Lucene search
+L

36 matches found

ptsecurity
ptsecurity
added 2026/07/07 12:0 a.m.11 views

PT-2026-56158

Excelize is a Go language library for reading and writing Microsoft Excel spreadsheets. Prior to 2.11.0, the streaming worksheet reader used by Rows and GetRows does not enforce the TotalRows limit on the row r attribute, allowing a small XLSX file with a row number above 1048576 and no cell...

8.7CVSS6.1AI score0.00524EPSS
Exploits1References6
cve
cve
added 2026/06/05 4:51 p.m.25 views

CVE-2026-45290

Cloudburst Network: A vulnerability in versions prior to 1.0.0.CR3-20260417.085727-30 affects the Network component and can stall the Netty event loop, rendering affected software inoperable. Impact is availability-focused (HIGH) with no confidentiality or integrity impact per the cited metrics. ...

7.5CVSS5.5AI score0.00278EPSS
Exploits0References1
nessus
nessus
added 2026/04/15 12:0 a.m.6 views

SUSE SLES12 Security Update : clamav (SUSE-SU-2026:1324-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:1324-1 advisory. Update to clamav 1.5.2: - CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service...

5.3CVSS5.9AI score0.00414EPSS
Exploits0References6
githubexploit
githubexploit
added 2026/02/06 10:46 a.m.157 views

sb-poc-web

StackBill Deployer Web-based deployment portal for StackBill...

5.5AI score
Exploits0
veeam
veeam
added 2025/12/10 12:0 a.m.17 views

Release Information for Dell SC Series Plug-In for Veeam Backup & Replication

This plug-in leverages the Veeam Universal Storage API, which enables storage OEMs to allow Veeam Backup & Replication integration to the arrays for backup and replication jobs. Requirements Before installing Dell SC Series Plug-In v1.0.211, ensure that you are running Veeam Backup & Replication...

6.8AI score
Exploits0Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-3615

Malware in sbrugna...

9CVSS8.8AI score0.0364EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-36450

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00286EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12983

Malicious code in bioql PyPI...

7.2AI score0.0016EPSS
Exploits0References3
osv
osv
added 2025/09/24 3:31 p.m.1 views

GHSA-4XH5-X5GV-QWPH pip's fallback tar extraction doesn't check symbolic links point to extraction directory

When extracting a tar archive pip may not check symbolic links point into the extraction directory if the tarfile module doesn't implement PEP 706. Note that upgrading pip to a "fixed" version for this vulnerability doesn't fix all known vulnerabilities that are remediated by using a Python versi...

5.9CVSS7.9AI score0.00438EPSS
Exploits0References7
osv
osv
added 2025/07/03 9:15 a.m.6 views

AZL-64520 CVE-2025-38173 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa - Handle zero-length skcipher requests Do not access random memory for zero-length skcipher requests. Just return 0...

5.5CVSS6.8AI score0.00151EPSS
Exploits0References1
snyk
snyk
added 2025/06/23 7:41 p.m.4 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview pyspur is a PySpur is a Graph UI for building AI Agents in Python Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine via the SingleLLMCallNode function. An attacker can execute unauthorized template code and potential...

6.5CVSS7.2AI score0.00327EPSS
Exploits0References2
nvd
nvd
added 2025/05/01 3:16 p.m.26 views

CVE-2022-49804

In the Linux kernel, the following vulnerability has been resolved: s390: avoid using global register for currentstackpointer Commit 30de14b1884b "s390: currentstackpointer shouldn't be a function" made currentstackpointer a global register variable like on many other architectures. Unfortunately...

7.8CVSS0.0016EPSS
Exploits0References2
osv
osv
added 2025/05/01 2:9 p.m.13 views

CVE-2022-49804 s390: avoid using global register for current_stack_pointer

In the Linux kernel, the following vulnerability has been resolved: s390: avoid using global register for currentstackpointer Commit 30de14b1884b "s390: currentstackpointer shouldn't be a function" made currentstackpointer a global register variable like on many other architectures. Unfortunately...

7.8CVSS6.1AI score0.0016EPSS
Exploits0References5
openvas
openvas
added 2025/04/25 12:0 a.m.9 views

Sonos Speakers S1 App < 11.15.1, S2 App < 16.6 Multiple RCE Vulnerabilities (SSA-2024-0002)

Sonos speakers are prone to multiple remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX =...

8.8CVSS7.6AI score0.00523EPSS
Exploits0References3
openvas
openvas
added 2025/03/17 12:0 a.m.16 views

Microsoft Edge (Chromium-Based) < 134.0.3124.66 RCE Vulnerability (Mar 2025)

Microsoft Edge Chromium-Based is prone to a remote code execution RCE vulnerability SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.6CVSS7.3AI score0.00725EPSS
Exploits0References1
cbl_mariner
cbl_mariner
added 2025/03/13 9:13 p.m.16 views

CVE-2025-21669 affecting package kernel for versions less than 6.6.76.1-1

CVE-2025-21669 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.1AI score0.00214EPSS
Exploits0
nessus
nessus
added 2025/02/14 12:0 a.m.6 views

Azure Linux 3.0 Security Update: postgresql (CVE-2024-4317)

The version of postgresql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4317 advisory. - Missing authorization in PostgreSQL built-in views pgstatsext and pgstatsextexprs allows an unprivileged...

4.3CVSS6.6AI score0.00722EPSS
Exploits0References2
openvas
openvas
added 2025/02/05 12:0 a.m.5 views

WordPress ProfilePress Plugin < 3.2.16 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:properfraction:profilepress"; if description...

7.2AI score
Exploits0References1
openvas
openvas
added 2025/01/30 12:0 a.m.9 views

Google Chrome Security Update (stable-channel-update-for-desktop_28-2025-01) - Linux

Google Chrome is prone to an use after free vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...

8.8CVSS7AI score0.00339EPSS
Exploits0References1
githubexploit
githubexploit
added 2025/01/25 2:41 a.m.406 views

Exploit for Path Traversal in Iptanus Wordpress_File_Upload

CVE-2024-9047: Exploit for WordPress File Upload Plugin De...

9.8CVSS9.9AI score0.92319EPSS
Exploits4
Rows per page
Query Builder