Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/04/08 7:34 p.m.8 views

CVE-2026-5465

The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.1.3. This is due to the UpdateProviderCommandHandler failing to validate changes to the externalId field when a Provider Employe...

8.8CVSS6AI score0.00632EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-12588

Malware in sbrugna...

4.8CVSS5.3AI score0.04428EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-3438

Malware in sbrugna...

6.1CVSS6.1AI score0.02343EPSS
Exploits5References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30981

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00177EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/08 8:33 p.m.3 views

CVE-2025-7365

A flaw was found in Keycloak. When an authenticated attacker attempts to merge accounts with another existing account during an identity provider IdP login, the attacker will subsequently be prompted to "review profile" information. This vulnerability allows the attacker to modify their email...

7.1CVSS6.2AI score0.00226EPSS
Exploits0References3
CNVD
CNVD
added 2018/12/11 12:0 a.m.9 views

DomainMOD cross-site scripting vulnerability (CNVD-2019-07964)

DomainMOD is an open source application for managing your domain names and other Internet assets in a central location. DomainMOD 4.11.01 suffers from a cross-site scripting vulnerability that can be exploited by an attacker via the assets/add/ssl-provider-account.php username field...

4.8CVSS8.1AI score0.04428EPSS
Exploits5References1
Prion
Prion
added 2018/12/10 9:29 a.m.14 views

Default credentials

DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field...

3.5CVSS4.7AI score0.04428EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2018/12/10 9:0 a.m.24 views

CVE-2018-20010

DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field...

5.3AI score0.04428EPSS
Exploits5References2
Prion
Prion
added 2018/05/24 7:29 a.m.17 views

Design/Logic Flaw

DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter...

4.3CVSS5.9AI score0.02343EPSS
Exploits5References2Affected Software1
CNVD
CNVD
added 2018/05/24 12:0 a.m.1 views

DomainMod cross-site scripting vulnerability (CNVD-2018-10361)

DomainMod is a PHP and MySQL based open source application for managing centrally located domain names and other Internet assets. A cross-site scripting vulnerability exists in DomainMod version 4.09.03. A remote attacker can exploit this vulnerability by sending the 'sslpaid' parameter to the...

6.1CVSS6.1AI score0.02343EPSS
Exploits5References1
OpenVAS
OpenVAS
added 2010/07/30 12:0 a.m.23 views

Ubuntu Update for likewise-open vulnerability USN-964-1

Ubuntu Update for Linux kernel vulnerabilities USN-964-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9641.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for likewise-open vulnerability USN-964-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

9.3CVSS6.7AI score0.04137EPSS
Exploits0References2
Rows per page
Query Builder