Lucene search
K

228 matches found

Cvelist
Cvelist
added 2026/04/10 6:54 p.m.19 views

CVE-2026-33708 Chamilo LMS has REST API PII Exposure via get_user_info_from_username

Chamilo LMS is a learning management system. Prior to 1.11.38, the getuserinfofromusername REST API endpoint returns personal information email, first name, last name, user ID, active status of any user to any authenticated user, including students. There is no authorization check. This...

6.5CVSS0.00209EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/02 12:0 a.m.5 views

Unspecified Vulnerability in Multiple Apple Products (CNVD-2026-14494)

Apple iOS is an operating system developed for mobile devices. apple tvOS is an operating system for smart TVs. apple macOS is a specialized operating system developed for Mac computers. A security vulnerability exists in several Apple products that could be exploited by an attacker to disclose...

7.8CVSS7AI score0.00249EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 11:16 p.m.11 views

CVE-2026-20675

The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing a maliciously crafted image may lead to disclosure of...

7.8CVSS0.00249EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/02/11 10:58 p.m.25 views

CVE-2026-20675

The issue was addressed with improved bounds checks. This issue is fixed in iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Sequoia 15.7.4, macOS Sonoma 14.8.4, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing a maliciously crafted image may lead to disclosure of...

0.00249EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : webkit2gtk3-2.38.5-1.el8.ML.1 (AXSA:2023-5964:10)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5964:10 advisory. webkitgtk: use-after-free issue leading to arbitrary code execution CVE-2022-42826 webkitgtk: memory corruption issue leading to arbitrary code...

8.8CVSS9.2AI score0.34574EPSS
Exploits2References23
RedhatCVE
RedhatCVE
added 2026/01/09 10:51 a.m.10 views

CVE-2022-42851

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, tvOS 16.2. Parsing a maliciously crafted TIFF file may lead to disclosure of user information...

5.5CVSS5.8AI score0.0034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.4 views

CVE-2019-11174

Insufficient access control in IntelR Baseboard Management Controller firmware may allow an unauthenticated user to potentially enable information disclosure via network access...

5.3CVSS6.6AI score0.009EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-52331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the...

6.1CVSS5.3AI score0.00268EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/13 1:0 a.m.7 views

CVE-2025-52331

Cross-site scripting XSS vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the computer username, generated report directory, and IP address. The generate report command includes archived file names without validation i...

6.1CVSS5.9AI score0.00268EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.5 views

Rarlab WinRAR 安全漏洞

Rarlab WinRAR is a file compression/decompression software from Rarlab. A security vulnerability exists in Rarlab WinRAR version 7.11, which originates from cross-site scripting in the Generate Report function and could lead to the disclosure of user information...

6.1CVSS5.7AI score0.00268EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17878

Malware in sbrugna...

5.5CVSS5.5AI score0.00841EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17880

Malware in sbrugna...

5.5CVSS5.5AI score0.00841EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17827

Malware in sbrugna...

5.5CVSS5.3AI score0.01078EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-17623

Malware in sbrugna...

5.5CVSS6AI score0.00807EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-17604

Malware in sbrugna...

5.5CVSS5.9AI score0.01181EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17708

Malware in sbrugna...

5.5CVSS6.3AI score0.01116EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17602

Malware in sbrugna...

5.5CVSS5.9AI score0.00878EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17879

Malware in sbrugna...

5.5CVSS5.6AI score0.007EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-3653

Malicious code in bioql PyPI...

5.5CVSS8.9AI score0.00327EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-25570

Malicious code in bioql PyPI...

3.3CVSS4.6AI score0.00089EPSS
Exploits0References1
Rows per page
Query Builder