Lucene search
K

16 matches found

RubySec
RubySec
added 2026/04/22 12:0 a.m.8 views

OpenC3 COSMOS - Hijacked session token can be used to reset password for persistence

Summary The OpenC3 password change functionality allows a user to change their password without providing the old password, by accepting a valid session token instead. In assumed breach scenarios, this behaviour can be exploited by an attacker who has already obtained a valid session token, to ga...

8.1CVSS5.8AI score0.00305EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/03/24 7:16 p.m.4 views

UBUNTU-CVE-2026-23921

A low privilege Zabbix user with API access can exploit a blind SQL injection vulnerability in include/classes/api/CApiService.php to execute arbitrary SQL selects via the sortfield parameter. Although query results are not returned directly, an attacker can exfiltrate arbitrary database data...

8.7CVSS6.1AI score0.0024EPSS
Exploits0References3
CVE
CVE
added 2026/01/22 3:39 a.m.23 views

CVE-2026-24038

Horilla HRMS has a 2FA bypass in version 1.4.0 due to a flawed OTP equality check: when OTP expires, the server returns None and omitting the otp field makes user_otp == otp pass, bypassing 2FA. Administrative accounts risk data compromise; fixed in version 1.5.0. Remediation: upgrade to 1.5.0 or...

8.1CVSS5.5AI score0.00443EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/02 12:0 a.m.9 views

PT-2026-1125

Name of the Vulnerable Software and Affected Versions Bagisto versions prior to 2.3.10 Description Bagisto, an open source Laravel eCommerce platform, has an issue where API routes remain active even after the initial installation is complete. The API endpoints /install/api/ are directly accessib...

9.8CVSS6.8AI score0.00583EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.6 views

PT-2025-44439

Name of the Vulnerable Software and Affected Versions JATOS versions 3.7.1 through 3.9.6 Description A Reflected Cross-Site Scripting XSS issue exists in JATOS. This allows remote attackers to execute arbitrary JavaScript in a user's web browser by including a malicious payload in the code URL...

6.1CVSS6.2AI score0.0022EPSS
Exploits0References6
CVE
CVE
added 2025/10/24 12:0 a.m.15 views

CVE-2025-60954

CVE-2025-60954 affects Microweber CMS 2.0, where the password reset flow enforces no minimum length or complexity, allowing extremely weak (even single-character) passwords and risking account compromise, including admin accounts. The vulnerability surface is the password reset process in Microwe...

8.3CVSS6.5AI score0.00417EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/10 12:0 a.m.5 views

CVE-2025-61319

ReNgine thru 2.2.0 is vulnerable to a Stored Cross-Site Scripting XSS vulnerability in the Vulnerabilities module. When scanning a target with an XSS payload, the unsanitized payload is rendered in the ReNgine web UI, resulting in arbitrary JavaScript execution in the victim's browser. This can b...

4.8AI score0.00266EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-18381

Malware in sbrugna...

8.8CVSS8.6AI score0.01001EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-37899

Malicious code in bioql PyPI...

4.4CVSS6.6AI score0.00292EPSS
Exploits0References3
OSV
OSV
added 2025/06/26 2:15 a.m.2 views

CVE-2025-4334

The Simple User Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 6.3. This is due to insufficient restrictions on user meta values that can be supplied during registration. This makes it possible for unauthenticated attackers to registe...

9.8CVSS5.8AI score0.02055EPSS
Exploits5References2
Cvelist
Cvelist
added 2025/06/04 7:59 p.m.14 views

CVE-2025-32015 FreshRSS vulnerable to Cross-site Scripting by embedding <script> tag inside <iframe srcdoc>

FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, HTML is sanitized improperly inside the attribute, which leads to cross-site scripting XSS by loading an attacker's UserJS inside . In order to execute the attack, the attacker needs to control one of the victim's feeds and...

6.7CVSS0.00387EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/06/04 7:42 p.m.18 views

CVE-2025-31136 FreshRSS vulnerable to Cross-site Scripting by <iframe>'ing a vulnerable same-origin page in a feed entry

FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, it's possible to run arbitrary JavaScript on the feeds page. This occurs by combining a cross-site scripting XSS issue that occurs in f.php when SVG favicons are downloaded from an attacker-controlled feed containing tags...

6.7CVSS0.00307EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/04/24 12:0 a.m.3 views

PLANET WGS-804HPT和PLANET WGS-4215-8T2S 访问控制错误漏洞

PLANET WGS-804HPT and PLANET WGS-4215-8T2S are both products of PLANET China.PLANET WGS-804HPT is an innovative industrial-grade 8-port 10/100/1000T wall-mounted managed switch.PLANET WGS-4215-8T2S is an innovative industrial-grade PLANET WGS-4215-8T2S is an innovative industrial grade 8-port...

9.8CVSS8.8AI score0.00493EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.4 views

PT-2024-31859

Name of the Vulnerable Software and Affected Versions Contao version 5.4.1 Description The issue allows an authenticated admin account to upload a SVG file containing malicious javascript code into the target system. If the file is accessed through the website, it could lead to a Cross-Site...

6.4CVSS6.7AI score0.0031EPSS
Exploits1References12
Positive Technologies
Positive Technologies
added 2024/05/15 12:0 a.m.7 views

PT-2024-26955 · WordPress · Hl Twitter Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: HL Twitter WordPress plugin versions through 2014.1.18 Description: The issue concerns a lack of CSRF check when unlinking Twitter accounts, potentially allowing attackers to make logged-in admins perform such actions via a CSRF attack...

4.3CVSS6.4AI score0.00211EPSS
Exploits2References4
OSV
OSV
added 2019/08/22 7:15 p.m.3 views

UBUNTU-CVE-2019-12385

An issue was discovered in Ampache through 3.9.1. The search engine is affected by a SQL Injection, so any user able to perform lib/class/search.class.php searches even guest users can dump any data contained in the database sessions, hashed passwords, etc.. This may lead to a full compromise of...

8.8CVSS7.3AI score0.01634EPSS
Exploits1References4
Rows per page
Query Builder