Lucene search
K

71 matches found

Veracode
Veracode
added 2026/05/08 8:10 a.m.10 views

Command Injection

Click is vulnerable to Command Injection. The vulnerability is due to improper handling of user-controlled input in the click.edit function, allowing attackers to inject and execute arbitrary operating system commands from an unprivileged account...

7.2CVSS6AI score0.0081EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2026/04/30 2:16 p.m.4 views

CVE-2026-7246

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

7.2CVSS0.0081EPSS
Exploits1References7
OSV
OSV
added 2026/04/30 2:16 p.m.6 views

DEBIAN-CVE-2026-7246

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

7.2CVSS5.9AI score0.0081EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/30 1:16 p.m.3 views

CVE-2026-7246

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

7.2CVSS5.5AI score0.0081EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/30 1:16 p.m.5 views

CVE-2026-7246 Pallets Click contains a command injection via Unsanitized Filename "click.edit()"

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands from an unprivileged account...

5.5AI score0.0081EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/28 10:52 a.m.4 views

CVE-2025-59459

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

7.5CVSS6.9AI score0.00315EPSS
Exploits0References1
NVD
NVD
added 2025/10/27 11:15 a.m.4 views

CVE-2025-59459

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

7.5CVSS0.00315EPSS
Exploits0References6
OSV
OSV
added 2025/10/27 11:15 a.m.4 views

CVE-2025-59459

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

7.5CVSS5.7AI score0.00315EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/27 10:9 a.m.7 views

CVE-2025-59459 Denial-of-service (DoS) via resource consumption

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

5.5CVSS0.00315EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/10/27 10:9 a.m.3 views

CVE-2025-59459

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

7.5CVSS5.9AI score0.00315EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/27 10:9 a.m.6 views

EUVD-2025-36151

An attacker that gains SSH access to an unprivileged account may be able to disrupt services including SSH, causing persistent loss of availability...

5.5CVSS6.4AI score0.00315EPSS
Exploits0References7
CVE
CVE
added 2025/10/27 10:9 a.m.16 views

CVE-2025-59459

CVE-2025-59459 describes a DoS risk where an attacker with SSH access to an unprivileged account can disrupt services (including SSH) and cause persistent availability loss. Connected documents indicate this CVE is associated with SICK TLOC100-100; Red Hat and SICK PSIRT references corroborate SS...

7.5CVSS6.5AI score0.00315EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-8008

Malware in sbrugna...

7.8CVSS7.6AI score0.00357EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-13263

Malware in sbrugna...

10CVSS9.5AI score0.03726EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-18422

Malware in sbrugna...

5.5CVSS5.6AI score0.01346EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-21447

Malware in sbrugna...

9.8CVSS9.5AI score0.01287EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 4:33 p.m.8 views

CVE-2020-25770

An out-of-bounds read information disclosure vulnerabilities in Trend Micro Apex One may allow a local attacker to disclose sensitive information to an unprivileged account on vulnerable installations of the product. An attacker must first obtain the ability to execute low-privileged code on the...

5.5CVSS6.1AI score0.01346EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/03/28 11:34 a.m.14 views

CVE-2025-1542

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS7.4AI score0.00377EPSS
Exploits0References1
CVE
CVE
added 2025/03/26 11:7 a.m.57 views

CVE-2025-1542

CVE-2025-1542 describes an improper permission control vulnerability in the OXARI ServiceDesk application. The issue affects versions prior to 2.0.324.0, where an attacker using a guest or unprivileged account could gain additional administrative permissions in the application. The NVD metrics in...

9.3CVSS7.3AI score0.00377EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/26 11:7 a.m.7 views

CVE-2025-1542 Improper permission control in OXARI ServiceDesk

Improper permission control vulnerability in the OXARI ServiceDesk application could allow an attacker using a guest access or an unprivileged account to gain additional administrative permissions in the application.This issue affects OXARI ServiceDesk in versions before 2.0.324.0...

9.3CVSS7.3AI score0.00377EPSS
Exploits0References2
Rows per page
Query Builder