Lucene search
K

6775 matches found

OSV
OSV
added 2025/02/20 4:15 p.m.3 views

CVE-2023-51331

PHPJabbers Cleaning Business Software v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV...

6.5CVSS5.9AI score0.00466EPSS
Exploits2References3
OSV
OSV
added 2025/02/20 4:15 p.m.6 views

CVE-2023-51319

PHPJabbers Bus Reservation System v1.1 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

8.8CVSS5.9AI score0.00635EPSS
Exploits2References3
OSV
OSV
added 2025/02/20 3:15 p.m.4 views

CVE-2023-51313

PHPJabbers Restaurant Booking System v3.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV fi...

8.8CVSS5.9AI score0.00556EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.4 views

PT-2025-7316 · Phpjabbers · Phpjabbers Meeting Room Booking System

Name of the Vulnerable Software and Affected Versions: PHPJabbers Meeting Room Booking System version 1.0 Description: The issue is related to a CSV Injection vulnerability that allows an attacker to execute remote code. This vulnerability exists due to insufficient input validation on the...

8.8CVSS7.6AI score0.00593EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.5 views

PT-2025-7302 · Phpjabbers · Phpjabbers Bus Reservation System

Name of the Vulnerable Software and Affected Versions: PHPJabbers Bus Reservation System version 1.1 Description: The issue allows an attacker to execute remote code due to insufficient input validation in the Languages section Labels any parameters field in System Options, which is used to...

8.8CVSS8AI score0.00635EPSS
Exploits2References5
Positive Technologies
Positive Technologies
added 2025/02/20 12:0 a.m.5 views

PT-2025-7311 · Phpjabbers · Phpjabbers Cleaning Business

Name of the Vulnerable Software and Affected Versions: PHPJabbers Cleaning Business Software version 1.0 Description: The issue exists due to insufficient input validation on the Languages section Labels any parameters field in System Options that is used to construct a CSV file, allowing an...

6.5CVSS7.7AI score0.00466EPSS
Exploits2References6
OSV
OSV
added 2025/02/19 9:15 p.m.5 views

CVE-2023-51302

PHPJabbers Hotel Booking System v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

8.8CVSS5.9AI score0.00556EPSS
Exploits2References2
OSV
OSV
added 2025/02/19 8:15 p.m.4 views

CVE-2023-51298

PHPJabbers Event Booking Calendar v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulnerability exists due to insufficient input validation on Languages section Labels any parameters field in System Options that is used to construct CSV file...

4.7CVSS5.9AI score0.0037EPSS
Exploits2References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/02/19 5:51 a.m.6 views

RevoWorks SCVX and RevoWorks Browser vulnerable to incorrect resource transfer between spheres

Overview RevoWorks SCVX and RevoWorks Browser provided by J's Communication Co., Ltd. contain an incorrect resource transfer between spheres vulnerability. RevoWorks SCVX and RevoWorks Browser provided by J's Communication Co., Ltd. build a sandbox environment isolated from a server or a client's...

2.7CVSS6.5AI score0.00194EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.2 views

J’s Communication RevoWorks Browser和J’s Communication RevoWorks SCVX 安全漏洞

J's Communication RevoWorks Browser and J's Communication RevoWorks SCVX are both products of J's Communication, Japan.J's Communication RevoWorks Browser is a web browser. J's Communication RevoWorks Browser is a web browser.J's Communication RevoWorks SCVX is a screen transfer Internet isolatio...

2.7CVSS4AI score0.00194EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/02/18 12:0 a.m.22 views

AlmaLinux 8 : nodejs:22 (ALSA-2025:1611)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:1611 advisory. undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083 nodejs: GOAW...

7.7CVSS6.5AI score0.01282EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/02/17 7:21 p.m.20 views

Important: Red Hat Security Advisory: nodejs:22 security update

An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.7CVSS6.7AI score0.01282EPSS
Exploits0References4
OSV
OSV
added 2025/02/17 12:0 a.m.15 views

ALSA-2025:1611 Important: nodejs:22 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083...

7.7CVSS6.1AI score0.01282EPSS
Exploits0References8
Microsoft CVE
Microsoft CVE
added 2025/02/14 8:0 a.m.2 views

Undici Uses Insufficiently Random Values

...

6.8CVSS6.6AI score0.00736EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/14 12:0 a.m.7 views

The vulnerability of the graphical interface of the software platform for coordinating the operation of (orchestrating) cybersecurity systems and for managing incident responses in real-time with Fortinet FortiSOAR allows a perpetrator to execute arbitrary code.

The vulnerability of the graphical interface of the software platform for coordinating the operation of cybersecurity systems and for managing real-time incident responses in Fortinet FortiSOAR is related to the absence of mechanisms for neutralizing elements related to CSV files. Exploiting this...

9CVSS5.9AI score0.0056EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/14 12:0 a.m.4 views

PT-2025-7249 · Unknown · Orml Rewards

Name of the Vulnerable Software and Affected Versions: ORML Rewards pallet versions prior to the fixed version Description: A vulnerability in the add share function can lead to an uncaught Rust panic when handling user-provided input exceeding the u128 range. This issue affects any Substrate-bas...

8.8CVSS7.4AI score
Exploits0References5
Rockylinux
Rockylinux
added 2025/02/13 8:35 p.m.7 views

nodejs:18 security update

An update is available for module.nodejs-nodemon, nodejs-packaging, module.nodejs-packaging, nodejs-nodemon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list...

6.8CVSS6.8AI score0.01282EPSS
Exploits0
OSV
OSV
added 2025/02/13 8:35 p.m.18 views

RLSA-2025:1446 Moderate: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap CVE-2025-23085 For mor...

6.8CVSS6.2AI score0.01282EPSS
Exploits0References3
OSV
OSV
added 2025/02/13 8:35 p.m.17 views

RLSA-2025:1443 Important: nodejs:20 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: undici: Undici Uses Insufficiently Random Values CVE-2025-22150 nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23083...

7.7CVSS6.3AI score0.01282EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/02/13 4:3 p.m.15 views

Moderate: Red Hat Security Advisory: nodejs:18 security update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.8CVSS6.6AI score0.01282EPSS
Exploits0References3
Rows per page
Query Builder