Lucene search
+L

5670 matches found

nuclei
nuclei
added yesterday36 views

WordPress Admin Word Count Column 2.2 - Local File Inclusion

The plugin does not validate the path parameter given to readfile, which could allow unauthenticated attackers to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique. id:...

9.8CVSS7.1AI score0.21881EPSS
Exploits2References5
nuclei
nuclei
added yesterday73 views

Jenkins build-metrics 1.3 - Cross-Site Scripting

Jenkins build-metrics 1.3 is vulnerable to a reflected cross-site scripting vulnerability that allows attackers to inject arbitrary HTML and JavaScript into the web pages the plugin provides. id: CVE-2019-10475 info: name: Jenkins build-metrics 1.3 - Cross-Site Scripting author: madrobot severity...

6.1CVSS6.5AI score0.57735EPSS
Exploits5References5
nvd
nvd
added 3 days ago3 views

CVE-2026-55142

Numeric truncation error in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

5.5CVSS0.0039EPSS
Exploits0References1
nvd
nvd
added 3 days ago3 views

CVE-2026-55134

Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.0031EPSS
Exploits0References1
nvd
nvd
added 3 days ago6 views

CVE-2026-55128

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.0031EPSS
Exploits0References1
nvd
nvd
added 3 days ago3 views

CVE-2026-55130

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00303EPSS
Exploits0References1
nvd
nvd
added 3 days ago3 views

CVE-2026-55127

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00348EPSS
Exploits0References1
nvd
nvd
added 3 days ago4 views

CVE-2026-55132

Double free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00385EPSS
Exploits0References1
nvd
nvd
added 3 days ago2 views

CVE-2026-55124

Improper validation of specified type of input in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

5.5CVSS0.0039EPSS
Exploits0References1
nvd
nvd
added 3 days ago3 views

CVE-2026-55050

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

5.5CVSS0.0039EPSS
Exploits0References1
nvd
nvd
added 3 days ago2 views

CVE-2026-55055

Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.0031EPSS
Exploits0References1
nvd
nvd
added 3 days ago6 views

CVE-2026-55038

Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00401EPSS
Exploits0References1
nvd
nvd
added 3 days ago2 views

CVE-2026-55033

Integer overflow or wraparound in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.00481EPSS
Exploits0References1
nvd
nvd
added 3 days ago4 views

CVE-2026-55032

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS0.0031EPSS
Exploits0References1
vulnrichment
vulnrichment
added 3 days ago3 views

CVE-2026-55128 Microsoft Word Remote Code Execution Vulnerability

...

7.8CVSS6.1AI score0.0031EPSS
Exploits0References1
cve
cve
added 3 days ago7 views

CVE-2026-55128

CVE-2026-55128 is a Use-after-free in Microsoft Word that enables local code execution by an unauthenticated attacker who powers the exploit via a crafted file/link. Affected product scope is Microsoft Word/Office as per Microsoft advisories; document does not specify exact vulnerable builds or p...

7.8CVSS6.1AI score0.0031EPSS
Exploits0References1Affected Software8
cvelist
cvelist
added 3 days ago35 views

CVE-2026-55128 Microsoft Word Remote Code Execution Vulnerability

...

7.8CVSS0.0031EPSS
Exploits0References1
cvelist
cvelist
added 3 days ago31 views

CVE-2026-55130 Microsoft Word Remote Code Execution Vulnerability

...

7.8CVSS0.00303EPSS
Exploits0References1
cve
cve
added 3 days ago9 views

CVE-2026-55130

CVE-2026-55130 describes a heap-based buffer overflow in Microsoft Word (Office) that allows an authenticated attacker to achieve local code execution . The CVE entry lists a LOCAL attack vector, with user interaction required and high impact on confidentiality, integrity, and availability. Conne...

7.8CVSS6.2AI score0.00303EPSS
Exploits0References1Affected Software6
cvelist
cvelist
added 3 days ago32 views

CVE-2026-55142 Microsoft Word Information Disclosure Vulnerability

...

5.5CVSS0.0039EPSS
Exploits0References1
Rows per page
Query Builder