Lucene search
K

11 matches found

Vulnrichment
Vulnrichment
added 2026/06/12 3:56 p.m.10 views

CVE-2026-6961 CVE-2026-6961: Path traversal via unsanitized FileInfo.Name in Mattermost federation sync

Mattermost versions 11.6.x = 11.6.1, 11.5.x = 11.5.4, 10.11.x = 10.11.15, 10.11.x = 10.11.16 Mattermost fails to sanitize FileInfo.Name received from federated peers during shared channel file sync, which allows an attacker who controls a federated server to write files to arbitrary locations...

7.6CVSS5.4AI score0.00294EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.33 views

PT-2026-48938

Name of the Vulnerable Software and Affected Versions Mattermost versions prior to 11.6.2 Mattermost versions prior to 11.5.5 Mattermost versions prior to 10.11.17 Description Authenticated users with delegated user-management permissions can escalate privileges by altering built-in role...

7.2CVSS5.9AI score0.00257EPSS
Exploits0References4
CVE
CVE
added 2026/05/22 10:28 a.m.21 views

CVE-2026-4635

Mattermost (versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x

6.5CVSS5.8AI score0.00172EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.4 views

Adobe Experience Manager 跨站脚本漏洞

Adobe Experience Manager AEM is a set of content management solutions that can be used to build websites, mobile applications and forms from the American company Audobee Adobe. The solution supports mobile content management, marketing and sales campaign management, and multi-site management. A...

5.4CVSS5.7AI score0.00217EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-22206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting all versions starting from 11.6. Pull mirror credentials are exposed that allows other maintainers to be able t...

6.8CVSS5.7AI score0.01035EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/10 12:0 a.m.3 views

PT-2023-26380 · Minitool · Minitool Power Data Recovery

Name of the Vulnerable Software and Affected Versions: MiniTool Power Data Recovery versions 11.6 and before MiniTool Power Data Recovery version 11.5 Description: The issue concerns an insecure in-app payment system in MiniTool Power Data Recovery, which can be exploited through a...

5.9CVSS5.6AI score0.0036EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/01/02 12:0 a.m.6 views

PT-2023-18507 · Kiwi Tcms · Kiwi Tcms

Name of the Vulnerable Software and Affected Versions: Kiwi TCMS versions 11.6 and prior Description: Kiwi TCMS is an open source test management system. In versions prior to 11.7, when users register new accounts and/or change passwords, there is no validation in place which would prevent them...

8.8CVSS8.7AI score0.00681EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2022/08/22 12:0 a.m.6 views

PT-2022-20170 · Wwbn · Avideo

Name of the Vulnerable Software and Affected Versions: WWBN AVideo versions 11.6 and prior, including dev master commit 3f7c0364 and earlier Description: A directory traversal issue exists in the unzipDirectory functionality, allowing an attacker to send a specially-crafted HTTP request that can...

9.9CVSS9.6AI score0.63666EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.31 views

F5 Networks BIG-IP : BIG-IP APM OCSP vulnerability (K79428827)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4.3 / 15.1.3.1 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K79428827 advisory. - On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, and all versions of...

5.3CVSS5.8AI score0.00579EPSS
Exploits0References2
CNVD
CNVD
added 2019/11/07 12:0 a.m.3 views

GitLab has an unspecified vulnerability (CNVD-2019-42888)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...

4.3CVSS6.7AI score0.00587EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/04/17 5:29 p.m.26 views

CVE-2019-9178

An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure issue 4 of 5...

5.3CVSS6.5AI score0.01592EPSS
Exploits1References2
Rows per page
Query Builder