Lucene search
+L

49 matches found

vulnrichment
vulnrichment
added 2026/02/20 3:46 p.m.3 views

CVE-2025-67969 WordPress UPI QR Code Payment Gateway for WooCommerce plugin <= 1.5.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in knitpay UPI QR Code Payment Gateway for WooCommerce upi-qr-code-payment-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UPI QR Code Payment Gateway for WooCommerce: from n/a through = 1.5.1...

5.4AI score0.00283EPSS
Exploits0References1
cve
cve
added 2026/02/20 3:46 p.m.12 views

CVE-2025-67969

CVE-2025-67969 is a Missing Authorization (Broken Access Control) vulnerability in the WordPress plugin UPI QR Code Payment Gateway for WooCommerce (upi-qr-code-payment-for-woocommerce)

6.5CVSS5.5AI score0.00283EPSS
Exploits0References1
cvelist
cvelist
added 2026/02/20 3:46 p.m.28 views

CVE-2025-67969 WordPress UPI QR Code Payment Gateway for WooCommerce plugin <= 1.5.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in knitpay UPI QR Code Payment Gateway for WooCommerce upi-qr-code-payment-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects UPI QR Code Payment Gateway for WooCommerce: from n/a through = 1.5.1...

6.5CVSS0.00283EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/02/20 12:0 a.m.9 views

PT-2026-21043

Name of the Vulnerable Software and Affected Versions knitpay UPI QR Code Payment Gateway for WooCommerce versions through 1.5.1 Description The software contains a missing authorization issue related to incorrectly configured access control security levels. This allows for exploitation of the...

5.4AI score0.00283EPSS
Exploits0References3
patchstack
patchstack
added 2026/01/23 6:48 a.m.6 views

WordPress UPI QR Code Payment Gateway for WooCommerce plugin <= 1.5.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by NumeX in WordPress Plugin UPI QR Code Payment Gateway for WooCommerce versions = 1.5.1...

5.4AI score0.00283EPSS
Exploits0Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-39576

Malicious code in bioql PyPI...

2.4CVSS4.4AI score0.00323EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/09/14 12:10 a.m.10 views

CVE-2025-56467

An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 that allows attackers to obtain sensitive information without a UPI PIN, such as account information, balances, transaction history, and unspecified other information. NOTE: the Supplier's perspective is that this is an intended...

6.5CVSS6.6AI score0.00275EPSS
Exploits0References1
nvd
nvd
added 2025/09/12 5:15 p.m.8 views

CVE-2025-56467

An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 that allows attackers to obtain sensitive information without a UPI PIN, such as account information, balances, transaction history, and unspecified other information. NOTE: the Supplier's perspective is that this is an intended...

6.5CVSS0.00275EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/09/12 12:0 a.m.2 views

CVE-2025-56467

An issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 that allows attackers to obtain sensitive information without a UPI PIN, such as account information, balances, transaction history, and unspecified other information. NOTE: the Supplier's perspective is that this is an intended...

6.2AI score0.00275EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:53 p.m.9 views

CVE-2022-36876

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication...

2.4CVSS6.7AI score0.00323EPSS
Exploits0References1
redhat
redhat
added 2024/07/24 2:3 p.m.2 views

kernel: intel: Fix NULL pointer dereference issue in upi_fill_topology()

A vulnerability was discovered in the Linux kernel in which certain CPU topologies could result in a null pointer dereference, affecting system stability...

5.5CVSS6.9AI score0.00255EPSS
Exploits0References5
redhat
redhat
added 2024/04/30 9:57 a.m.4 views

kernel: intel: Fix NULL pointer dereference issue in upi_fill_topology()

A vulnerability was discovered in the Linux kernel in which certain CPU topologies could result in a null pointer dereference, affecting system stability...

5.5CVSS6.9AI score0.00255EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2024/03/11 12:0 a.m.6 views

The vulnerability of the upi_fill_topology() function in the arch/x86/events/intel/uncore_snbep.c module of the Linux kernel’s performance evaluation subsystem allows a hacker to cause a service failure.

The vulnerability of the upifilltopology function in the arch/x86/events/intel/uncoresnbep.c module, belonging to the CPU performance evaluation subsystem of the Linux operating system, involves reading memory beyond the allocated buffer, followed by the assignment of a null pointer. Exploiting...

5.5CVSS6.4AI score0.00255EPSS
Exploits0References19Affected Software1
thn
thn
added 2024/03/04 1:50 p.m.29 views

How Cybercriminals are Exploiting India's UPI for Money Laundering Operations

Cybercriminals are using a network of hired money mules in India using an Android-based application to orchestrate a massive money laundering scheme. The malicious application, called XHelper, is a "key tool for onboarding and managing these money mules," CloudSEK researchers Sparsh Kulshrestha,...

7.4AI score
Exploits0
susecve
susecve
added 2024/02/24 3:17 a.m.4 views

SUSE CVE-2023-52450

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix NULL pointer dereference issue in upifilltopology Get logical socket id instead of physical id in discoverupitopology to avoid out-of-bound access on 'upi = &type-topologynididx;' line that leads to NUL...

5.5CVSS5.8AI score0.00255EPSS
Exploits0References12
osv
osv
added 2024/02/22 5:15 p.m.7 views

UBUNTU-CVE-2023-52450

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix NULL pointer dereference issue in upifilltopology Get logical socket id instead of physical id in discoverupitopology to avoid out-of-bound access on 'upi = &type-topologynididx;' line that leads to NUL...

5.5CVSS6.1AI score0.00255EPSS
Exploits0References13
osv
osv
added 2024/02/22 4:21 p.m.3 views

CVE-2023-52450 perf/x86/intel/uncore: Fix NULL pointer dereference issue in upi_fill_topology()

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix NULL pointer dereference issue in upifilltopology Get logical socket id instead of physical id in discoverupitopology to avoid out-of-bound access on 'upi = &type-topologynididx;' line that leads to NUL...

5.5CVSS5.5AI score0.00255EPSS
Exploits0References6
cnnvd
cnnvd
added 2024/02/22 12:0 a.m.3 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a NULL pointer dereference in upifilltopology...

5.5CVSS8AI score0.00255EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2023/11/30 12:0 a.m.4 views

PT-2023-8762 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a NULL pointer dereference in the upi fill topology function. To avoid out-of-bound access, the code now gets the logical socket id instead of the physical id i...

9.8CVSS6.6AI score0.78388EPSS
Exploits29References1925
attackerkb
attackerkb
added 2022/09/09 3:15 p.m.2 views

CVE-2022-36876

Improper authorization in UPI payment in Samsung Pass prior to version 4.0.04.10 allows physical attackers to access account list without authentication...

2.4CVSS5.8AI score0.00323EPSS
Exploits0References3
Rows per page
Query Builder