Lucene search
+L

214 matches found

vulnrichment
vulnrichment
added 2026/02/08 12:32 a.m.3 views

CVE-2026-2120 D-Link DIR-823X Configuration Parameter set_server_settings os command injection

A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/setserversettings of the component Configuration Parameter Handler. The manipulation of the argument terminaladdr/serverip/serverport leads to os command injection. The attack may be...

8.6CVSS5.4AI score0.03916EPSS
Exploits1References5
cvelist
cvelist
added 2026/02/08 12:32 a.m.48 views

CVE-2026-2120 D-Link DIR-823X Configuration Parameter set_server_settings os command injection

A vulnerability was identified in D-Link DIR-823X 250416. This affects an unknown function of the file /goform/setserversettings of the component Configuration Parameter Handler. The manipulation of the argument terminaladdr/serverip/serverport leads to os command injection. The attack may be...

8.6CVSS0.03916EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2026/01/21 12:0 a.m.9 views

PT-2026-3799

GetSimple CMS My SMTP Contact Plugin 1.1.1 contains a cross-site request forgery CSRF vulnerability. Attackers can craft a malicious webpage that, when visited by an authenticated administrator, can change SMTP configuration settings in the plugin. This may allow unauthorized changes but does not...

5.1CVSS5.8AI score0.00349EPSS
Exploits1References6
redhatcve
redhatcve
added 2026/01/09 12:9 p.m.9 views

CVE-2018-18949

Zoho ManageEngine OpManager 12.3 before 123222 has SQL Injection via Mail Server settings...

9.8CVSS8.3AI score0.24498EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 9:36 a.m.17 views

CVE-2024-34882

Insufficiently protected credentials in SMTP server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to send SMTP account passwords to an arbitrary server via HTTP POST request...

6.8CVSS7.2AI score0.00339EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 9:36 a.m.11 views

CVE-2024-34891

Insufficiently protected credentials in DAV server settings in 1C-Bitrix Bitrix24 23.300.100 allows remote administrators to read Exchange account passwords via HTTP GET request...

6.8CVSS7AI score0.0029EPSS
Exploits1References1
cnvd
cnvd
added 2025/10/31 12:0 a.m.7 views

IPFire Cross-Site Scripting Vulnerability (CNVD-2025-27702)

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input by mail server settings. An attacker can exploit this...

5.4CVSS6.2AI score0.00453EPSS
Exploits0References1
euvd
euvd
added 2025/10/28 3:30 p.m.4 views

EUVD-2025-36513

IPFire versions prior to 2.29 Core Update 198 contain a stored cross-site scripting XSS vulnerability that allows an authenticated attacker to inject arbitrary JavaScript code through the UPDATEVALUE parameter when updating the default time synchronization settings. When the default values...

5.1CVSS5.5AI score0.00453EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/10/28 2:34 p.m.5 views

CVE-2025-34316 IPFire < v2.29 Stored XSS via Mail Server Settings

IPFire versions prior to 2.29 Core Update 198 contain a stored cross-site scripting XSS vulnerability that allows an authenticated attacker to inject arbitrary JavaScript code through the txtmailuser and txtmailpass parameters when updating the mail server settings. When a user updates the mail...

5.1CVSS5.7AI score0.00453EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/10/28 12:0 a.m.7 views

IPFire 安全漏洞

IPFire is an open source Linux distribution from the IPFire organization, used primarily as a router and firewall. IPFire suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input by mail server settings. An attacker can exploit this...

5.4CVSS6.1AI score0.00453EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-2994

Malware in sbrugna...

9.8CVSS9.2AI score0.10099EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-9073

Malware in sbrugna...

5.4CVSS5.6AI score0.00806EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-10127

Malware in sbrugna...

4.8CVSS5.1AI score0.01083EPSS
Exploits1References4
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-42741

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.0147EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-26614

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00548EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-28545

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00452EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-32561

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.02091EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-47964

Malicious code in bioql PyPI...

7.2CVSS7AI score0.01034EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-32396

Malicious code in bioql PyPI...

6.5CVSS6.1AI score0.00379EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48744

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00389EPSS
Exploits0References2
Rows per page
Query Builder