Lucene search
+L

191 matches found

cnnvd
cnnvd
added 2025/08/01 12:0 a.m.4 views

Quantum DXi6702 安全漏洞

Quantum DXi6702 is a disk backup and deduplication appliance from Quantum Corporation, USA. A security vulnerability exists in the Quantum DXi6702 version 2.3.0.3, which stems from an XML external entity injection issue that could lead to information disclosure...

9.8CVSS6.8AI score0.00707EPSS
Exploits0References3
suse
suse
added 2025/07/16 11:10 a.m.5 views

Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...

8.7CVSS7.3AI score0.00911EPSS
Exploits0References10
osv
osv
added 2025/07/02 8:15 p.m.7 views

CVE-2025-52842

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Laundry on Linux, MacOS allows Account Takeover. This issue affects Laundry: 2.3.0...

6.1CVSS5.4AI score0.00232EPSS
Exploits1References2
redhatcve
redhatcve
added 2025/05/23 5:24 a.m.9 views

CVE-2023-52146

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Aaron J 404 Solution.This issue affects 404 Solution: from n/a through 2.33.0...

5.3CVSS6.7AI score0.00435EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 2:56 a.m.6 views

CVE-2023-0817

Buffer Over-read in GitHub repository gpac/gpac prior to v2.3.0-DEV...

7.8CVSS7.7AI score0.00404EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 11:17 p.m.10 views

CVE-2022-36577

An issue was discovered in jizhicms v2.3.1. There is a CSRF vulnerability that can add a admin...

8.8CVSS7.2AI score0.0035EPSS
Exploits1References1
cnnvd
cnnvd
added 2025/04/12 12:0 a.m.7 views

WordPress plugin Clearfy Cache 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

5.3CVSS8.1AI score0.00146EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/02/27 12:0 a.m.7 views

MongoDB Shell 注入漏洞

MongoDB Shell mongosh is an interactive database manipulation tool from the American company MongoDB. It is used to interact with the MongoDB database, execute commands and manipulate data. A security vulnerability exists in MongoDB Shell versions prior to 2.3.9 that stems from control character...

7.6CVSS7.5AI score0.00287EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/01/02 12:0 a.m.9 views

WordPress plugin Kali Forms 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.3CVSS8.7AI score0.00343EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/12/16 12:0 a.m.4 views

LightFTP 安全漏洞

LightFTP is a lightweight FTP service by hfiref0x individual developers. A security vulnerability exists in LightFTP version 2.3, which stems from a lack of thread security on the server and can be caused to crash by anomalous data sent by an anonymous user from a remote network...

9.2CVSS6.8AI score0.00333EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/12/12 12:0 a.m.5 views

Beego 安全漏洞

Beego is an open source web framework based on the Go language from Beego Open Source. A security vulnerability exists in Beego version 2.3.3, which stems from the use of MD5 as a hashing algorithm and is vulnerable to collision attacks...

7.5CVSS7.4AI score0.00342EPSS
Exploits0References2
cnnvd
cnnvd
added 2024/12/09 12:0 a.m.4 views

WordPress plugin WRC Pricing Tables 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS8.7AI score0.00511EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/12/09 12:0 a.m.4 views

WordPress plugin Sharkdropship for AliExpress Dropship and Affiliate 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS8.2AI score0.00395EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/12/09 12:0 a.m.3 views

PT-2024-12311 · Realwebcare · Realwebcare Wrc Pricing Tables

Name of the Vulnerable Software and Affected Versions: Realwebcare WRC Pricing Tables versions 2.3.7 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...

5.3CVSS9.4AI score0.00511EPSS
Exploits0References3
cnnvd
cnnvd
added 2024/11/23 12:0 a.m.4 views

WordPress plugin Custom CSS, JS & PHP 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Custom CSS, JS & PHP versi...

6.1CVSS7.5AI score0.00446EPSS
Exploits0References3
patchstack
patchstack
added 2024/11/04 9:2 a.m.6 views

WordPress WP Visual Adverts plugin <= 2.3.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin WP Visual Adverts versions = 2.3.0...

7.1CVSS6.1AI score0.00259EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2024/10/24 9:47 p.m.6 views

WordPress UPS Live Rates and Access Points plugin <= 2.3.11 - Missing Authorization to Plugin API key reset vulnerability

Missing Authorization to Plugin API key reset vulnerability discovered by Peter Thaleikis in WordPress Plugin WooCommerce UPS Shipping – Live Rates and Access Points versions = 2.3.11...

4.3CVSS7AI score0.00386EPSS
Exploits0References1Affected Software1
cnnvd
cnnvd
added 2024/10/04 12:0 a.m.3 views

TP-LINK TL-WDR5620 安全漏洞

TP-LINK TL-WDR5620 is a wireless router from China P&L TP-LINK. A security vulnerability exists in TP-LINK TL-WDR5620 version 2.3, which originates from a remote code execution vulnerability contained in the httpProcDataSrv function...

8CVSS8.1AI score0.00816EPSS
Exploits1References3
cnnvd
cnnvd
added 2024/09/17 12:0 a.m.3 views

Checkmk 安全漏洞

Checkmk is an IT monitoring platform from Checkmk, Inc. A security vulnerability exists in Checkmk versions 2.3.0 and 2.2.0 that stems from incorrect neutralization of inputs and allows an attacker to craft malicious links that could facilitate phishing attacks...

6.1CVSS6.5AI score0.00309EPSS
Exploits0References2
osv
osv
added 2024/09/06 5:15 p.m.2 views

CVE-2024-38642

An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unspecified vectors. We have already fixed the vulnerability in the following version: QuMagie 2.3.1 a...

7.8CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder