Lucene search
K

1574 matches found

CNNVD
CNNVD
added 2026/01/09 12:0 a.m.5 views

WordPress plugin Clearfy Cache 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

4.3CVSS6.4AI score0.00124EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/09 12:0 a.m.4 views

WordPress plugin Booking Calendar 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.3CVSS6.2AI score0.00337EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/01/07 9:35 a.m.7 views

CVE-2019-7860

A cryptographically weak pseudo-rando number generator is used in multiple security relevant contexts in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...

7.5CVSS6.8AI score0.01186EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.6 views

WordPress plugin WP Status Notifier 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

4.3CVSS6.6AI score0.00124EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.3 views

WordPress plugin SVG Map Plugin 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site reques...

6.1CVSS6.5AI score0.00115EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress plugin Latest Tabs 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site request...

4.3CVSS6.4AI score0.00102EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress plugin AMP for WP – Accelerated Mobile Pages 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

4.3CVSS6.3AI score0.00132EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.6 views

WordPress plugin Sticky Action Buttons 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host a personal blog site on a PHP and MySQL based...

4.3CVSS6.2AI score0.00112EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress plugin NS IE Compatibility Fixer 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin.... A cross-site reques...

4.3CVSS6.4AI score0.00132EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/12/31 12:23 a.m.5 views

SUSE CVE-2025-69217

coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RANDbytes but libc's random if it's not runni...

7.7CVSS7AI score0.00363EPSS
Exploits0References3
NVD
NVD
added 2025/12/30 1:15 a.m.7 views

CVE-2025-69217

coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RANDbytes but libc's random if it's not runni...

7.7CVSS0.00363EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/30 12:41 a.m.6 views

EUVD-2025-205680

coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RANDbytes but libc's random if it's not runni...

7.7CVSS6.5AI score0.00363EPSS
Exploits0References3
CVE
CVE
added 2025/12/30 12:41 a.m.25 views

CVE-2025-69217

CVE-2025-69217 pertains to coturn (TURN/STUN server). Affected releases: 4.6.2r5–4.7.0-r4 have a weak RNG for nonces and port randomization due to a refactor, using libc random() instead of OpenSSL RAND_bytes (non-Windows). Attacking with ~50 consecutive unauthenticated nonce requests can reconst...

7.7CVSS6.6AI score0.00363EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/12/30 12:41 a.m.5 views

CVE-2025-69217

coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0-r4 have a bad random number generator for nonces and port randomization after refactoring. Additionally, random numbers aren't generated with openssl's RANDbytes but libc's random if it's not runni...

7.7CVSS5.5AI score0.00363EPSS
Exploits0
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.4 views

Coturn 安全特征问题漏洞

Coturn is an open source implementation of TURN VoIP Media Services NAT Traversal Server and Gateway and STUN Simple Traversal of Network Address Translator for User Datagram Protocol Server by Coturn Open Source. A security feature issue vulnerability exists in Coturn versions 4.6.2r5 through...

7.7CVSS5.8AI score0.00363EPSS
Exploits0References3
OSV
OSV
added 2025/12/24 1:16 p.m.7 views

UBUNTU-CVE-2023-54073

In the Linux kernel, the following vulnerability has been resolved: tpm: Add !tpmamdisrngdefective to the hwrngunregister call site The following crash was reported: 1950.279393 listdel corruption, ffff99560d485790-next is NULL 1950.279400 ------------ cut here ------------ 1950.279401 kernel BUG...

5.6AI score0.00168EPSS
Exploits0References6
CVE
CVE
added 2025/12/24 12:23 p.m.19 views

CVE-2023-54073

The CVE-2023-54073 issue is a Linux kernel vulnerability fixed by adding the invariant !tpm_amd_is_rng_defective() at the hwrng_unregister() call site inside tpm_chip_unregister(). The description and connected sources show a crash scenario linked to hwrng_unregister() being called during tpm_chi...

6AI score0.00168EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 11:15 a.m.4 views

CVE-2023-53998

In the Linux kernel, the following vulnerability has been resolved: hwrng: virtio - Fix race on dataavail and actual data The virtio rng device kicks off a new entropy request whenever the data available reaches zero. When a new request occurs at the end of a read operation, that is, when the...

0.00177EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the hardware random number generator logging out without checking that the AMD RNG is OK, which could lead t...

6.2AI score0.00168EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/23 2:31 p.m.3 views

CVE-2025-26379

Use of a weak pseudo-random number generator, which may allow an attacker to read or inject encrypted PowerG packets...

7.2CVSS6.8AI score0.00167EPSS
Exploits0References1
Rows per page
Query Builder