Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.10 views

Fedora 43 : moby-engine (2026-0feb6e4967)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-0feb6e4967 advisory. - Update to release v29.6.0 - Resolves: rhbz2490590 - Resolves CVE-2026-39828: rhbz2489945 - Resolves CVE-2026-39829: rhbz2490099 - Resolves...

9.1CVSS6.7AI score0.00513EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.9 views

CVE-2026-43881

WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/users.json.php exposes two unauthenticated paths that disclose the full set of registered user accounts. The isCompany request parameter causes the handler to set $ignoreAdmin = true for any non-admin call...

5.3CVSS5.4AI score0.0027EPSS
Exploits0References1
NVD
NVD
added 2026/05/29 2:16 p.m.19 views

CVE-2026-47694

WWBN AVideo is an open source video platform. In 29.0 and earlier, AVideo stores category descriptions from user input and later renders categorydescription as raw HTML in the Gallery view. A user who can create or edit categories can store JavaScript in a category description, which executes whe...

5.4CVSS0.00162EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/15 7:57 p.m.15 views

CVE-2026-43885

WWBN AVideo is an open source video platform. In versions up to and including 29.0, an unauthenticated user can read APISecret from objects/plugins.json.php and use it to call protected API endpoints e.g. userslist without logging in. Commit 1c36f229d0a103528fb9f64d0a1cc0e1e8f5999b contains an...

8.7CVSS5.7AI score0.00257EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.11 views

PT-2026-43463

Name of the Vulnerable Software and Affected Versions WWBN AVideo versions 29.0 and earlier Description Certain components, including EpgParser.php and plugin/AI/receiveAsync.json.php, fail to utilize the $resolvedIP out-parameter of the isSSRFSafeURL function for DNS pinning via CURLOPT RESOLVE...

6.5CVSS5.8AI score0.00136EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.11 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 29.0 contained security vulnerabilities. These vulnerabilities stemmed from incomplete XSS repairs in the ParsedownSafeWithLinks class, as well as the lack of coverage for...

5.4CVSS5.8AI score0.00216EPSS
Exploits2References1
EUVD
EUVD
added 2026/04/06 6:30 a.m.3 views

EUVD-2026-19176

A security flaw has been discovered in ProjectSend r2002. This vulnerability affects unknown code of the file upload.php. Performing a manipulation results in cross-site request forgery. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks...

5.3CVSS5.5AI score0.00162EPSS
Exploits0References7
NVD
NVD
added 2026/03/20 3:16 p.m.7 views

CVE-2025-46598

Bitcoin Core through 29.0 allows a denial of service via a crafted transaction...

5.3CVSS0.00325EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/29 12:11 a.m.6 views

CVE-2025-54605

Bitcoin Core through 29.0 allows Uncontrolled Resource Consumption issue 2 of 2...

7.5CVSS6.9AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2025/10/28 5:15 p.m.7 views

CVE-2025-54604

Bitcoin Core through 29.0 allows Uncontrolled Resource Consumption issue 1 of 2...

7.5CVSS0.00394EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.4 views

Bitcoin Core 安全漏洞

Bitcoin Core is a Bitcoin open source client for verifying the validity of blockchain transactions. A security vulnerability exists in Bitcoin Core version 29.0 and earlier, which stems from uncontrolled resource consumption...

7.5CVSS6.6AI score0.00394EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/28 12:0 a.m.16 views

CVE-2025-54604

Bitcoin Core through 29.0 allows Uncontrolled Resource Consumption issue 1 of 2...

0.00394EPSS
Exploits0References3
CVE
CVE
added 2025/10/28 12:0 a.m.22 views

CVE-2025-54605

CVE-2025-54605 affects Bitcoin Core up to version 29.0, with an issue described as Uncontrolled Resource Consumption. The connected documents consistently state the vulnerability outcome but do not provide concrete exploit paths, affected subcomponents, or a confirmed fix/patch version. The impac...

7.5CVSS6.5AI score0.00394EPSS
Exploits0References3Affected Software1
Exploit DB
Exploit DB
added 2025/04/16 12:0 a.m.169 views

WooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection

Exploit Title: WooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection Date: 2024-03-25 Exploit Author: Ivan Spiridonov - xbz0n Software Link: https://codecanyon.net/item/woocommerce-customers-manager/10965432 Version: 29.4 Tested on: Ubuntu 22.04 CVE: CVE-2024-0399 SQL Injection Th...

8.1CVSS7.4AI score0.02877EPSS
Exploits5
CNNVD
CNNVD
added 2025/03/25 12:0 a.m.3 views

IBM Spss Statistics 加密问题漏洞

IBM Spss Statistics is a software package from International Business Machines IBM, Inc. It is used for interactive or batch statistical analysis. An encryption issue vulnerability exists in IBM SPSS Statistics versions 26.0, 27.0.1, 28.0.1, and 29.0.2, which stems from the use of a weak encrypti...

7.5CVSS6.6AI score0.00187EPSS
Exploits0References4
OSV
OSV
added 2023/03/09 6:15 a.m.7 views

UBUNTU-CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7.1AI score0.0112EPSS
Exploits0References4
Rows per page
Query Builder