Lucene search
K

4 matches found

Debian CVE
Debian CVE
added 2026/07/06 6:44 p.m.7 views

CVE-2026-55798

Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.getcommand constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen..., shell=True, allowing shell metacharacters in the file path to inject...

4.5CVSS6AI score0.00136EPSS
Exploits1
CVE
CVE
added 2026/02/24 2:50 a.m.46 views

CVE-2026-27461

Summary : Pimcore pre-12.3.3 exposes a SQL-like injection in the dependency listing filter. In versions up to 11.5.14.1 and 12.3.2, the filter query parameter is JSON-decoded and the value is concatenated directly into RLIKE clauses without sanitization or parameterized queries. Impact : With adm...

6.9CVSS5.4AI score0.00457EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 3:22 p.m.8 views

CVE-2020-25622

An issue was discovered in SolarWinds N-Central 12.3.0.670. The AdvancedScripts HTTP endpoint allows CSRF...

8.8CVSS7AI score0.00944EPSS
Exploits0
CNVD
CNVD
added 2019/12/27 12:0 a.m.3 views

Apple iOS and Apple watchOS Mail Message Framework Component Resource Management Error Vulnerability

Apple iOS and Apple watchOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices. apple watchOS is an operating system for smartwatches. mail Message Framework is one of the email messaging frameworks. A resource management error vulnerability exists in th...

9.8CVSS6.7AI score0.13289EPSS
Exploits0References1
Rows per page
Query Builder