Lucene search
K

12 matches found

Cvelist
Cvelist
added 2026/06/09 2:27 p.m.34 views

CVE-2026-49938

A improper access control vulnerability in Fortinet FortiPortal 7.4.0 through 7.4.7, FortiPortal 7.2.0 through 7.2.8, FortiPortal 7.0 all versions may allow attacker to improper access control via...

6.5CVSS0.00201EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/04 9:30 a.m.6 views

EUVD-2026-18975

The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.7. This is due to insufficient input sanitization and output escaping in the 'src' attribute of the sulightbox shortcode. This makes it possib...

6.4CVSS6.1AI score0.0034EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/04 12:0 a.m.9 views

PT-2026-30310

The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 7.4.7. This is due to insufficient input sanitization and output escaping in the 'src' attribute of the su lightbox shortcode. This makes it...

6.4CVSS6.1AI score0.0034EPSS
Exploits0References4
CNVD
CNVD
added 2026/03/10 12:0 a.m.4 views

Multiple Vulnerabilities in Siemens RUGGEDCOM APE1808 Device Fortigate NGFW V7.4.7 Prior Versions

The RUGGEDCOM APE1808 is a powerful industrial-grade application hosting platform that allows you to deploy a wide range of commercial edge computing and cybersecurity applications in harsh industrial environments. Siemens RUGGEDCOM APE1808 appliance Fortigate NGFW V7.4.7 prior version has multip...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.7 views

Fortinet FortiExtender 操作系统命令注入漏洞

Fortinet FortiExtender is a wireless WAN wide area network extender device from Fortinet, Inc. An operating system command injection vulnerability exists in Fortinet FortiExtender versions 7.6.0 through 7.6.3, 7.4.0 through 7.4.7, all versions of 7.2, and all versions of 7.0, which originates fro...

7.2CVSS7.6AI score0.01585EPSS
Exploits0References1
OSV
OSV
added 2024/02/21 10:15 p.m.4 views

CVE-2023-52154

File Upload vulnerability in pmb/cameraupload.php in PMB 7.4.7 and earlier allows attackers to run arbitrary code via upload of crafted PHTML files...

7.2CVSS6AI score0.00681EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.5 views

PMB SQL Injection Vulnerability

PMB is a 100% free document management reference tool from the PMB Services team. A SQL injection vulnerability exists in PMB 7.4.7 and prior versions, which originates from a vulnerability that could allow an unauthenticated, remote attacker to inject arbitrary SQL commands via the PmbOpac-LOGIN...

9.8CVSS8.2AI score0.00821EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.3 views

PMB security breach

PMB is a 100% free document management reference tool from the PMB Services team. A security vulnerability exists in PMB 7.4.7 and prior versions that originated from allowing an unauthenticated, remote attacker to run arbitrary code via pmb/cameraupload.php using a crafted PHTML file...

7.2CVSS7.3AI score0.00681EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.5 views

PMB SQL Injection Vulnerability

PMB is a 100% free document management reference tool from the PMB Services team. A SQL injection vulnerability exists in PMB 7.4.7 and earlier versions that originates from allowing an unauthenticated, remote attacker to execute arbitrary SQL commands via the query parameter in the getnextnotice...

9.8CVSS8.6AI score0.00947EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.6 views

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the rsyslog-mmnormalize-7.4.7 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...

7.5CVSS5.4AI score0.07546EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.8 views

The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the rsyslog-debuginfo-7.4.7 package for the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...

7.5CVSS5.4AI score0.07546EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.33 views

CVE-2026-21747

...

Exploits0
Rows per page
Query Builder