Lucene search
K

988 matches found

Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.24 views

PT-2026-1580

Name of the Vulnerable Software and Affected Versions Key Figures plugin for WordPress versions prior to 1.2 Description The Key Figures plugin for WordPress is susceptible to Stored Cross-Site Scripting through the kf field figure default color render function. Insufficient input sanitization an...

4.4CVSS5.2AI score0.00192EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.9 views

PT-2026-1499

Name of the Vulnerable Software and Affected Versions Mojoomla WPCHURCH versions through 2.7.0 Description The software contains a flaw related to improper control of filenames used in include/require statements, specifically a PHP Local File Inclusion issue. This allows for unauthorized access a...

8.1CVSS6.5AI score0.00418EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.6 views

PT-2026-2106

Name of the Vulnerable Software and Affected Versions Mailpit versions 1.28.0 and below Description Mailpit is an email testing tool and API for developers. A Server-Side Request Forgery SSRF exists in the /proxy endpoint, allowing attackers to make requests to internal network resources. The...

9.9CVSS6.6AI score0.01747EPSS
Exploits9References50
Tenable Nessus
Tenable Nessus
added 2026/01/03 12:0 a.m.5 views

Fedora 42 : doctl (2025-cfdb90b52d)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-cfdb90b52d advisory. Update to 1.148.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

7.8CVSS7.6AI score0.00626EPSS
Exploits2References9
Positive Technologies
Positive Technologies
added 2026/01/02 12:0 a.m.12 views

PT-2026-1099

Name of the Vulnerable Software and Affected Versions MARS Multi-Application Recovery Service versions prior to 1.2.1.1686 Description An SQL injection issue affects MARS Multi-Application Recovery Service. Successful exploitation could allow remote attackers to execute unauthorized code or...

9.3CVSS8.3AI score0.00345EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/01/02 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-c6b2100f44)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00626EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/01 12:0 a.m.3 views

Fedora 43 : gh (2025-c6b2100f44)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-c6b2100f44 advisory. Update to 2.83.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

7.5CVSS7.3AI score0.00626EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.5 views

PT-2025-53895

Name of the Vulnerable Software and Affected Versions Youzify versions through 1.3.5 Description The software contains a Server-Side Request Forgery SSRF flaw. This allows for Server Side Request Forgery. Recommendations Update Youzify to a version later than 1.3.5...

4.9CVSS6.7AI score0.00141EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/12/29 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-202d079b40)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.5AI score0.00179EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/12/28 12:0 a.m.6 views

Fedora 43 : opentofu (2025-6968ab200a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6968ab200a advisory. Update to 1.11.2 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

7.5CVSS7.3AI score0.00626EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.4 views

PT-2025-53452

Name of the Vulnerable Software and Affected Versions Eaton UPS Companion software affected versions not specified Description A flaw exists in the Eaton UPS Companion software installer related to improper authentication of library files. This could allow an attacker who has access to the softwa...

8.6CVSS7.3AI score0.00266EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.7 views

PT-2025-53297

Name of the Vulnerable Software and Affected Versions MyNET versions up to 26.08.316 Description The software contains an unauthenticated SQL Injection issue through the intmenu parameter. This allows for potential unauthorized access to the database. Recommendations Update MyNET to a version lat...

6.5CVSS7.5AI score0.00201EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.6 views

PT-2025-52855

Name of the Vulnerable Software and Affected Versions Coolify versions prior to 4.0.0-beta.451 Description Coolify is a self-hostable tool for managing servers, applications, and databases. A command injection issue exists in the Dynamic Proxy Configuration Filename handling. Authenticated users...

9.9CVSS8.8AI score0.0376EPSS
Exploits2References11
Positive Technologies
Positive Technologies
added 2025/12/22 12:0 a.m.5 views

PT-2025-52675

Name of the Vulnerable Software and Affected Versions MyNET versions prior to 26.05 Description The software contains a reflected cross-site scripting XSS issue. The vulnerability is present in the src parameter. Recommendations Update to a version newer than 26.05...

6.1CVSS5.7AI score0.00185EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/20 12:0 a.m.5 views

PT-2025-52543

Name of the Vulnerable Software and Affected Versions Responsive and Swipe slider plugin for WordPress versions prior to 1.0.3 Description The plugin is susceptible to Stored Cross-Site Scripting due to inadequate input sanitization and output escaping of user-supplied attributes within the...

5.5CVSS5.3AI score0.00171EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/20 12:0 a.m.6 views

Fedora 42 : gosec (2025-447e38400e)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-447e38400e advisory. Update to 2.22.11 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

7.5CVSS7.6AI score0.00626EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/12/19 12:0 a.m.3 views

Oracle Linux 8 : webkit2gtk3 (ELSA-2025-23663)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23663 advisory. 2.50.4-1 - Update to 2.50.4 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

8.8CVSS7.8AI score0.32EPSS
Exploits8References7
OpenVAS
OpenVAS
added 2025/12/19 12:0 a.m.3 views

openSUSE Security Advisory (SUSE-SU-2025:4481-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00572EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/12/19 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2025-ebfdef0115)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.8AI score0.00419EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/12/17 12:0 a.m.0 views

Google Chrome Security Update (stable-channel-update-for-desktop_16-2025-12) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS6.8AI score0.0281EPSS
Exploits0References1
Rows per page
Query Builder