Lucene search
K

1016 matches found

OSV
OSV
added 2025/12/06 9:51 p.m.4 views

CVE-2025-40285 smb/server: fix possible refcount leak in smb2_sess_setup()

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix possible refcount leak in smb2sesssetup Reference count of ksmbdsession will leak when session need reconnect. Fix this by adding the missing ksmbdusersessionput...

6.3AI score0.00162EPSS
Exploits0References8
CVE
CVE
added 2025/12/06 9:51 p.m.30 views

CVE-2025-40285

The CVE-2025-40285 issue affects the Linux kernel smb/server (ksmbd) in smb2_sess_setup, where a missing ksmbd_user_session_put() caused a reference count leak of ksmbd_session on session reconnect. The fix adds the missing ksmbd_user_session_put() to prevent the leak, with upstream commits refer...

6.1AI score0.00162EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/12/06 5:55 p.m.7 views

CVE-2025-34258

Advantech WISE-DeviceOn Server versions prior to 5.4 contain a stored cross-site scripting XSS vulnerability in the /rmm/v1/devicemap/plan endpoint. When an authenticated user adds an area to a map entry, the name parameter is stored and later rendered in the map list without HTML sanitization. A...

5.4CVSS5.4AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/22 2:26 p.m.12 views

CVE-2025-11127

The Mstoreapp Mobile App WordPress plugin through 2.08 and Mstoreapp Mobile Multivendor through 9.0.1 do not properly verify users identify when using an AJAX action, allowing unauthenticated users to retrieve a valid session for arbitrary users by knowing their email address...

9.8CVSS7AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2025/10/24 6:15 a.m.4 views

CVE-2025-61931

Pleasanter contains a stored cross-site scripting vulnerability in Body, Description and Comments, which allows an attacker to execute an arbitrary script in a logged-in user's web browser...

5.4CVSS0.00165EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/22 8:22 a.m.8 views

CVE-2025-11952 Stored Cross-Site Scripting (XSS) in Oct8ne Chatbot

Stored Cross-site Scripting XSS in Oct8ne Chatbot v2.3. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by injecting a malicious payload through the creation of a transcript that is sent by email. This vulnerability can be exploited to steal sensitive user...

5.3CVSS0.00177EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/19 3:30 p.m.14 views

CVE-2025-47410

Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...

8.8CVSS7AI score0.00325EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/12 6:30 a.m.5 views

EUVD-2025-33884

HCL Unica MaxAI Assistant is susceptible to a HTML injection vulnerability. An attacker could insert special characters that are processed client-side in the context of the user's session...

4.6CVSS6.4AI score0.00162EPSS
Exploits0References2
NVD
NVD
added 2025/10/12 6:15 a.m.6 views

CVE-2025-31992

HCL Unica MaxAI Assistant is susceptible to a HTML injection vulnerability. An attacker could insert special characters that are processed client-side in the context of the user's session...

4.6CVSS0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-30332

Malware in sbrugna...

5.9CVSS6AI score0.00604EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1509

Malware in sbrugna...

4.6CVSS6.4AI score0.0033EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-0055

Malware in sbrugna...

6.9CVSS6.1AI score0.01812EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7733

Malware in sbrugna...

5.3CVSS5.5AI score0.0095EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-19391

Malware in sbrugna...

5.3CVSS5AI score0.00549EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-2235

Malware in sbrugna...

7.5CVSS6.4AI score0.01532EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-14306

Malware in sbrugna...

6.6CVSS6.6AI score0.01159EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-2568

Malware in sbrugna...

5.4CVSS5.6AI score0.00545EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-10049

Malware in sbrugna...

6.5CVSS6.5AI score0.00918EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-14650

Malware in sbrugna...

5.4CVSS5.6AI score0.00637EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-10281

Malware in sbrugna...

8.8CVSS8.8AI score0.01455EPSS
Exploits0References2
Rows per page
Query Builder