Lucene search
K

202 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:45 a.m.5 views

CVE-2025-40736

A vulnerability has been identified in SINEC NMS All versions V4.0. The affected application exposes an endpoint that allows an unauthorized modification of administrative credentials. This could allow an unauthenticated attacker to reset the superadmin password and gain full control of the...

9.8CVSS7.6AI score0.00401EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.6 views

CVE-2019-16173

LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/SurveyCommonAction.php,...

5.4CVSS5.9AI score0.03674EPSS
Exploits6References1
Snyk
Snyk
added 2025/12/12 4:44 p.m.3 views

Incorrect Permission Assignment for Critical Resource

Overview xmo/mine-core is a mineadmin core package Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to login to the superAdmin account by using the default credentials. An attacker can execute arbitrary commands and gain full account...

9.8CVSS7.6AI score0.0043EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2025/12/10 12:0 a.m.151 views

📄 Xorcom CompletePBX 5.2.35 Remote Code Execution

Xorcom CompletePBX suffers from an authenticated command injection vulnerability within the Task Scheduler subsystem. An attacker with valid superadmin credentials can create a scheduled task containing unsanitized parameters that get executed by the backend, resulting in remote command execution...

8.8CVSS7.6AI score0.03853EPSS
Exploits3
EUVD
EUVD
added 2025/11/10 3:31 p.m.9 views

EUVD-2025-44058

A Cross-Site Request Forgery CSRF vulnerability in the SourceCodester Client Database Management System 1.0 allows an attacker to cause an authenticated administrative user to perform user deletion actions without their consent. The application's user deletion endpoint e.g.,...

7.1CVSS6.5AI score0.002EPSS
Exploits1References3
OSV
OSV
added 2025/10/30 5:22 p.m.5 views

GHSA-G59R-24G3-H7CM Statamic Vulnerable to Superadmin Account Takeover via Stored Cross-Site Scripting and Lack of Proper X-CSRF-TOKEN Server-Side Validation

Impact Stored XSS vulnerabilities in Collections and Taxonomies allow authenticated users with content creation permissions to inject malicious JavaScript that executes when viewed by higher-privileged users. This affects: - Control panel users with permission to create or edit Collections and...

8CVSS6.4AI score0.00279EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/10/30 5:22 p.m.11 views

Statamic Vulnerable to Superadmin Account Takeover via Stored Cross-Site Scripting and Lack of Proper X-CSRF-TOKEN Server-Side Validation

Impact Stored XSS vulnerabilities in Collections and Taxonomies allow authenticated users with content creation permissions to inject malicious JavaScript that executes when viewed by higher-privileged users. This affects: - Control panel users with permission to create or edit Collections and...

8CVSS6.4AI score0.00279EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-0680

Malware in sbrugna...

9CVSS6.4AI score0.02645EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-0585

Malware in sbrugna...

4.3CVSS6.4AI score0.00524EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-5721

Malware in sbrugna...

7.2CVSS6.4AI score0.0032EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-4698

Malware in sbrugna...

10CVSS6.4AI score0.02298EPSS
Exploits2References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-2694

Malware in sbrugna...

8.8CVSS8.6AI score0.03148EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-1920

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00943EPSS
Exploits2References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20433

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.00401EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-44534

Malicious code in bioql PyPI...

7.8CVSS4.8AI score0.00126EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5098

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.03674EPSS
Exploits6References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-28170

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.01082EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-28404

Malicious code in bioql PyPI...

9.8CVSS5AI score0.00356EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0963

Malicious code in bioql PyPI...

9.9CVSS8.4AI score0.0092EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-47897

Malicious code in bioql PyPI...

6CVSS6.6AI score0.0026EPSS
Exploits0References2
Rows per page
Query Builder