Lucene search
+L

14418 matches found

Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.16 views

PT-2026-45700

The rognone plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'a' parameter in versions up to, and including, 0.6.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages...

6.1CVSS6AI score0.00208EPSS
Exploits0References5
OSV
OSV
added 2026/06/01 3:55 p.m.13 views

ASB-A-463258435

Bulletin has no description...

5.7AI score
Exploits0
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-480646333

Bulletin has no description...

8CVSS5.7AI score0.00294EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-500172039

Bulletin has no description...

6.7CVSS5.7AI score0.00114EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-497587545

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.9 views

ASB-A-497587546

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.12 views

ASB-A-497585112

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.7 views

ASB-A-493235107

In TBD of TBD, there is a possible TBD due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.6CVSS5.9AI score0.00115EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.20 views

ASB-A-500171842

Bulletin has no description...

7.8CVSS5.7AI score0.00108EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-497208298

Bulletin has no description...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.12 views

ASB-A-488928606

Bulletin has no description...

7.5CVSS5.7AI score0.00305EPSS
Exploits0References1
OSV
OSV
added 2026/06/01 12:0 a.m.13 views

ASB-A-489081387

Bulletin has no description...

7.2CVSS5.7AI score0.00097EPSS
Exploits0References2
OSV
OSV
added 2026/06/01 12:0 a.m.10 views

ASB-A-497208290

Bulletin has no description...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/05/29 10:2 p.m.9 views

Malicious Package

Overview private-next-instrumentation-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization an...

9.8CVSS5.8AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/29 1:30 p.m.10 views

CVE-2026-45611

Further research determined the issue is not a vulnerability...

5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.17 views

PT-2026-44934

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.28.8 and earlier, authenticated OS command injection in the application.updateTraefikConfig tRPC endpoint allows admin/owner users to execute arbitrary system commands on remote servers via unsanitized echo shell interpolation...

9CVSS6.1AI score0.00763EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.11 views

PT-2026-45139

CVE-2026-45611 - Cisco Router Authentication Bypass CVE ID :CVE-2026-45611 Published : May 29, 2026, 1:16 p.m. | 1 hour, 13 minutes ago Description :Rejected reason: Further research determined the issue is not a vulnerability. Severity: 0.0 | NA Visit the link for more details, such as CVSS...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.11 views

FreeScout 授权问题漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.221 contained an authorization vulnerability. This vulnerability stemmed from a lack of email membership checks in the...

4.3CVSS5.8AI score0.00155EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/28 8:17 p.m.15 views

EUVD-2026-33018

Vulnerability in Oracle REST Data Services component: Backend-as-a-Service. Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle REST Data Services. While the vulnerability is in...

10CVSS5.8AI score0.00725EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.12 views

PT-2026-44531

Name of the Vulnerable Software and Affected Versions Oracle REST Data Services versions 24.2.0 through 26.1.0 Description An issue exists in the Backend-as-a-Service component of Oracle REST Data Services. An unauthenticated attacker with network access via HTTPS can exploit this flaw to...

10CVSS5.8AI score0.00725EPSS
Exploits1References12
Rows per page
Query Builder