Lucene search
K

24 matches found

Nuclei
Nuclei
added 15 hours ago20 views

bloofoxCMS v0.5.2.1 - SQL Injection

bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the tid parameter at admin/index.php?mode=settings&page=tmpl&action=edit. id: CVE-2023-34753 info: name: bloofoxCMS v0.5.2.1 - SQL Injection author: theamanrawat severity: critical description: | bloofox v0.5.2.1 was...

9.8CVSS7.3AI score0.04228EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 19 hours ago3 views

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.8 (7278572)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a vulnerability as referenced in the 7278572 advisory. - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the...

7.1CVSS5.9AI score
Exploits0References2
EUVD
EUVD
added yesterday5 views

EUVD-2026-40399

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the adminCenter-1.0 feature enabled...

7.1CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added yesterday23 views

CVE-2026-11546 IBM WebSphere Application Server Liberty is affected by a server-side request forgery vulnerability

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the adminCenter-1.0 feature enabled...

7.1CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-11546

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected by a server-side request forgery vulnerability with the adminCenter-1.0 feature enabled...

7.1CVSS5.8AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added yesterday3 views

Security Bulletin: IBM WebSphere Application Server Liberty is affected by a server-side request forgery vulnerability (CVE-2026-11546)

Summary IBM WebSphere Application Server Liberty is affected by a server-side request forgery vulnerability with the adminCenter-1.0 feature enabled. Vulnerability Details CVEID:CVE-2026-11546 DESCRIPTION: IBM WebSphere Application Server Liberty is affected by a server-side request forgery...

7.1CVSS5.7AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:41 p.m.10 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS8.5AI score0.02762EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 8:37 a.m.17 views

CVE-2025-12686

CVE-2025-12686 is a stack-based buffer overflow in Synology BeeStation OS and BeeStation Manager’s AdminCenter/auth_info component prior to version 1.3.2-65648. The flaw arises from a buffer copy without proper input size checking, enabling remote code execution with high impact. Public sources (...

9.8CVSS7.8AI score0.02762EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/27 8:37 a.m.32 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS0.02762EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 8:37 a.m.8 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.02762EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:37 a.m.10 views

CVE-2025-12686

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.02762EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/27 8:37 a.m.11 views

EUVD-2025-209957

Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in AdminCenter in Synology BeeStation Manager BSM before 1.3.2-65648 and Synology BeeStation OS before 1.3.2-65648 allows remote attackers to execute arbitrary code via unspecified vectors...

9.8CVSS7.8AI score0.02762EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/06 4:10 a.m.32 views

Security Bulletin: IBM WebSphere Application Server Liberty shipped with IBM Tivoli Netcool Impact is vulnerable to information disclosure when the adminCenter-1.0 feature has been enabled (CVE-2022-22393)

Summary IBM WebSphere Application Server Liberty is used by IBM Tivoli Netcool Impact as the application server host. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details CVEID:CVE-2022-22393...

6.5CVSS5AI score0.00678EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/09 2:50 a.m.32 views

Security Bulletin: Multiple vulnerabilities in WebSphere Liberty affect SPSS Collaboration and Deployment Services

Summary There are multiple vulnerabilities in WebSphere Liberty used by SPSS Collaboration and Deployment Services. These issues have been addressed. Vulnerability Details CVEID:CVE-2022-22475 DESCRIPTION: IBM WebSphere Application Server Liberty and Open Liberty 17.0.0.3 through 22.0.0.5 are...

7AI score0.00678EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/05/16 12:0 a.m.28 views

IBM WebSphere Application Server Liberty Information Disclosure Vulnerability (CNVD-2022-63368)

IBM WebSphere Application Server Liberty is a Java application server from IBM built on top of the Open Liberty project. IBM WebSphere Application Server Liberty is vulnerable to an information disclosure vulnerability that originates when The vulnerability stems from the fact that when...

6.5CVSS1.8AI score0.00678EPSS
Exploits0References1
OSV
OSV
added 2022/05/13 5:15 p.m.3 views

CVE-2022-22393

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue a request to obtain the status of HTTP/HTTPS ports which are accessible by the application server. IBM X-Force ID: 222078...

6.5CVSS7.2AI score0.00678EPSS
Exploits0References2
Prion
Prion
added 2022/05/13 5:15 p.m.15 views

Design/Logic Flaw

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue a request to obtain the status of HTTP/HTTPS ports which are accessible by the application server. IBM X-Force ID: 222078...

3.5CVSS6.2AI score0.00678EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/05/13 4:15 p.m.19 views

CVE-2022-22393

IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue a request to obtain the status of HTTP/HTTPS ports which are accessible by the application server. IBM X-Force ID: 222078...

3.1CVSS6.3AI score0.00678EPSS
Exploits0References2
CVE
CVE
added 2022/05/13 4:15 p.m.111 views

CVE-2022-22393

CVE-2022-22393 affects IBM WebSphere Application Server Liberty when adminCenter-1.0 is enabled; an authenticated user could query HTTP/HTTPS port status exposed by the server. Affected Liberty range is 17.0.0.3–22.0.0.5. IBM bulletins document the vulnerability details and state remediation is t...

6.5CVSS6.3AI score0.00678EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/12 2:43 p.m.23 views

Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to an Information Disclosure (CVE-2022-22393)

Summary IBM WebSphere Application Server Liberty is vulnerable to an information disclosure with the adminCenter-1.0 feature enabled. This has been addressed. Vulnerability Details CVEID: CVE-2022-22393 DESCRIPTION: IBM WebSphere Application Server Liberty, with the adminCenter-1.0 feature...

6.5CVSS0.5AI score0.00678EPSS
Exploits0Affected Software1
Rows per page
Query Builder