Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/05/29 12:0 a.m.11 views

SillyTavern 安全漏洞

SillyTavern is a frontend interface for the SillyTavern open-source language model. Versions of SillyTavern prior to 1.18.0 contained security vulnerabilities. These vulnerabilities stemmed from automatic login using the Remote-User and X-Authentik-Username HTTP headers, without verifying whether...

9.8CVSS5.8AI score0.00218EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:53 a.m.35 views

CVE-2022-33139

A vulnerability has been identified in Cerberus DMS All versions, Desigo CC All versions, Desigo CC Compact All versions, SIMATIC WinCC OA V3.16 All versions in default configuration, SIMATIC WinCC OA V3.17 All versions in non-default configuration, SIMATIC WinCC OA V3.18 All versions in...

9.8CVSS7AI score0.01166EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 9:15 p.m.5 views

CVE-2025-43798

Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92 and 7.3 GA through update 35 allows a time-based one-time password TOTP to be used multiple times during the validity period, which allows attackers with access to a user’s TOTP to authenticate as the user...

6.5CVSS5.8AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2025/06/01 11:39 a.m.54 views

CVE-2025-33005

CVE-2025-33005 affects IBM Planning Analytics Local (2.0 and 2.1). The root cause is failure to invalidate a user session after logout, which could allow an authenticated user to impersonate another user. The public documents consistently describe this as a session-expiration issue leading to imp...

8.8CVSS6.2AI score0.00212EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/06/20 12:0 a.m.10 views

IBM Curam Social Program Management 代码问题漏洞

IBM Curam Social Program Management is an IBM business and technology solution that provides pre-built health and social program components, business processes, toolsets and interfaces on top of a dynamically configurable architecture. The vulnerability stems from the failure of the program to...

9.8CVSS5.6AI score0.00408EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/06/15 7:15 p.m.3 views

CVE-2022-32550

An issue was discovered in AgileBits 1Password, involving the method various 1Password apps and integrations used to create connections to the 1Password service. In specific circumstances, this issue allowed a malicious server to convince a 1Password app or integration it is communicating with th...

5.8CVSS5.8AI score0.00483EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2018/10/31 8:0 p.m.26 views

CVE-2016-2125

It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users...

6.5CVSS6.9AI score0.09199EPSS
Exploits0
OSV
OSV
added 2018/03/08 4:29 p.m.3 views

CVE-2018-1443

An XML parsing vulnerability affects IBM SAML-based single sign-on SSO systems IBM Security Access Manager 9.0.0 - 9.0.4 and IBM Tivoli Federated Identity Manager 6.2 - 6.0.2. This vulnerability can allow an attacker with authenticated access to trick SAML systems into authenticating as a differe...

5.9CVSS5.8AI score
Exploits0References6
OSV
OSV
added 2016/01/29 8:59 p.m.1 views

DEBIAN-CVE-2016-0755

The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-authenticated proxy connections, which might allow remote attackers to authenticate as other users via a request, a similar issue to CVE-2014-0015...

7.3CVSS7AI score0.09327EPSS
Exploits0References1
Prion
Prion
added 2012/11/08 11:46 a.m.12 views

Authentication flaw

MosP kintai kanri before 4.1.0 does not properly perform authentication, which allows remote authenticated users to impersonate arbitrary user accounts, and consequently obtain sensitive information or modify settings, via unspecified vectors...

5.5CVSS6.5AI score0.01139EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder