Lucene search
K

136 matches found

Vulnrichment
Vulnrichment
added 2026/04/08 6:17 p.m.2 views

CVE-2026-34724 Zammad has a server-side template injection leading to RCE via AI Agent

Zammad is a web based open source helpdesk/customer support system. Prior to 7.0.1, a server-side template injection vulnerability which leads to RCE via AI Agent exists. Impact is limited to environments where an attacker can control or influence typeenrichmentdata typically high-privilege...

8.7CVSS5.9AI score0.00262EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/07 8:17 p.m.3 views

Cross-site Scripting (XSS)

Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS in the rendering of Mustache navigation templates when user-controlled values are interpolated into the href attribute without proper URL scheme validation. An attacker can execute arbitrary JavaScript in the...

4.8CVSS5.7AI score0.00176EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/04/07 8:17 p.m.6 views

Emissary has Stored XSS via Navigation Template Link Injection

Summary Mustache navigation templates interpolated configuration-controlled link values directly into href attributes without URL scheme validation. An administrator who could modify the navItems configuration could inject javascript: URIs, enabling stored cross-site scripting XSS against other...

4.8CVSS5.9AI score0.00176EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.23 views

Emissary 跨站脚本漏洞

Emissary is a distributed P2P data-driven workflow framework developed by the National Security Agency. Versions of Emissary prior to 8.39.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from the Mustache navigation template directly inserting configured link values...

4.8CVSS5.7AI score0.00176EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/31 8:39 p.m.3 views

CVE-2026-34394

WWBN AVideo is an open source video platform. In versions 26.0 and prior, AVideo's admin plugin configuration endpoint admin/save.json.php lacks any CSRF token validation. There is no call to isGlobalTokenValid or verifyToken before processing the request. Combined with the application's explicit...

8.1CVSS6AI score0.00233EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/21 3:26 a.m.6 views

CVE-2026-3335

The Canto plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.1.1 via the /wp-content/plugins/canto/includes/lib/copy-media.php file. This is due to the file being directly accessible without any authentication, authorization, or nonce checks, and t...

5.3CVSS5.9AI score0.00437EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/02/18 9:55 p.m.26 views

CVE-2019-25401 Bematech Printer MP-4200 TH Denial of Service

Bematech formerly Logic Controls, now Elgin MP-4200 TH printer contains a denial of service vulnerability in the admin configuration page. Remote attackers can send crafted POST requests with malformed 'admin' and 'person' parameters to crash the printer's web service, causing a denial of service...

8.7CVSS0.00422EPSS
Exploits0References4
CVE
CVE
added 2026/02/18 9:55 p.m.9 views

CVE-2019-25401

Bematech MP-4200 TH printer (formerly Logic Controls, now Elgin) has a denial-of-service vulnerability in the admin configuration page. Remote attackers can send crafted POST requests with malformed 'admin' and 'person' parameters to crash the web service, causing DoS. CVSS metrics are provided: ...

8.7CVSS5.6AI score0.00422EPSS
Exploits0References4
CVE
CVE
added 2026/02/18 9:55 p.m.15 views

CVE-2019-25356

CVE-2019-25356 affects Bematech MP-4200 TH printer (formerly Logic Controls, now Elgin). The admin configuration page is vulnerable to cross-site scripting via crafted POST requests with malformed 'admin' and 'person' parameters, allowing execution of arbitrary JavaScript in an authenticated user...

6.1CVSS5.5AI score0.00282EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/18 9:55 p.m.11 views

CVE-2019-25356

Bematech formerly Logic Controls, now Elgin MP-4200 TH printer contains a cross-site scripting vulnerability in the admin configuration page. Attackers can inject malicious scripts via crafted POST requests with malformed 'admin' and 'person' parameters, allowing execution of arbitrary JavaScript...

6.1CVSS5.9AI score0.00282EPSS
Exploits0References4
OSV
OSV
added 2026/01/26 6:16 p.m.5 views

CVE-2020-36956

Openfire 4.6.0 contains a stored cross-site scripting vulnerability in the nodejs plugin that allows attackers to inject malicious scripts through the 'path' parameter. Attackers can craft a payload with script tags to execute arbitrary JavaScript in the context of administrative users viewing th...

6.4CVSS5.9AI score0.00253EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/01/21 1:4 a.m.13 views

AlchemyCMS: Authenticated Remote Code Execution (RCE) via eval injection in ResourcesHelper

Summary A vulnerability was discovered during a manual security audit of the AlchemyCMS source code. The application uses the Ruby eval function to dynamically execute a string provided by the resourcehandler.enginename attribute in Alchemy::ResourcesHelperresourceurlproxy. Details The...

9.9CVSS6.1AI score0.00426EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/29 5:54 a.m.14 views

CVE-2025-66203

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution RCE vulnerability exists in the stream-vault application SpiritApplication. The application allows administrators to configure yt-dlp arguments via the /admin/api/saveConfig endpoint without...

9.9CVSS7.5AI score0.00671EPSS
Exploits1References1
Snyk
Snyk
added 2025/12/01 11:4 p.m.5 views

Uncaught Exception

Overview getgrav/grav is a Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS. Affected versions of this package are vulnerable to Uncaught Exception via improper validation of the Supported parameter in the admin configuration panel. An attacker can cause the application ...

6.9CVSS6.9AI score0.00337EPSS
Exploits1References2
OSV
OSV
added 2025/12/01 9:43 p.m.6 views

CVE-2025-66305 Grav vulnerable to Denial of Service via Improper Input Handling in 'Supported' Parameter

Grav is a file-based Web platform. Prior to 1.8.0-beta.27, a Denial of Service DoS vulnerability was identified in the "Languages" submenu of the Grav admin configuration panel /admin/config/system. Specifically, the Supported parameter fails to properly validate user input. If a malformed value ...

6.9CVSS6.1AI score0.00337EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/12/01 12:0 a.m.6 views

PT-2025-48564

Grav is a file-based Web platform. Prior to 1.8.0-beta.27, a Denial of Service DoS vulnerability was identified in the "Languages" submenu of the Grav admin configuration panel /admin/config/system. Specifically, the Supported parameter fails to properly validate user input. If a malformed value ...

6.9CVSS6.1AI score0.00337EPSS
Exploits1References3
CVE
CVE
added 2025/11/18 12:0 a.m.16 views

CVE-2025-63225

The CVE-2025-63225 entry concerns Eurolab ELTS100_UBX (firmware ELTS100v1.UBX) with Broken Access Control due to missing authentication on critical administrative endpoints. The vulnerability allows remote attackers to directly access and modify sensitive system and network configurations, upload...

9.8CVSS7AI score0.00562EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/15 1:45 p.m.5 views

CVE-2025-7330

A cross-site request forgery security issue exists in the product and version listed. The vulnerability stems from missing CSRF checks on the impacted form. This allows for unintended configuration modification if an attacker can convince a logged in admin to visit a crafted link...

7CVSS6.5AI score0.00193EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 12:43 p.m.16 views

CVE-2025-7330

CVE-2025-7330 concerns a CSRF vulnerability in Rockwell Automation Comms-1783-NATR. The issue arises from missing CSRF checks on the impacted configuration form, enabling an attacker to coerce a logged-in administrator into performing unintended configuration changes via a crafted link. Connected...

7CVSS6.2AI score0.00193EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/10/14 12:43 p.m.6 views

CVE-2025-7330 Rockwell Automation 1783-NATR Cross-Site Request Forgery Vulnerability

A cross-site request forgery security issue exists in the product and version listed. The vulnerability stems from missing CSRF checks on the impacted form. This allows for unintended configuration modification if an attacker can convince a logged in admin to visit a crafted link...

7CVSS0.00193EPSS
Exploits0References1
Rows per page
Query Builder