Lucene search
K

7 matches found

EUVD
EUVD
added 2026/04/07 6:21 p.m.6 views

EUVD-2026-19858

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source omits authorization on job specification and vacancy attachment download handlers, allowing authenticated low-privilege users to read attachments via direct reference to attachment identifier...

5.3CVSS5.9AI score0.00165EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/07 6:19 p.m.17 views

CVE-2026-39346 OrangeHRM has Improper Access Control Allowing Access to Disabled Modules via URL Encoding

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source allowed authenticated users to bypass disabled-module access controls via URL-encoded request paths and access functionality of modules disabled by an administrator. This vulnerability is fix...

5.3CVSS0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/20 8:25 p.m.3 views

CVE-2026-33155 DeepDiff has Memory Exhaustion DoS through SAFE_TO_IMPORT

DeepDiff is a project focused on Deep Difference and search of any Python data. From version 5.0.0 to before version 8.6.2, the pickle unpickler RestrictedUnpickler validates which classes can be loaded but does not limit their constructor arguments. A few of the types in SAFETOIMPORT have...

8.7CVSS5.8AI score0.00452EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.6 views

Vocera Report Server 代码问题漏洞

Vocera Report Server is a reporting application from Vocera USA. It is used to collect data from data logs created by the Vocera system software and to build reports. A security vulnerability exists in Vocera Report Server and Voice Server versions 5.x - 5.8 that stems from the BaseController...

9.8CVSS7.2AI score0.00683EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/07/25 12:0 a.m.5 views

Vocera Report Server 路径遍历漏洞

Vocera Report Server is a reporting application from Vocera USA. It is used to collect data from data logs created by Vocera system software and to build reports. A security vulnerability exists in Vocera Report Server and Voice Server versions 5.x - 5.8 that stems from the fact that the Vocera...

9.8CVSS7.1AI score0.00683EPSS
Exploits0References3
OSV
OSV
added 2017/11/16 11:29 p.m.6 views

DEBIAN-CVE-2017-0841

A remote code execution vulnerability in the Android system libutils. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37723026...

7.8CVSS8.2AI score0.01337EPSS
Exploits0References1
OSV
OSV
added 2017/10/04 1:29 a.m.4 views

CVE-2017-0811

A remote code execution vulnerability in the Android media framework libhevc. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37930177...

7.8CVSS6.3AI score0.01624EPSS
Exploits0References3
Rows per page
Query Builder