Lucene search
+L

22293 matches found

Cvelist
Cvelist
added 9 hours ago4 views

CVE-2026-63832 wifi: mt76: add wcid publish check in mt76_sta_add

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: add wcid publish check in mt76staadd Since mt7925macstaadd publishes wcid, add publish check in mt76staadd to avoid reinitializing the wcid-polllist. Found dev-stapolllist corruption when using mt7925 and 7.1-rc4...

Exploits0References3
Nuclei
Nuclei
added 18 hours ago80 views

PHPJabbers Ticket Support Script v3.2 - Cross-Site Scripting

There is a Cross Site Scripting XSS vulnerability in the message parameter of index.php in PHPJabbers Ticket Support Script v3.2. id: CVE-2023-40753 info: name: PHPJabbers Ticket Support Script v3.2 - Cross-Site Scripting author: ritikchaddha severity: medium description: | There is a Cross Site...

5.4CVSS5.5AI score0.01053EPSS
Exploits0References2
Nuclei
Nuclei
added 18 hours ago57 views

WordPress Nirweb Support <2.8.2 - SQL Injection

WordPress Nirweb support plugin before 2.8.2 contains a SQL injection vulnerability. The plugin does not sanitize and escape a parameter before using it in a SQL statement via an AJAX action. An attacker can possibly obtain sensitive information from a database, modify data, and/or execute...

9.8CVSS8.8AI score0.13207EPSS
Exploits2References5
Nuclei
Nuclei
added 18 hours ago49 views

WP Live Chat Support <= 8.0.27 — Stored Cross-Site Scripting

wp-live-chat-support plugin before 8.0.27 for WordPress contains a reflected cross-site scripting caused by insufficient sanitization in the GDPR page, letting attackers execute arbitrary scripts in the context of the victim's browser, exploit requires victim to visit a malicious page. id:...

6.1CVSS6.1AI score0.01211EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 21 hours ago5 views

PT-2026-61498

In the Linux kernel, the following vulnerability has been resolved: mm: fix vm normal page to handle missing support for pmd special/pud special On x86 32-bit with THP enabled, zap huge pmd is seen to generate a "WARNING: mm/memory.c:735 at vm normal page+0x6a/0x7d", from the VM WARN ON ONCEis ze...

5.4AI score
Exploits0References4
Nuclei
Nuclei
added 2 days ago20 views

Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager - Invalid Access Control

Avamar Installation Manager in Dell EMC Avamar Server 7.3.1, 7.4.1, and 7.5.0, and Dell EMC Integrated Data Protection Appliance 2.0 and 2.1, is affected by a missing access control check vulnerability which could potentially allow a remote unauthenticated attacker to read or change the Local...

9.8CVSS8.3AI score0.46642EPSS
Exploits5References2
CVE
CVE
added 3 days ago10 views

CVE-2026-63081

The CVE-2026-63081 entry describes a stored XSS in the Perfect Support Ticketing & Document Management System (v1.7). Authenticated attackers with Agent-level privileges can inject scripts into the Notes field of assigned tickets, causing the script to run in the browser context of any viewer (in...

5.4CVSS6.1AI score0.00138EPSS
Exploits0References2
Fedora
Fedora
added 3 days ago12 views

[SECURITY] Fedora 44 Update: roundcubemail-1.7.2-1.fc44

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

10CVSS6.1AI score0.00311EPSS
Exploits0
NVD
NVD
added 4 days ago7 views

CVE-2026-15921

Node Version Manager nvm is a POSIX-compliant shell function for managing multiple node.js versions. In versions 0.32.1 through 0.40.5, nvm ls-remote and other commands that refresh remote LTS aliases, such as nvm install --lts parse the node.js mirror's index.tab and use each release's LTS...

3.1CVSS0.00225EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 4 days ago4 views

Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.118 fixes various security issues The following security issues were fixed: CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723. CVE-2026-52909: ip6vti: set netnsimmutable on the fallback device bsc1268662...

9CVSS6.1AI score0.00238EPSS
Exploits1References16
RedHat Linux
RedHat Linux
added 4 days ago5 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00252EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 4 days ago6 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

5.3CVSS6AI score0.00261EPSS
Exploits0References6
Fedora
Fedora
added 4 days ago11 views

[SECURITY] Fedora 43 Update: freerdp-3.28.0-1.fc43

The xfreerdp & wlfreerdp Remote Desktop Protocol RDP clients from the FreeR DP project. xfreerdp & wlfreerdp can connect to RDP servers such as Microsoft Windows machines, xrdp and VirtualBox...

9.8CVSS6.1AI score0.00698EPSS
Exploits3
Positive Technologies
Positive Technologies
added 4 days ago10 views

PT-2026-60310

Name of the Vulnerable Software and Affected Versions Node Version Manager nvm versions 0.32.1 through 0.40.5 Description An issue exists where nvm ls-remote and other commands that refresh remote LTS aliases, such as nvm install --lts, parse the node.js mirror's index.tab and use the LTS codenam...

3.1CVSS6.4AI score0.00225EPSS
Exploits0References4
OSV
OSV
added 5 days ago7 views

JLSEC-2026-707 Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a...

Two buffer overflow vulnerabilities existed in the wolfSSL CRL parser when parsing CRL numbers: a heap-based buffer overflow could occur when improperly storing the CRL number as a hexadecimal string, and a stack-based overflow for sufficiently sized CRL numbers. With appropriately crafted CRLs,...

9.8CVSS6.2AI score0.00471EPSS
Exploits1References6
OSV
OSV
added 5 days ago4 views

JLSEC-2026-735 Un-negotiated Raw Public Key (RFC 7250) accepted in place of an X.509 certificate, bypassing...

Un-negotiated Raw Public Key RFC 7250 accepted in place of an X.509 certificate, bypassing chain validation. A raw public key has no chain, so ParseCertRelative accepts it without performing any trust verification; it must therefore only be accepted when RPK was actually negotiated for that peer...

8.2CVSS6.1AI score0.00145EPSS
Exploits0References5
OSV
OSV
added 5 days ago2 views

JLSEC-2026-751 A CRL critical extension bypass exists in ParseCRL_Extensions where critical extensions are not...

A CRL critical extension bypass exists in ParseCRLExtensions where critical extensions are not properly enforced, allowing a crafted CRL with an unhandled critical extension to be accepted. This only affects builds with CRL support enabled and where a crafted CRL had a trusted signature when pars...

5.3CVSS6.1AI score0.0018EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 5 days ago7 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00374EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 5 days ago14 views

firefox: thunderbird: Memory safety bug fixed in Thunderbird ESR 140.12

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bug fixed in Thunderbird ESR 140.12...

7.5CVSS6AI score0.00252EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 5 days ago9 views

firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.37, Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird ESR 140.11, Firefox 151 and Thunderbird 151. Some of these bugs showed evidence of memory...

8.1CVSS6.1AI score0.00476EPSS
Exploits0References6
Rows per page
Query Builder