Lucene search
K

1935 matches found

EUVD
EUVD
added 2026/01/07 6:36 a.m.7 views

EUVD-2026-1237

The iPaymu Payment Gateway for WooCommerce plugin for WordPress is vulnerable to Missing Authentication in all versions up to, and including, 2.0.2 via the 'checkipaymuresponse' function. This is due to the plugin not validating webhook request authenticity through signature verification or origi...

8.2CVSS5.6AI score0.00306EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2026/01/04 12:0 a.m.6 views

Security in the Era of Perceptive Networks: A Comprehensive Taxonomic Framework for Integrated Sensing and Communication Security

Integrated Sensing and Communication ISAC represents a significant shift in the 6G landscape, where wireless networks both sense the environment and communicate. While prior comprehensive surveys have established foundational elements of ISAC security, discussed perception-focused security models...

7.1AI score
Exploits0
EUVD
EUVD
added 2026/01/02 6:30 p.m.6 views

EUVD-2026-0077

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2026/01/02 6:30 p.m.4 views

EUVD-2026-0137

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2026/01/02 6:30 p.m.5 views

EUVD-2026-0233

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2026/01/02 6:30 p.m.5 views

EUVD-2026-0355

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
EUVD
EUVD
added 2026/01/02 6:30 p.m.6 views

EUVD-2026-0397

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

5.5AI score
Exploits0References1
GithubExploit
GithubExploit
added 2025/12/31 1:25 p.m.190 views

Exploit for CVE-2025-8110

🚀 CVE-2025-8110 - Simple Detection for Security Issues 🛠️...

8.7CVSS6.9AI score0.7654EPSS
Exploits16
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.6 views

PT-2025-53586

Name of the Vulnerable Software and Affected Versions IBM Aspera Faspex 5 versions 5.0.0 through 5.0.14.1 Description The software may have inconsistent permissions between the user interface and backend API. This could allow users to access features that appear disabled, potentially leading to...

3.8CVSS6.5AI score0.00203EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

openSUSE 16 Security Update : cheat (openSUSE-SU-2025:20177-1)

The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:20177-1 advisory. - Security: CVE-2025-47913: Fix client process termination bsc1253593 CVE-2025-58181: Fix potential unbounded memory consumption bsc1253922...

9.8CVSS7.5AI score0.93305EPSS
Exploits7References20
SUSE Linux
SUSE Linux
added 2025/12/18 12:10 p.m.3 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-9026 Other...

7.8CVSS6.9AI score0.00407EPSS
Exploits0References22
EUVD
EUVD
added 2025/12/17 3:34 p.m.7 views

EUVD-2025-203895

A vulnerability in the application software of multiple Radiometer products may allow remote code execution and unauthorized device management when specific internal conditions are met. Exploitation requires that a remote connection is established with additional information obtained through othe...

8.4CVSS7.2AI score0.00399EPSS
Exploits0References2
Veracode
Veracode
added 2025/12/13 7:26 a.m.7 views

Weak Password Requirements

MLflow is vulnerable to Weak Password Requirements. The vulnerability is due to weak password requirements in the authentication mechanism, which allows an attacker to bypass authentication and gain unauthorized access to the system...

9.8CVSS7.1AI score0.01492EPSS
Exploits0References4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/12 4:53 a.m.8 views

Security Bulletin: The IBM® Engineering Lifecycle Management products using WebSphere Application Server and WebSphere Application Server Liberty are affected by SMTP injection due to Jakarta Mail (CVE-2025-7962)

Summary A vulnerability in javaMail-1.5, javaMail-1.6, mail-2.0, or mail-2.1 features affects IBM WebSphere Application Server Liberty 17.0.0.3 - 25.0.0.11 with specific features enabled. Following IBM® Engineering Lifecycle Management products are vulnerable to this attack, and addressed in this...

7.5CVSS6.7AI score0.00756EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.6 views

Apache Fineract 安全漏洞

Apache Fineract is a set of open source digital financial services platform of the U.S. Apache Apache Foundation. The platform can provide users with data management, loan and savings portfolio management and real-time financial data and other functions. Apache Fineract suffers from an informatio...

8.5CVSS6AI score0.00448EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.13 views

PT-2025-50904

Name of the Vulnerable Software and Affected Versions Apache Fineract versions through 1.10.1 Description Apache Fineract is affected by a weak password requirements issue. Upgrade to version 1.11.0 or later to address this. Users are encouraged to upgrade to version 1.13.0, the latest release...

8.5CVSS6.7AI score0.00448EPSS
Exploits0References8
Gitee
Gitee
added 2025/11/27 11:48 a.m.184 views

metasploit-framework

This is the Metasploit Framework repository, a widely used penetration testing tool. It is an offensive tool for penetration testing and vulnerability assessment. The repository contains various modules and tools for exploiting vulnerabilities and conducting penetration testing. The primary...

8.6AI score
Exploits0
Veeam
Veeam
added 2025/11/25 12:0 a.m.55 views

The HTTP request was forbidden with client authentication scheme

July 2, 2026 -- Issue Recurrence Resolved July 2, 2026 | Veeam Customer Technical Support began observing an increase in cases reporting that jobs were failing with the same error documented in this article. July 3, 2026 | Microsoft engineering has implemented backend changes as part of the ongoi...

5.9AI score
Exploits0
NVD
NVD
added 2025/11/24 4:15 p.m.7 views

CVE-2025-10554

A stored Cross-site Scripting XSS vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.0016EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 3:31 p.m.4 views

EUVD-2025-198897

A stored Cross-site Scripting XSS vulnerability affecting Requirements in ENOVIA Product Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6AI score0.0016EPSS
Exploits0References2
Rows per page
Query Builder