Lucene search
+L

28 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/14 8:8 p.m.8 views

CVE-2026-44647

OneDev is a Git server with CI/CD, kanban, and packages. Prior to 15.0.2, there is behavior that breaks the expected boundary between repository-controlled LFS metadata and server-local filesystem paths. A repository object can steer raw blob reads to arbitrary local files that the server account...

7.1CVSS5.9AI score0.00319EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/05/07 5:6 a.m.5 views

CVE-2026-41139 Unsafe array index getter in mathjs

Math.js is an extensive math library for JavaScript and Node.js. From version 13.1.0 to before version 15.2.0, arbitrary JavaScript can be executed via the expression parser of mathjs. This issue has been patched in version 15.2.0...

8.8CVSS7.2AI score0.00577EPSS
Exploits0References10
Github Security Blog
Github Security Blog
added 2026/04/10 10:10 p.m.10 views

mathjs Allows Improperly Controlled Modification of Dynamically-Determined Object Attributes

Impact This security vulnerability allowed executing arbitrary JavaScript via the expression parser of mathjs. You can be affected when you have an application where users can evaluate arbitrary expressions using the mathjs expression parser. Patches The issue was introduced in mathjs v13.1.0, an...

8.8CVSS5.9AI score0.00577EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/24 12:32 p.m.6 views

CVE-2025-68548

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebCodingPlace Responsive Posts Carousel Pro responsive-posts-carousel-pro allows Stored XSS.This issue affects Responsive Posts Carousel Pro: from n/a through = 15.2...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References1
CVE
CVE
added 2025/12/23 11:50 a.m.11 views

CVE-2025-68548

Mode C: The connected Wordfence entry documents an authenticated (Contributor+) Local File Inclusion vulnerability in Responsive Posts Carousel Pro (WordPress plugin) up to version 15.2, CVE-2025-68996, with Patch Status Patched. Updated versions from 15.2+ remediate the issue; CVSS 7.5 (High) in...

6.5CVSS5.9AI score0.00133EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/23 12:0 a.m.10 views

PT-2025-52748

Name of the Vulnerable Software and Affected Versions Responsive Posts Carousel Pro versions through 15.2 Description An issue exists in WebCodingPlace Responsive Posts Carousel Pro that allows for Stored Cross-site Scripting XSS. This occurs due to improper neutralization of input during web pag...

6.5CVSS6.1AI score0.00133EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-55001

Malicious code in bioql PyPI...

4.3CVSS7.5AI score0.00219EPSS
Exploits0References1
CVE
CVE
added 2025/08/29 12:28 a.m.22 views

CVE-2024-44271

Apple macOS Sequoia 15.2 fixes CVE-2024-44271, where an app could record the screen without an indicator. Update to macOS Sequoia 15.2 to remediate; the issue was addressed via improved checks in the system. No exploitation details are provided beyond the CVE entry.

3.3CVSS5.7AI score0.00115EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS version 15.2, which originates from an application that may be able to read sensitive location information...

5.5CVSS7.1AI score0.00197EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.8 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS version 15.2, which originates from an application that may be able to capture keyboard events from the lock screen...

5.5CVSS7.1AI score0.002EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS version 15.2, which stems from an application that may be able to determine a user's current location...

3.3CVSS7.2AI score0.00193EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.5 views

Apple macOS 缓冲区错误漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A buffer error vulnerability exists in Apple macOS version 15.2, which originates from an application that may cause the system to unexpectedly terminate or write to kernel memo...

7.8CVSS7.3AI score0.00264EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS version 15.2, which stems from an application that may be able to access protected user data...

5.5CVSS7.1AI score0.00209EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.8 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS version 15.2, which originates from an application that may be able to edit NVRAM variables...

5.5CVSS7.2AI score0.00185EPSS
Exploits0References2
OSV
OSV
added 2024/12/12 2:15 a.m.3 views

CVE-2024-54493

This issue was addressed through improved state management. This issue is fixed in macOS Sequoia 15.2. Privacy indicators for microphone access may be attributed incorrectly...

3.3CVSS7.1AI score0.00218EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/12 12:0 a.m.5 views

Apple macOS 安全漏洞

Apple macOS is a set of specialized operating systems developed for Mac computers by the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.2. An attacker exploiting the vulnerability could access protected user data...

5.5CVSS7.1AI score0.00282EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/12/12 12:0 a.m.5 views

Apple macOS 安全漏洞

Apple macOS is a set of specialized operating systems developed for Mac computers by the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.2. An attacker exploiting the vulnerability can access arbitrary files...

5.5CVSS7.2AI score0.0024EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/12/12 12:0 a.m.6 views

Apple macOS 安全漏洞

Apple macOS is a set of specialized operating systems developed for Mac computers by the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.2. An attacker exploiting this vulnerability could gain root privileges...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/11/24 12:0 a.m.5 views

Veritas Enterprise Vault 安全漏洞

Veritas Enterprise Vault is a Veritas platform for capturing, archiving, and discovering information across all communication platforms. A security vulnerability exists in Veritas Enterprise Vault versions prior to 15.2 that originates from untrusted data received on the .NET Remoting TCP port th...

9.8CVSS7AI score0.00907EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/10/20 12:0 a.m.6 views

Verint Desktop Resources 安全漏洞

Verint Desktop Resources is a software from Verint. A security vulnerability exists in Verint Desktop Resources version 15.2, which originated when the MSI installer allowed an unprivileged local user to elevate their privileges during installation or repair...

7.8CVSS7.3AI score0.00192EPSS
Exploits0References3
Rows per page
Query Builder