Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/04/09 12:0 a.m.9 views

Dockyard 访问控制错误漏洞

Dockyard is a lightweight Docker container management web interface developed by Ismail as an individual developer. Versions of Dockyard prior to 1.1.0 contained an access control vulnerability. This vulnerability stemmed from the fact that Docker container startup and shutdown operations were...

6.5CVSS5.8AI score0.00107EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:32 a.m.7 views

CVE-2017-18555

The booking-sms plugin before 1.1.0 for WordPress has XSS...

6.1CVSS6.9AI score0.00905EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.5 views

PT-2025-34709

Name of the Vulnerable Software and Affected Versions: TP-Link KP303 Smartplug versions prior to 1.1.0 Description: The TP-Link KP303 Smartplug is susceptible to unauthenticated protocol commands that can lead to an unintended power-off condition and potential information leak. Recommendations:...

8.8CVSS6.5AI score0.00296EPSS
Exploits0References13
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.5 views

Drupal Block Attributes 安全漏洞

Drupal Block Attributes is a configuration interface plugin for the Drupal community. A security vulnerability exists in Drupal Block Attributes versions prior to 1.1.0 and prior to 2.0.1, which stems from improper input neutralization during page generation and could lead to a cross-site scripti...

6.1CVSS6AI score0.00223EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/07/16 12:0 a.m.8 views

Drupal Block Attributes module < 1.1.0,2.0.0 - Unauthenticated Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Block Attributes versions 1.1.0,2.0.0...

6.1CVSS6.1AI score0.00223EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/05/26 12:0 a.m.7 views

PT-2023-23724 · Unknown · Cloudexplorer Lite

Name of the Vulnerable Software and Affected Versions: CloudExplorer Lite versions prior to 1.1.0 Description: The issue is related to a missing permission check on the user profile in CloudExplorer Lite, an open source cloud management tool. This allows users to add themselves to any organizatio...

7.1CVSS6.8AI score0.00382EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/01/04 12:0 a.m.7 views

Uniswap Universal Router 安全漏洞

Universal Router is a Uniswap open source Uniswap Universal Router for NFT and ERC20 switching from Uniswap Labs. A security vulnerability exists in Uniswap Universal Router versions prior to 1.1.0 that stems from incorrect handling of data...

7.5CVSS7.2AI score0.0076EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/05/21 12:0 a.m.4 views

RegionProtect 参数注入漏洞

RegionProtect is a plugin. A security vulnerability exists in versions of RegionProtect prior to 1.1.0, which stems from a YAML injection issue in the application. An attacker can exploit the vulnerability by passing mismatched parameters to achieve denial of service attacks...

7.5CVSS7.4AI score0.01092EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/11/16 12:0 a.m.4 views

PT-2021-22653 · Unknown · Ipack Scada

Name of the Vulnerable Software and Affected Versions: Ipack SCADA Software versions prior to 1.1.0 Description: The issue is related to improper handling of parameters, allowing Blind SQL Injection. This can potentially be exploited to extract or modify sensitive data from the database...

9.8CVSS7.6AI score0.14501EPSS
Exploits1References3
CNVD
CNVD
added 2017/08/15 12:0 a.m.6 views

Synology Chat Server-Side Request Forgery Vulnerability

Synology Chat is a live chat tool from Synology. link preview is one of the link preview components. A server-side request forgery vulnerability exists in link preview in Synology Chat versions prior to 1.1.0-0806. A remote attacker can exploit this vulnerability to gain access to internal...

6.5CVSS6.8AI score0.01424EPSS
Exploits0References1
Rows per page
Query Builder