Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.10 views

EulerOS Virtualization 2.13.0 : libsodium (EulerOS-SA-2026-2175)

According to the versions of the libsodium package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to...

4.5CVSS5.6AI score0.00166EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.13 views

Microsoft Office SharePoint 代码问题漏洞

Microsoft Office SharePoint is an enterprise content collaboration and document management platform developed by Microsoft Corporation. There is a code vulnerability in Microsoft Office SharePoint, which stems from deserializing untrusted data, potentially allowing authorized attackers to execute...

8.8CVSS6.2AI score0.02781EPSS
Exploits3References1
GithubExploit
GithubExploit
added 2026/02/20 8:14 a.m.160 views

Exploit for Deserialization of Untrusted Data in Microsoft

WSUS Security Research Toolkit - Installation Guide System...

9.8CVSS6.2AI score0.99962EPSS
Exploits24
GitLab Advisory Database
GitLab Advisory Database
added 2026/01/14 12:0 a.m.8 views

Algolia Search & Discovery for Magento 2 Has Untrusted Data Handling

Versions of the Algolia Search & Discovery extension for Magento 2 prior to 3.17.2 and 3.16.2 contain a vulnerability where data read from the database was treated as a trusted source during job execution. If an attacker is able to modify records used by the extension’s indexing queue, this could...

7AI score
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-12466

Malware in sbrugna...

9.9CVSS9AI score0.01954EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/01/16 5:32 p.m.20 views

LibreNMS Misc Section Stored Cross-site Scripting vulnerability

StoredXSS-LibreNMS-MiscSection Description: Stored XSS on the parameter: ajaxform.php - param: state Request: http POST /ajaxform.php HTTP/1.1 Host: X-Requested-With: XMLHttpRequest X-CSRF-TOKEN: Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Cookie:...

5.4CVSS4.7AI score0.30854EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2024/12/03 5:28 a.m.11 views

Remote Code Execution (RCE)

backpack/filemanager is vulnerable to Remote Code Execution. The vulnerability is due to improper handling of untrusted data during deserialization from the mimes parameter, allows an attacker to execute remote code on the affected system...

9.8CVSS7.9AI score0.00573EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/11/22 8:15 p.m.4 views

CVE-2024-5580

Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.2CVSS6.3AI score0.0151EPSS
Exploits0References2
Snyk
Snyk
added 2023/05/19 12:0 a.m.4 views

Acceptance of Extraneous Untrusted Data With Trusted Data

Overview johnpbloch/wordpress-core is a web software you can use to create a website or blog. Affected versions of this package are vulnerable to Acceptance of Extraneous Untrusted Data With Trusted Data through the processing of shortcodes in user-generated content. An attacker can manipulate...

6.9CVSS7AI score
Exploits0References2
securityvulns
securityvulns
added 2002/02/18 12:0 a.m.33 views

codeblue remote root

/ Demonstration linux-x86 remote root against codeblue v1.1 from file header Otherwise it's known as CodeBlue v4 This is a rather trivial to exploit... From getsmtpreply "We'll loop infinately, receiving 1 byte at a time until we receive a carriage return or line-feed character, signifying the en...

0.1AI score
Exploits0
Rows per page
Query Builder