Lucene search
K

156 matches found

Vulnrichment
Vulnrichment
added 2026/01/13 10:51 p.m.2 views

CVE-2022-50927 Cyclades Serial Console Server 3.3.0 - Local Privilege Escalation

Cyclades Serial Console Server 3.3.0 contains a local privilege escalation vulnerability due to overly permissive sudo privileges for the admin user and admin group. Attackers can exploit the default user configuration to gain root access by manipulating system binaries and leveraging unrestricte...

8.5CVSS6.8AI score0.00136EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/13 10:51 p.m.27 views

CVE-2022-50927 Cyclades Serial Console Server 3.3.0 - Local Privilege Escalation

Cyclades Serial Console Server 3.3.0 contains a local privilege escalation vulnerability due to overly permissive sudo privileges for the admin user and admin group. Attackers can exploit the default user configuration to gain root access by manipulating system binaries and leveraging unrestricte...

8.5CVSS0.00136EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.7 views

PT-2026-2403

Name of the Vulnerable Software and Affected Versions Cyclades Serial Console Server version 3.3.0 Description The Cyclades Serial Console Server has a local privilege escalation issue. The problem stems from overly permissive sudo privileges granted to the admin user and admin group. An attacker...

8.5CVSS6.7AI score0.00136EPSS
Exploits0References5
CVE
CVE
added 2025/11/19 6:44 p.m.17 views

CVE-2025-64759

CVE-2025-64759 affects Homarr before version 1.43.3, where a stored XSS flaw allows executing arbitrary JavaScript in a user’s browser via a malicious uploaded SVG. If an administrator views the page rendering or redirecting to the SVG, an attacker could add their account to the "credentials-admi...

8.1CVSS5.8AI score0.00278EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/11/19 6:44 p.m.12 views

CVE-2025-64759 Homarr is Vulnerable to Stored Cross-Site Scripting (XSS) and Possible Privilege Escalation via Malicious SVG Upload

Homarr is an open-source dashboard. Prior to version 1.43.3, stored XSS vulnerability exists, allowing the execution of arbitrary JavaScript in a user's browser, with minimal or no user interaction required, due to the rendering of a malicious uploaded SVG file. This could be abused to add an...

8.1CVSS0.00278EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-1221

Malware in sbrugna...

10CVSS6.4AI score0.0184EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-5906

Malware in sbrugna...

9.8CVSS9.5AI score0.01454EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-11564

Malware in sbrugna...

8.8CVSS9.2AI score0.02235EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-30290

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.01489EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52998

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00326EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2296

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00481EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-49310

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00522EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-50319

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00596EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-30746

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00376EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2016-2860

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The newEntry function in ptserver/ptprocs.c in OpenAFS before 1.6.17 allows remote authenticated users from foreign Kerberos realms to bypass intended access...

6.5CVSS6.9AI score0.01501EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-6477

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions...

6.7CVSS6.3AI score0.00525EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/28 3:40 p.m.12 views

CVE-2025-6250 Privilege Management for Windows - Elevation of Privilege

Prior to 25.4.270.0, when wmic.exe is elevated with a full admin token the user can stop the Defendpoint service, bypassing anti-tamper protections. Once the service is disabled, the malicious user can add themselves to Administrators group and run any process with elevated permissions...

7.1CVSS0.00158EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/18 12:0 a.m.4 views

MRCMS 安全漏洞

MRCMS is a content management system by the individual developers at marker. A security vulnerability exists in MRCMS version 3.1.2, which stems from mishandling of the component /admin/group/save.do, which could lead to a cross-site scripting attack...

4.8CVSS6AI score0.00188EPSS
Exploits1References4
OSV
OSV
added 2025/07/18 12:0 a.m.5 views

CVE-2025-50581

MRCMS v3.1.2 was discovered to contain a cross-site scripting XSS vulnerability via the component /admin/group/save.do...

4.8CVSS6.2AI score0.00188EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/23 10:29 a.m.8 views

CVE-2024-42604

Pligg CMS v2.0.2 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/admingroup.php?mode=deleteid=3...

8.8CVSS7.5AI score0.00279EPSS
Exploits1References1
Rows per page
Query Builder