations in Admidio's preferences module database backup, test email, htaccess generation fire via GET requests with no CSRF token validation. Because SameSite=Lax cookies travel with top-level GE...

3.5CVSS0.00117EPSS
Exploits0References2
CVE
CVE
added 2026/05/07 3:0 a.m.11 views

CVE-2026-41663

Admidio has a CSRF flaw (CVE-2026-41663) affecting versions prior to 5.0.9. The vulnerability lies in the preferences module where backup, test_email, and htaccess operations are executed via GET requests without CSRF validation, allowing exploitation via SameSite=Lax cookies to trigger actions o...

3.5CVSS5.7AI score0.00117EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/07 3:0 a.m.9 views

CVE-2026-41663 Admidio: CSRF on Admin Preferences Triggers Unauthorized Backup, .htaccess Write, and Email Send

Admidio is an open-source user management solution. Prior to version 5.0.9, several administrative operations in Admidio's preferences module database backup, test email, htaccess generation fire via GET requests with no CSRF token validation. Because SameSite=Lax cookies travel with top-level GE...

3.5CVSS5.7AI score0.00117EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/07 3:0 a.m.7 views

CVE-2026-41663

Admidio is an open-source user management solution. Prior to version 5.0.9, several administrative operations in Admidio's preferences module database backup, test email, htaccess generation fire via GET requests with no CSRF token validation. Because SameSite=Lax cookies travel with top-level GE...

3.5CVSS5.7AI score0.00117EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/05/07 3:0 a.m.12 views

EUVD-2026-28278

Admidio is an open-source user management solution. Prior to version 5.0.9, several administrative operations in Admidio's preferences module database backup, test email, htaccess generation fire via GET requests with no CSRF token validation. Because SameSite=Lax cookies travel with top-level GE...

3.5CVSS5.7AI score0.00117EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2026/05/05 12:0 a.m.15 views

thunderbird security update

140.10.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.10.0 - Add OpenELA debranding 140.10.0-1 - Update to 140.10.0 ESR...

9.8CVSS6AI score0.04938EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.9 views

Oracle Linux 8 : thunderbird (ELSA-2026-13537)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-13537 advisory. 140.10.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.10.0 - Add OpenELA debranding 140.10.0-1 - Update to 140.10.0 ESR...

9.8CVSS6.1AI score0.04938EPSS
Exploits1References26
Rows per page
Query Builder