Lucene search
K

19 matches found

Cvelist
Cvelist
added 2026/06/19 6:32 p.m.24 views

CVE-2026-12238 WP Go Maps <= 10.1.01 - Unauthenticated Arbitrary Record Creation

The WP Go Maps – Most Popular Map Plugin plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 10.1.01. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers ...

5.3CVSS0.00205EPSS
Exploits0References2
OSV
OSV
added 2025/09/23 5:42 p.m.5 views

CVE-2025-59821 DNN vulnerable to Reflected Cross-Site Scripting (XSS) using url to profile

DNN formerly DotNetNuke is an open-source web content management platform CMS in the Microsoft ecosystem. Prior to version 10.1.0, DNN’s URL/path handling and template rendering can allow specially crafted input to be reflected into a user profile that is returned to the browser. In these cases,...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/05 1:7 a.m.13 views

CVE-2025-25967

Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery CSRF. This flaw enables attackers to trick authenticated users into performing unauthorized actions, such as account deletion or user creation, by embedding malicious requests in external content. The lack of CSRF protections...

8.8CVSS6.6AI score0.00528EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 12:0 a.m.71 views

CVE-2025-25967

CVE-2025-25967 affects Acora CMS 10.1.1, where a Cross-Site Request Forgery (CSRF) vulnerability allows an attacker to trick authenticated users into performing unauthorized actions by embedding malicious requests in external content. The lack of CSRF protections is the root cause. According to t...

8.8CVSS6.4AI score0.00528EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/19 12:0 a.m.6 views

IBM TXSeries for Multiplatforms 安全漏洞

IBM TXSeries for Multiplatforms is a transaction monitoring and management software product from International Business Machines IBM designed to support distributed transaction processing on multiple platforms. A security vulnerability exists in IBM TXSeries for Multiplatforms version 10.1 that...

7.5CVSS6.5AI score0.00721EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/21 12:0 a.m.4 views

Zimbra Collaboration Server 跨站脚本漏洞

Zimbra Collaboration Server ZCS is an email and collaboration solution from Zimbra. The solution provides email, contacts, calendar, file sharing, social networking, and other features. A cross-site scripting vulnerability exists in Zimbra Collaboration Server version 10.1 and prior versions, whi...

5.4CVSS6.2AI score0.00531EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/11/20 12:0 a.m.3 views

Zimbra Collaboration Suite 安全漏洞

Zimbra Collaboration Suite ZCS is an open source collaboration suite from Zimbra. The product includes WebMail, Calendar, Address Book and more. A security vulnerability exists in Zimbra Collaboration Suite version 10.1 and prior versions, which stems from improper cleaning of file contents by th...

5.4CVSS7AI score0.00312EPSS
Exploits0References4
OSV
OSV
added 2024/11/12 8:15 p.m.4 views

CVE-2024-47433

Substance3D - Painter versions 10.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00265EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/01 12:0 a.m.3 views

IBM TXSeries for Multiplatforms 安全漏洞

IBM TXSeries for Multiplatforms is a transaction monitoring and management software product from International Business Machines IBM designed to support distributed transaction processing on multiple platforms. A security vulnerability exists in IBM TXSeries for Multiplatforms version 10.1, which...

5.3CVSS6.6AI score0.00306EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/06 12:0 a.m.4 views

iboss Secure Web Gateway 跨站脚本漏洞

iboss Secure Web Gateway is a web security solution from iboss designed to help organizations protect their networks from cyber threats and malicious activity. A cross-site scripting vulnerability exists in iboss Secure Web Gateway version 10.1 and earlier, which stems from a cross-site scripting...

6.1CVSS4.4AI score0.22002EPSS
Exploits4References5
OSV
OSV
added 2024/01/24 12:54 p.m.5 views

SUSE-SU-2024:0208-1 Security update for tomcat10

This update for tomcat10 fixes the following issues: Updated to Tomcat 10.1.18 - CVE-2023-46589: Fixed HTTP request smuggling due to incorrect headers parsing bsc1217649 Find the full release notes at: https://tomcat.apache.org/tomcat-9.0-doc/changelog.html...

7.5CVSS7.5AI score0.02651EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/10/27 12:0 a.m.5 views

Adobe Prelude 缓冲区错误漏洞

Adobe Prelude is a video recording and capture tool designed for intuitive and efficient media organization and metadata entry to quickly tag and transcode video footage and quickly create rough cuts.Adobe Prelude 10.1 and earlier versions are vulnerable to an out-of-bounds memory buffer access...

7.8CVSS6.4AI score0.0169EPSS
Exploits0References4
CNNVD
CNNVD
added 2020/12/07 12:0 a.m.9 views

Intland Software codeBeamer ALM Code Issue Vulnerability

Intland Software codeBeamer ALM is an application lifecycle management platform from Intland Software, Germany. The platform supports application lifecycle management, requirements management, risk management and software development. A security vulnerability exists in Intland codeBeamer ALM...

5.5CVSS6AI score0.00905EPSS
Exploits1References3
Citrix
Citrix
added 2020/10/16 12:0 a.m.9 views

How to Create Custom Theme for Logon Page of NetScaler Gateway 10.1 and 10.5

This article describes how to create custom theme for logon page of NetScaler Gateway virtual server...

7.1AI score
Exploits0
OSV
OSV
added 2020/03/10 9:15 p.m.4 views

CVE-2020-6209

SAP Disclosure Management, version 10.1, does not perform necessary authorization checks for an authenticated user, allowing access to administration accounts by a user with no roles, leading to Missing Authorization Check...

7.5CVSS7.1AI score0.00797EPSS
Exploits0References2
CNVD
CNVD
added 2018/04/12 12:0 a.m.4 views

SAP Disclosure Management Unauthorized Access Vulnerability

SAP Disclosure Management is an automated financial disclosure management system from SAP. The system provides a collaborative financial disclosure process across teams, geographies, systems and data sources. A security vulnerability exists in SAP Disclosure Management version 10.1. An attacker...

6.5CVSS6.5AI score0.01197EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/12 12:0 a.m.5 views

SAP Disclosure Management Elevation of Privilege Vulnerability

SAP Disclosure Management is an automated financial disclosure management system from SAP. The system provides a collaborative financial disclosure process across teams, geographies, systems and data sources. A security vulnerability exists in SAP Disclosure Management version 10.1, which stems...

8.8CVSS6.5AI score0.0144EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/15 12:0 a.m.5 views

IBM Emptoris Strategic Supply Management Arbitrary Code Execution Vulnerability

The IBM Emptoris Strategic Supply Management Platform is a common Web-based portal for accessing the Emptoris suite of products from IBM. An arbitrary code execution vulnerability exists in IBM Emptoris Strategic Supply Management Platform versions 10.x and 10.1. A local attacker could exploit th...

6.4CVSS7.4AI score0.0033EPSS
Exploits0References1
Citrix
Citrix
added 2016/01/11 12:0 a.m.10 views

Error: "Please check your credentials you may have mistyped them" on XenMobile

XenMobile enterprise migration is completed successfully from 9 to 10.1. Enrollment begins OK, MAM side errors out. Customer initiates enrollment and when Secure Hubagain is connecting to MAM and user is expecting to enter PIN prompt they see the following error: Please check your credentials you...

7.2AI score
Exploits0
Rows per page
Query Builder