Lucene search
K

325 matches found

UbuntuCve
UbuntuCve
added 2026/03/26 11:16 p.m.5 views

CVE-2026-33743

Incus is a system container and virtual machine manager. Prior to version 6.23.0, a specially crafted storage bucket backup can be used by an user with access to Incus' storage bucket feature to crash the Incus daemon. Repeated use of this attack can be used to keep the server offline causing a...

6.5CVSS5.8AI score0.00385EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.9 views

WordPress plugin Complianz 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.9CVSS5.6AI score0.00222EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.7 views

WordPress plugin Tour & Activity Operator Plugin for TourCMS 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.4CVSS5.7AI score0.00235EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.8 views

WordPress plugin Contact List 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.6AI score0.00272EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.7 views

WordPress plugin WP NG Weather 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.6AI score0.00235EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.9 views

Statamic 跨站脚本漏洞

Statamic is a powerful flat-file CMS built using Laravel by Statamic Inc. It allows all content, templates, assets, and settings to be stored in files rather than in a database. Versions of Statamic 5.73.14 and earlier, as well as 6.7.0 and earlier, had a cross-site scripting vulnerability. This...

8.7CVSS5.3AI score0.00325EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/18 12:30 a.m.6 views

EUVD-2026-12655

Edimax GS-5008PL firmware version 1.00.54 and prior contain an insecure credential storage vulnerability that allows attackers to obtain administrator credentials by accessing configuration backup files. Attackers can download the config.bin file through fupload.cgi to extract plaintext username...

7.1CVSS5.8AI score0.00208EPSS
Exploits0References4
NVD
NVD
added 2026/03/17 10:16 p.m.16 views

CVE-2026-32842

Edimax GS-5008PL firmware version 1.00.54 and prior contain an insecure credential storage vulnerability that allows attackers to obtain administrator credentials by accessing configuration backup files. Attackers can download the config.bin file through fupload.cgi to extract plaintext username...

7.1CVSS0.00208EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

FileBrowser Quantum 跨站脚本漏洞

FileBrowser Quantum is a file manager developed by Graham Steffaniak. Versions of FileBrowser Quantum prior to 1.3.1-beta and 1.2.2-stable contained a cross-site scripting vulnerability. This vulnerability stemmed from the lack of context-aware escaping when rendering shared metadata fields, whic...

8.9CVSS7.1AI score0.00347EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/07 12:0 a.m.7 views

WordPress plugin DA Media GigList 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.7AI score0.00197EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.7 views

Gokapi 跨站脚本漏洞

Gokapi is a lightweight, self-hosted alternative to Firefox sending messages developed by Marc Bulling. Versions of Gokapi prior to 2.2.3 contained a cross-site scripting vulnerability. This vulnerability stemmed from malicious authenticated users uploading SVG files and creating hot links, which...

8.7CVSS7.1AI score0.00189EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.21 views

Calendar 跨站脚本漏洞

Calendar is an event management module developed by HumHub, offering a comprehensive solution for events within companies or organizations. Versions of Calendar prior to 1.8.11 contained a cross-site scripting vulnerability. This vulnerability stemmed from the existence of storage-type cross-site...

6.9CVSS5.6AI score0.00155EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.6 views

NocoDB 跨站脚本漏洞

NocoDB is an open-source alternative to Airtable. It converts any MySQL, PostgreSQL, SQL Server, SQLite, and MariaDB databases into intelligent spreadsheets. Versions of NocoDB prior to 0.301.3 had a cross-site scripting vulnerability. This vulnerability occurred due to the lack of cleanup during...

5.4CVSS5.7AI score0.00143EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.13 views

WordPress plugin Blocksy 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

6.4CVSS5.7AI score0.00194EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.6 views

WordPress plugin WP Accessibility 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.4CVSS5.7AI score0.00205EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/02/26 2:2 a.m.4 views

Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager

Overview Credential storage vulnerability exists in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager CVE-2025-0976. Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Please refer to the 'Vendor Information' section for th...

7.5CVSS5.9AI score0.00157EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.5 views

Mozilla Thunderbird < 148.0

The version of Thunderbird installed on the remote Windows host is prior to 148.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-16 advisory. - Memory safety bugs present in Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory...

10CVSS7.7AI score0.00625EPSS
Exploits2References51
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.8 views

WordPress plugin Cool Tag Cloud 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

6.5CVSS5.6AI score0.00161EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.10 views

LibreNMS 安全漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. There were security vulnerabilities in LibreNMS versions 24.10.0 to 26.1.1. These...

5.4CVSS5.7AI score0.00227EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.12 views

WordPress plugin salavat counter Plugin 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.4CVSS5.6AI score0.00297EPSS
Exploits0References5
Rows per page
Query Builder