Lucene search
+L

10 matches found

cve
cve
added 2026/04/01 10:0 a.m.10 views

CVE-2026-1879

CVE-2026-1879 affects Harvard IQSS Dataverse (up to 6.8) in the Theme Customization component, specifically the ThemeAndWidgets.xhtml file. A manipulation of the argument uploadLogo enables unrestricted file upload, enabling remote exploitation. The exploit is public, and upgrading to version 6.1...

6.5CVSS6.2AI score0.00257EPSS
Exploits0References5
vulnrichment
vulnrichment
added 2025/11/13 7:41 p.m.3 views

CVE-2025-46369

Dell Alienware Command Center 6.x AWCC, versions prior to 6.10.15.0, contains an Insecure Temporary File vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Privilege Escalation...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/02/15 12:0 a.m.8 views

PT-2025-6891 · Pix · Pix Software Vivaz

Name of the Vulnerable Software and Affected Versions: Pix Software Vivaz version 6.0.10 Description: A problematic vulnerability was found in Pix Software Vivaz, affecting unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has be...

5.3CVSS6.6AI score0.00217EPSS
Exploits0References8
attackerkb
attackerkb
added 2024/12/13 3:15 p.m.8 views

CVE-2023-33996

Missing Authorization vulnerability in CleanTalk Inc Spam protection, AntiSpam, FireWall by CleanTalk cleantalk-spam-protect allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Spam protection, AntiSpam, FireWall by CleanTalk: from n/a through = 6.10...

8.8CVSS5.8AI score0.00685EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/12/13 12:0 a.m.6 views

PT-2024-12456 · Cleantalk · Cleantalk-Spam-Protect

Name of the Vulnerable Software and Affected Versions: CleanTalk Spam Protection versions 6.10 and below Description: The issue is related to a Missing Authorization vulnerability, which allows for broken access control. This can compromise the security of the site. The estimated number of...

8.8CVSS9.5AI score0.00685EPSS
Exploits0References24
osv
osv
added 2024/10/28 3:15 p.m.9 views

UBUNTU-CVE-2024-45802

Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted...

7.5CVSS5.8AI score0.47227EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2024/09/23 12:0 a.m.9 views

PT-2024-28459 · Entrust · Entrust Instant Financial Issuance

Name of the Vulnerable Software and Affected Versions: Entrust Instant Financial Issuance On Premise Software versions 6.10.0, 6.9.0, 6.9.1, 6.9.2, and 6.8.x and earlier Description: The issue concerns a configuration file, specifically WebAPI.cfg.xml, which is left behind after the installation...

5.9CVSS7AI score0.00198EPSS
Exploits0References8
cnnvd
cnnvd
added 2023/01/05 12:0 a.m.5 views

Aruba Networks ClearPass 安全漏洞

Aruba Networks ClearPass is an access management system from Aruba Networks, Inc. that integrates network control, application and device management capabilities. A security vulnerability exists in Aruba Networks ClearPass. An attacker could exploit the vulnerability to elevate user privileges to...

7.8CVSS7.8AI score0.00218EPSS
Exploits0References2
attackerkb
attackerkb
added 2022/09/17 7:15 a.m.2 views

CVE-2022-3173

Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10...

4.3CVSS5.8AI score0.0072EPSS
Exploits1References3
osv
osv
added 2021/03/18 6:15 p.m.3 views

CVE-2020-14516

In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that prevents the user password from being hashed properly...

10CVSS7.3AI score0.04095EPSS
Exploits0References1
Rows per page
Query Builder