Lucene search
K

28 matches found

NVD
NVD
added 2026/06/15 9:16 p.m.6 views

CVE-2026-39530

Unauthenticated SQL Injection in SpeakOut! Email Petitions = 4.6.5 versions...

9.3CVSS0.00296EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:18 p.m.11 views

CVE-2026-39530

CVE-2026-39530 involves the WordPress plugin SpeakOut! Email Petitions, affecting versions

9.3CVSS5.7AI score0.00296EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : python-lxml-3.2.1-4.0.1.el7.AXS7 (AXSA:2024-8989:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8989:01 advisory. CVE-2021-43818: prevent certain crafted script content passing through in HTML Cleaner CVEs: CVE-2021-43818 lxml is a library for processing XML and HTML in...

8.2CVSS7.3AI score0.02456EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7363

Malware in sbrugna...

9.1CVSS9.3AI score0.02505EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43896

Malicious code in bioql PyPI...

6.5CVSS5.8AI score0.00475EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-2898

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00304EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 10:45 a.m.17 views

CVE-2024-48913

Hono, a web framework, prior to version 4.6.5 is vulnerable to bypass of cross-site request forgery CSRF middleware by a request without Content-Type header. Although the CSRF middleware verifies the Content-Type Header, Hono always considers a request without a Content-Type header to be safe. Th...

5.9CVSS7AI score0.00304EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.6 views

CVE-2023-3218

Race Condition within a Thread in GitHub repository it-novum/openitcockpit prior to 4.6.5...

6.5CVSS6.8AI score0.00475EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/13 8:57 p.m.25 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to HTTP request smuggling in Apache Tomcat (CVE-2022-42252).

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to HTTP request smuggling in Apache Tomcat caused by the failure to reject a request containing an invalid Content-Length header when configured to ignore invalid HTTP headers via setting rejectIllegalHeader to...

7.5CVSS7.2AI score0.01448EPSS
Exploits0Affected Software1
Prion
Prion
added 2023/06/13 11:15 a.m.13 views

Race condition

Race Condition within a Thread in GitHub repository it-novum/openitcockpit prior to 4.6.5...

4.7CVSS4.7AI score0.00475EPSS
Exploits1References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/02 10:46 p.m.52 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Java

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of Java . Vulnerability Details CVEID:CVE-2022-21426 DESCRIPTION: An unspecified vulnerability in Java SE related to the JAXP component could allow an unauthenticated attacker to cause a denial of...

5.3CVSS5.1AI score0.03028EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/02 10:18 p.m.47 views

Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in VMware Tanzu Spring Framework

Summary IBM Watson Discovery Cartridge for IBM Cloud Pak for Data contains a vulnerable version of VMware Tanzu Spring Framework. IBM has addressed the. vulnerability. Vulnerability Details CVEID:CVE-2023-20861 DESCRIPTION: VMware Tanzu Spring Framework is vulnerable to a denial of service. By...

7.5CVSS7AI score0.03514EPSS
Exploits1Affected Software1
OSV
OSV
added 2021/12/13 6:15 p.m.2 views

PYSEC-2021-852

lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant...

8.2CVSS5.8AI score0.02456EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/12/13 6:5 p.m.76 views

CVE-2021-43818

lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant...

8.2CVSS7.8AI score0.02456EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/01/19 12:0 a.m.11 views

Elastic Kibana < 4.6.5, 5.x < 5.5.2 XSS Vulnerability (ESA-2017-16) - Linux

Kibana is prone to a cross-site scripting vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elastic:kibana";...

6.4AI score
Exploits0References2
OSV
OSV
added 2020/05/13 2:23 p.m.12 views

SUSE-SU-2020:1273-1 Security update for grafana

This update for grafana to version 4.6.5 fixes the following issues: Security issues fixed: - CVE-2019-15043: Added authentication to a few rest endpoints jscSOC-10357, bsc1148383. - CVE-2018-19039: Fixed File Exfiltration vulnerability jscSOC-9976 bsc1115960. - CVE-2018-15727: Fixed an LDAP and...

9.8CVSS7AI score0.64284EPSS
Exploits4References13
OpenVAS
OpenVAS
added 2019/07/01 12:0 a.m.65 views

Grafana 4.1.0 < 4.6.5, 5.0 < 5.3.3 Information Disclosure Vulnerability

Grafana is prone to an information disclosure vulnerability. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.5CVSS6.5AI score0.0728EPSS
Exploits0References2
CNVD
CNVD
added 2018/11/28 12:0 a.m.3 views

Grafana Information Disclosure Vulnerability

Grafana is a set of open source monitoring tools that provide a visual monitoring interface. The tool is mainly used to monitor and analyze Graphite, InfluxDB and Prometheus and so on. An information disclosure vulnerability exists in Grafana versions prior to 4.6.5 and 5.x versions prior to 5.3....

6.5CVSS6.6AI score0.0728EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/03/02 12:0 a.m.40 views

Elastic Kibana 'CVE-2017-11499' DoS Vulnerability - Linux

Elastic Kibana is shipping a version of Node.js which is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5CVSS8.5AI score0.05478EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2018/03/02 12:0 a.m.24 views

Elastic Kibana 'CVE-2017-11499' DoS Vulnerability - Windows

Elastic Kibana is shipping a version of Node.js which is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5CVSS8.5AI score0.05478EPSS
Exploits1References1
Rows per page
Query Builder