Lucene search
K

252960 matches found

OSV
OSV
•added 2026/05/14 1:9 p.m.•6 views

GHSA-WMMV-VVG5-993Q Amazon Redshift Vulnerable to Remote Code Execution via Unsafe Class Loading

Summary Amazon Redshift JDBC Driver is a Type 4 JDBC driver that provides database connectivity through the standard JDBC application program interfaces APIs. An issue exists in versions prior to 2.2.2 where the driver could load arbitrary classes when processing certain connection URL parameters...

9.2CVSS6.4AI score0.00573EPSS
Exploits0References5
Github Security Blog
Github Security Blog
•added 2026/05/14 1:9 p.m.•11 views

Amazon Redshift Vulnerable to Remote Code Execution via Unsafe Class Loading

Summary Amazon Redshift JDBC Driver is a Type 4 JDBC driver that provides database connectivity through the standard JDBC application program interfaces APIs. An issue exists in versions prior to 2.2.2 where the driver could load arbitrary classes when processing certain connection URL parameters...

9.2CVSS6.4AI score0.00573EPSS
Exploits0References5Affected Software1
GithubExploit
GithubExploit
•added 2026/05/14 12:37 p.m.•120 views

Exploit for CVE-2026-42945

NGINX Rift RCE Exploit CVE-2026-42945 A professional Proof-...

9.2CVSS6.2AI score0.61469EPSS
Exploits40
RedHat Linux
RedHat Linux
•added 2026/05/14 12:9 p.m.•7 views

GIMP: GIMP: Arbitrary code execution via specially crafted PSD file

A flaw was found in GIMP. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted PSD Photoshop Document file. This flaw is due to an integer overflow during the parsing of PSD files, which can lead to arbitrary code execution, allowing the attacker to run...

7.8CVSS7.4AI score0.00755EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/14 12:9 p.m.•12 views

Important: Red Hat Security Advisory: gimp:2.8 security update

An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.4AI score0.00755EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/14 12:9 p.m.•9 views

gimp: GIMP: Remote Code Execution via PSP file parsing

A flaw was found in GIMP. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted PSP PaintShop Pro file. This flaw is caused by a heap-based buffer overflow, where the application does not properly validate the length of user-supplied data. Successful...

7.8CVSS7.7AI score0.00651EPSS
Exploits0References6
RedHat Linux
RedHat Linux
•added 2026/05/14 12:9 p.m.•13 views

gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow

A flaw was found in GIMP. Remote attackers can exploit this vulnerability by tricking a user into opening a malicious XPM X PixMap image file. This can lead to an an integer overflow during file processing, allowing the attacker to execute arbitrary code on the affected system...

7.8CVSS7.5AI score0.00596EPSS
Exploits0References6
OSV
OSV
•added 2026/05/14 12:3 p.m.•12 views

RLSA-2026:16484 Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:Memo...

7.8CVSS7.4AI score0.00755EPSS
Exploits1References7
Rockylinux
Rockylinux
•added 2026/05/14 12:3 p.m.•11 views

gimp security update

An update is available for gimp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The GIMP GNU Image Manipulation Program is an image composition and editing...

7.8CVSS6.2AI score0.00755EPSS
Exploits1
GithubExploit
GithubExploit
•added 2026/05/14 11:20 a.m.•95 views

Exploit for OS Command Injection in Insat Masterscada

!CVEhttps://img.shields.io/badge/CVE-2026--22553-Critical-red...

9.8CVSS6.4AI score0.01433EPSS
Exploits1
Information Security Automation
Information Security Automation
•added 2026/05/14 10:0 a.m.•11 views

About Remote Code Execution - Apache ActiveMQ (CVE-2026-34197) vulnerability

About Remote Code Execution - Apache ActiveMQ CVE-2026-34197 vulnerability. Apache ActiveMQ is a popular open-source message broker written in Java. Its main purpose is to send messages between different services, systems, and microservices without a direct connection between them. This...

8.8CVSS6.8AI score0.96666EPSS
Exploits12
NVD
NVD
•added 2026/05/14 7:16 a.m.•15 views

CVE-2026-6271

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS0.00665EPSS
Exploits1References4
GithubExploit
GithubExploit
•added 2026/05/14 6:58 a.m.•82 views

Exploit for CVE-2026-44403

Wing FTP Server v8.1.2 contains a Remote Code Execution RCE vu...

8.6CVSS6.1AI score0.02643EPSS
Exploits5
CVE
CVE
•added 2026/05/14 6:44 a.m.•18 views

CVE-2026-6271

The CVE-2026-6271 entry concerns the WordPress Career Section plugin (all versions up to 1.7) vulnerable to Arbitrary File Upload via the CV upload handler due to missing file type validation. Unauthenticated attackers can upload executable files, enabling remote code execution as described in th...

9.8CVSS6.4AI score0.00665EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
•added 2026/05/14 6:44 a.m.•6 views

CVE-2026-6271

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS6.4AI score0.00665EPSS
Exploits1References5
Vulnrichment
Vulnrichment
•added 2026/05/14 6:44 a.m.•10 views

CVE-2026-6271 Career Section <= 1.7 - Unauthenticated Arbitrary File Upload

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS6.4AI score0.00665EPSS
Exploits1References4
EUVD
EUVD
•added 2026/05/14 6:44 a.m.•9 views

EUVD-2026-30253

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS6.4AI score0.00665EPSS
Exploits1References4
Cvelist
Cvelist
•added 2026/05/14 6:44 a.m.•40 views

CVE-2026-6271 Career Section <= 1.7 - Unauthenticated Arbitrary File Upload

The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. This is due to missing file type validation. This makes it possible for unauthenticated attackers to upload files that may be executable, which makes...

9.8CVSS0.00665EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2026/05/14 6:38 a.m.•14 views

CVE-2026-42778

A flaw was found in Apache MINA. An incomplete fix for a deserialization issue in the AbstractIoBuffer.getObject method allowed a static initializer in a class to be executed before the classname allowlist was applied. This vulnerability allows a remote attacker to execute arbitrary code in...

9.8CVSS6.2AI score0.00657EPSS
Exploits0References4
GithubExploit
GithubExploit
•added 2026/05/14 6:12 a.m.•107 views

Exploit for CVE-2026-42945

NGINX Rift RCE Proof of concept for CVE-2026-42945, a cri...

9.2CVSS6.8AI score0.61469EPSS
Exploits40
Rows per page
Query Builder