Lucene search
K

544 matches found

Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.12 views

PT-2025-19339 · Unknown · Phpgurukul Emergency Ambulance Hiring Portal

Name of the Vulnerable Software and Affected Versions: PHPGurukul Emergency Ambulance Hiring Portal version 1.0 Description: A critical issue has been discovered, affecting an unknown function of the file /admin/edit-ambulance.php. The manipulation of the dconnum argument leads to SQL injection...

9.8CVSS7.5AI score0.00428EPSS
Exploits1References13
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.6 views

PT-2025-18647 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer problem in the free mr init function has been resolved. The issue occurs in a concurrent scenario, resulting in a NULL pointer dereference at virtual address...

5.5CVSS5.1AI score0.0013EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.5 views

PT-2025-18310 · Anc · Anc

Name of the Vulnerable Software and Affected Versions: ANC software versions 1.1.4 and earlier Description: The issue allows an authenticated attacker to bypass the old password check in the password change form via a web HMI. Recommendations: For ANC software versions 1.1.4 and earlier, update t...

2.6CVSS6.2AI score0.00157EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.6 views

PT-2025-18255 · Unknown · Phpgurukul Curfew E-Pass Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Curfew e-Pass Management System version 1.0 Description: A critical issue affects the processing of the file /admin/edit-pass-detail.php. The manipulation of the editid argument leads to SQL injection. The attack may be initiated...

8.8CVSS6.8AI score0.00357EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2025/04/29 12:0 a.m.5 views

PT-2025-18227 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A rejected reason is mentioned, but no specific details about the issue are provided. No information is available about potentially affected devices or real-world incidents. Recommendations:...

6.5AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.8 views

PT-2025-17692 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A cross-site request forgery issue has been identified. No further details are available regarding the estimated number of potentially affected devices or real-world incidents...

6.4AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.6 views

PT-2025-17693 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not explicitly mentioned. There is no information about the estimated number of potentially affected devices worldwide or details about real-world...

6.3AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/24 12:0 a.m.9 views

PT-2025-17697 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A denial of service issue is reported. No further details are available. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/23 12:0 a.m.6 views

PT-2025-17624 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. There is no mention of the estimated number of potentially affected devices worldwide or details about real-world incidents where this...

6.3AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.4 views

PT-2025-17916

Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw was found in Moodle, specifically a remote code execution risk in the Moodle LMS Dropbox repository. This risk is only available to teachers and managers on sites with the Dropbox...

8.8CVSS7.8AI score0.00772EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2025/04/18 12:0 a.m.6 views

PT-2025-17329 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue has been disputed by the developer as a vulnerability. No further details are available due to the rejection of the candidate number. Recommendations: At the moment, there is no...

6.3AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.9 views

PT-2025-16518 · Unknown · Gurmehub Kargo Entegratör

Name of the Vulnerable Software and Affected Versions: Gurmehub Kargo Entegratör versions 1.1.14 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks...

7.6CVSS8.2AI score0.00388EPSS
Exploits0References3
Arista
Arista
added 2025/04/15 12:0 a.m.33 views

Security Advisory 0115

Security Advisory 0115 . CSAF PDF Date: April 15, 2025 Revision | Date | Changes ---|---|--- 1.0 | April 15, 2025 | Initial release The CVE-ID tracking this issue: CVE-2025-0505 CVSSv3.1 Base Score: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N Common Weakness Enumeration:CWE- CWE-269: Improp...

10CVSS6.2AI score0.00576EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/13 9:17 a.m.21 views

CVE-2025-32568

Deserialization of Untrusted Data vulnerability in empik EmpikPlace for Woocommerce empik-for-woocommerce allows Object Injection.This issue affects EmpikPlace for Woocommerce: from n/a through = 1.4.3...

9.8CVSS7.2AI score0.00785EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/11 12:0 a.m.7 views

PT-2025-16029 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: General information about the issue is not available. No details are provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue wa...

6.4AI score
Exploits0References3
OpenVAS
OpenVAS
added 2025/04/09 12:0 a.m.34 views

Microsoft OneNote Security Feature Bypass Vulnerability (KB5002622)

This host is missing an important security update according to Microsoft KB5002622. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS8.7AI score0.00783EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/04/09 12:0 a.m.36 views

Microsoft Excel 2016 Multiple Vulnerabilities (KB5002704)

This host is missing an important security update according to Microsoft KB5002704 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

7.8CVSS7.5AI score0.0211EPSS
Exploits4References1
OSV
OSV
added 2025/04/08 5:15 a.m.6 views

CVE-2025-3409

A vulnerability classified as critical has been found in Nothings stb up to f056911. This affects the function stbincludestring. The manipulation of the argument pathtoincludes leads to stack-based buffer overflow. It is possible to initiate the attack remotely. This product does not use...

8.8CVSS6.8AI score
Exploits0References3
NVD
NVD
added 2025/04/01 1:15 p.m.10 views

CVE-2025-3029

A crafted URL containing specific Unicode characters could have hidden the true origin of the page, resulting in a potential spoofing attack. This vulnerability was fixed in Firefox 137, Firefox ESR 128.9, Thunderbird 137, and Thunderbird 128.9...

7.3CVSS0.00325EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/03/30 12:38 p.m.10 views

CVE-2025-31438

Cross-Site Request Forgery CSRF vulnerability in Benoit De Boeck WP Supersized wp-supersized allows Cross Site Request Forgery.This issue affects WP Supersized: from n/a through = 3.1.6...

4.3CVSS7.2AI score0.00136EPSS
Exploits0References1
Rows per page
Query Builder