Lucene search
K

8 matches found

CNNVD
CNNVD
added 2026/05/18 12:0 a.m.8 views

FacturaScripts 信息泄露漏洞

FacturaScripts is an open-source ERP software developed by Carlos Garcia, a Spanish developer. Versions of FacturaScripts prior to version 2026 contained a vulnerability related to information leakage. This vulnerability stemmed from the Library module not clearing the EXIF/XMP/IPTC metadata...

6.5CVSS5.8AI score0.00227EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.5 views

NI LabVIEW 安全漏洞

NI LabVIEW is a graphical programming platform developed by National Instruments. Versions of NI LabVIEW prior to 2026 Q1 26.1.0 contained security vulnerabilities. These vulnerabilities were caused by out-of-bound writing during the loading of corrupted LVLIB files, which could lead to memory...

8.5CVSS7.4AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2026/03/19 10:16 p.m.6 views

CVE-2026-32021

OpenClaw versions prior to 2026.2.22 contain an authorization bypass vulnerability in the Feishu allowFrom allowlist implementation that accepts mutable sender display names instead of enforcing ID-only matching. An attacker can set a display name equal to an allowlisted ID string to bypass...

4.8CVSS5.9AI score
Exploits0References3
EUVD
EUVD
added 2026/03/05 9:59 p.m.4 views

EUVD-2026-9903

OpenClaw versions prior to 2026.2.2 fail to validate webhook secrets in Telegram webhook mode must be enabled, allowing unauthenticated HTTP POST requests to the webhook endpoint that trust attacker-controlled JSON payloads. Remote attackers can forge Telegram updates by spoofing message.from.id...

9.8CVSS6AI score0.00255EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6701

Name of the Vulnerable Software and Affected Versions versions prior to 2026 affected versions not specified Description A heap-based buffer overflow vulnerability exists in the image module. Successful exploitation of this issue may affect availability. Recommendations At the moment, there is no...

7.3CVSS5.8AI score0.0008EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6704

Name of the Vulnerable Software and Affected Versions versions prior to 2026 affected versions not specified Description A use-after-free UAF concurrency vulnerability exists within the graphics module. Successful exploitation of this issue may impact system availability. Recommendations At the...

8.4CVSS5.4AI score0.00066EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.7 views

PT-2026-2200

Name of the Vulnerable Software and Affected Versions versions prior to 2026-22536 Description The lack of permissions control for the user XXX in the sudoers file allows for privilege escalation without restrictions. Recommendations At the moment, there is no information about a newer version th...

8.6CVSS6.6AI score0.00121EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.5 views

PT-2026-1841

Name of the Vulnerable Software and Affected Versions versions prior to 2026 Description This issue enables authenticated attackers to execute commands via the hostname of the device. The vulnerability allows for authenticated remote code execution. The affected devices are not specified. The...

10CVSS8AI score0.00361EPSS
Exploits0References7
Rows per page
Query Builder