Lucene search
K

8 matches found

NVD
NVD
added 2026/05/13 7:17 p.m.18 views

CVE-2026-42031

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulnerability in datastoresearchsql allowed attackers to inject SQL in order to gain access to private resources and PostgreSQL system information This vulnerability is fixed ...

9.8CVSS0.01815EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/22 12:0 a.m.3 views

WordPress Plugin Web Accessibility By accessiBe 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

5.4CVSS6.4AI score0.00257EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/05 12:0 a.m.10 views

i-Educar 安全漏洞

i-Educar is a free educational software from Portábilis Open Source. A security vulnerability exists in i-Educar version 2.10 and earlier, which stems from a SQL injection due to the incorrect operation of the parameter refcodaluno in the file educarhistoricoescolarlst.php...

8.8CVSS6.8AI score0.0037EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.3 views

Portabilis i‑Diário 安全漏洞

Portabilis i-Diário is an open source school academic calendar and teacher interaction management system from Portabilis, Brazil. A security vulnerability exists in Portabilis i-Diário version 2.10 and earlier, which stems from a SQL injection attack due to incorrect manipulation of the parameter...

8.8CVSS7.6AI score0.00369EPSS
Exploits1References8
Patchstack
Patchstack
added 2025/01/16 6:42 p.m.4 views

WordPress amr personalise plugin <= 2.10 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin amr personalise versions = 2.10...

7.1CVSS6.2AI score0.00197EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2022/05/19 12:0 a.m.21 views

Cisco Common Services Platform Collector 跨站脚本漏洞

Cisco Common Services Platform Collector CSPC is a common services platform data collector from Cisco USA. The product analyzes network performance and identifies risks and vulnerabilities by polling basic inventory and configuration data from Cisco devices.Cisco Common Services Platform Collecto...

6.1CVSS6.4AI score0.00685EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/09/20 12:0 a.m.6 views

Faad2 缓冲区错误漏洞

Freeware Advanced Audio Decoder 2 FAAD2 is an open source MPEG-4 and MPEG-2 AAC decoder licensed under the GPLv2 license. ltprediction function in ltpredict.c in FAAD2 2.10.0 and earlier versions is vulnerable to a heap buffer overflow vulnerability. An attacker could exploit this vulnerability t...

7.8CVSS7.8AI score0.01225EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2011/10/14 3:24 a.m.4 views

libpurple: invalid UTF-8 string handling in SILC messages

The gmarkupescapetext function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and possibly other products, allows remote attackers to cause a denial of service crash via invalid UTF-8 sequences that trigger use of invalid pointers and an out-of-bounds read, relate...

4.3CVSS5.9AI score0.03194EPSS
Exploits2References4
Rows per page
Query Builder