Lucene search
K

544 matches found

Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.7 views

PT-2025-22664 · Unknown · Phpgurukul Medical Card Generation System

Name of the Vulnerable Software and Affected Versions: PHPGURUKUL Medical Card Generation System version 1.0 Description: The issue concerns stored cross-site scripting XSS vulnerabilities in the /mcgs/admin/contactus.php component. Attackers can execute arbitrary web scripts or HTML by injecting...

4.8CVSS5.3AI score0.00219EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 7:44 p.m.9 views

CVE-2021-32467

MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle the WPS Wi-Fi Protected Setup protocol. Affected Chipsets MT7603E, MT7610, MT7612, MT7613, MT7615, MT7620, MT7622, MT7628, MT7629, MT7915; Affected Software Versions 7.4.0.0; Out-of-bounds read...

8.2CVSS7.1AI score0.00981EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 a.m.9 views

CVE-2013-1844

Cross-site scripting XSS vulnerability in Piwik before 1.11 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.00931EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:38 a.m.8 views

CVE-2012-4551

Use-after-free vulnerability in libunity-webapps before 2.4.1 allows remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via a crafted web site, related to "certain hash tables."...

7.5CVSS8.1AI score0.0195EPSS
Exploits0References1
CVE
CVE
added 2025/05/21 10:31 p.m.57 views

CVE-2025-5059

The CVE-2025-5059 entry concerns Campcodes Online Shopping Portal 1.0. The vulnerability resides in the admin/edit-subcategory.php handler, where manipulating the arguments productimage1, productimage2, or productimage3 enables unrestricted file uploads. Exploitation is possible remotely, and mul...

7.2CVSS5AI score0.00369EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/21 12:0 a.m.6 views

PT-2025-22498 · Ubtech +1 · Freepass +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to an observable discrepancy, which may allow for information disclosure. No specific details about affected devices or real-world incidents are provided. Recommendation...

4.3CVSS6.2AI score0.0023EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/05/21 12:0 a.m.6 views

PT-2025-22324 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns a remote code execution problem. However, the provided information does not specify the details of the issue, such as the estimated number of potentially affected devices...

7.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.7 views

PT-2025-22036 · Unknown · 1000 Projects Daily College Class Work Report Book

Name of the Vulnerable Software and Affected Versions: 1000 Projects Daily College Class Work Report Book version 1.0 Description: A critical issue has been found in the software, affecting the processing of the file /admin info.php. The manipulation of the batch argument leads to SQL injection...

7.5CVSS7.6AI score0.0041EPSS
Exploits1References8
NVD
NVD
added 2025/05/16 4:15 p.m.14 views

CVE-2025-48134

Deserialization of Untrusted Data vulnerability in ShapedPlugin LLC WP Tabs wp-expand-tabs-free allows Object Injection.This issue affects WP Tabs: from n/a through = 2.2.12...

7.2CVSS0.00394EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/14 12:0 a.m.7 views

PT-2025-21152 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. No details about real-world incidents or technical aspects of the issue are provided. Recommendations: At the moment, there is no...

6.2AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/14 12:0 a.m.4 views

PT-2025-21138 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is being actively exploited. No further details are available about the nature of the issue or its potential impact. Recommendations: At the moment, there is no information about a...

6.6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/14 12:0 a.m.28 views

Microsoft Excel 2016 Multiple Vulnerabilities (KB5002717)

This host is missing an important security update according to Microsoft KB5002717 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.8CVSS7.2AI score0.00585EPSS
Exploits0References1
OSV
OSV
added 2025/05/13 9:38 p.m.17 views

GHSA-H4J7-5RXR-P4WC Microsoft.Build.Tasks.Core .NET Spoofing Vulnerability

Microsoft Security Advisory CVE-2025-26646: .NET Spoofing Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 9.0.xxx and .NET 8.0.xxx SDK. This advisory also provides guidance on what developers can do to update their...

8CVSS7.7AI score0.011EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.12 views

PT-2025-20892 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. No details are provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue wa...

6.3AI score
Exploits0References2
NVD
NVD
added 2025/05/07 3:16 p.m.12 views

CVE-2025-47684

Cross-Site Request Forgery CSRF vulnerability in Smaily Smaily for WP smaily-for-wp allows Cross Site Request Forgery.This issue affects Smaily for WP: from n/a through = 3.1.7...

5.4CVSS0.00124EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.5 views

PT-2025-20328 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A cross-site request forgery issue was reported, but the candidate was issued in error. All references and descriptions have been removed to prevent accidental usage. Recommendations: At the...

6.4AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.5 views

PT-2025-20199 · Unknown · Fernando Briano List Category Posts

Name of the Vulnerable Software and Affected Versions: Fernando Briano List category posts versions 0.90.3 and earlier Description: The issue is a Path Traversal vulnerability that allows PHP Local File Inclusion. This vulnerability enables an attacker to access and potentially execute local file...

7.5CVSS7.8AI score0.00626EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.6 views

PT-2025-20234 · Graylog · Graylog

Name of the Vulnerable Software and Affected Versions: Graylog versions prior to 6.0.14 Graylog versions prior to 6.1.10 Graylog versions prior to 6.2.0 Description: The issue allows an attacker to obtain user session cookies by submitting an HTML form as part of an Event Definition Remediation...

8CVSS6AI score0.00229EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/05/06 12:0 a.m.5 views

PT-2025-19999 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not explicitly mentioned. No details are provided about the estimated number of potentially affected devices worldwide or real-world incidents where th...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/06 12:0 a.m.4 views

PT-2025-20005 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. No details are provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue wa...

6.3AI score
Exploits0References3
Rows per page
Query Builder