Lucene search
+L

463 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-52885

Malicious code in bioql PyPI...

8.5CVSS8.9AI score0.00473EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.11 views

PT-2025-40384

Name of the Vulnerable Software and Affected Versions AndSoft e-TMS version 25.03 Description A cross-site scripting XSS issue exists that allows an attacker to execute JavaScript code in a victim's browser. This is achieved by sending a malicious URL. The vulnerability is reflected in the...

6.1CVSS6AI score0.00181EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.8 views

CVE-2025-60157

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Stored XSS.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a throu...

6.5CVSS5.9AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/09/26 9:15 a.m.5 views

CVE-2025-60157

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Stored XSS.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a throu...

6.5CVSS0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/26 8:31 a.m.2 views

CVE-2025-60157 WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Stored XSS.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a throu...

6.5CVSS5.2AI score0.00209EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.5 views

PT-2025-39599

Name of the Vulnerable Software and Affected Versions WP Ticket Customer Service Software & Support Ticket System versions through 6.0.2 Description The software contains a flaw related to improper handling of user-supplied data during web page creation, which can lead to Stored Cross-site...

6.5CVSS6AI score0.00209EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/22 12:0 a.m.9 views

PT-2025-38822

Name of the Vulnerable Software and Affected Versions WPFactory Helpdesk Support Ticket System for WooCommerce versions through 2.0.2 Description The software contains a flaw related to missing authorization, allowing exploitation of incorrectly configured access control security levels...

4.3CVSS6.6AI score0.0023EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-1248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in OTRS AG OTRS Ticket Actions modules, OTRS AG OTRS Community Edition Ticket Actions modules allows Cross-Site Scriptin...

6.1CVSS6.2AI score0.00431EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43444

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Passwords of agents and customers are displayed in plain text in the OTRS admin log module if certain configurations regarding the authentication sources match...

8.2CVSS7AI score0.00376EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-39049

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of JavaScript in the context of OTRS. CVE-2022-39049 Note that...

4.8CVSS6.2AI score0.00531EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-23791

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insertion of debug information into log file during building the elastic search index allows reading of sensitive information from articles.This issue affects...

7.5CVSS6.6AI score0.00515EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/30 6:17 p.m.3 views

CVE-2025-53584

Deserialization of Untrusted Data vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Object Injection.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a through = 6.0.2...

8.1CVSS5.9AI score0.00303EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-12746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Open Ticket Request System OTRS Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. A user logged into OTRS as an agent...

6.5CVSS6.3AI score0.02018EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Open Ticket Request System OTRS 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write...

8.8CVSS7.9AI score0.01922EPSS
Exploits0References2
NVD
NVD
added 2025/08/28 1:16 p.m.3 views

CVE-2025-53584

Deserialization of Untrusted Data vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Object Injection.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a through = 6.0.2...

8.1CVSS0.00303EPSS
Exploits0References1
CVE
CVE
added 2025/08/28 12:37 p.m.16 views

CVE-2025-53584

CVE-2025-53584 affects the WordPress plugin WP Ticket Customer Service Software & Support Ticket System (versions up to 6.0.2). The issue is a PHP Object Injection caused by deserialization of untrusted data. CVSS v3.1 base score 8.1 (High) with network attack vector and no user interaction. Word...

8.1CVSS5.9AI score0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/28 12:37 p.m.11 views

CVE-2025-53584 WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System wp-ticket allows Object Injection.This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a through = 6.0.2...

8.1CVSS0.00303EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/28 12:37 p.m.2 views

CVE-2025-53584 WordPress WP Ticket Customer Service Software & Support Ticket System Plugin <= 6.0.2 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in emarket-design WP Ticket Customer Service Software & Support Ticket System allows Object Injection. This issue affects WP Ticket Customer Service Software & Support Ticket System: from n/a through 6.0.2...

8.1CVSS7.1AI score0.00303EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/28 12:0 a.m.4 views

WordPress plugin WP Ticket Customer Service Software & Support Ticket System 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in WordPres...

8.1CVSS6.6AI score0.00303EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-13457

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Open Ticket Request System OTRS 7.0.x through 7.0.8. A customer user can use the search results to disclose information from their...

4.3CVSS6.3AI score0.00907EPSS
Exploits0References2
Rows per page
Query Builder