Lucene search
K

9293 matches found

CNNVD
CNNVD
added 2025/08/26 12:0 a.m.1 views

WordPress plugin WordPress Automatic Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.7CVSS6.3AI score0.00175EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.4 views

PT-2025-34750 · WordPress · Wordpress Automatic Plugin

Name of the Vulnerable Software and Affected Versions: WordPress Automatic Plugin versions prior to 3.118.0 Description: The WordPress Automatic Plugin for WordPress is susceptible to Cross-Site Request Forgery due to missing or incorrect nonce validation in one of its functions. This allows...

4.7CVSS7AI score0.00175EPSS
Exploits0References7
OSV
OSV
added 2025/08/22 4:15 p.m.5 views

AZL-73638 CVE-2025-38665 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: can: netlink: canchangelink: fix NULL pointer deref of struct canpriv::dosetmode Andrei Lalaev reported a NULL pointer deref when a CAN device is restarted from Bus Off and the driver does not implement the struct...

5.5CVSS5.7AI score0.00136EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 4:2 p.m.44 views

CVE-2025-38665

CVE-2025-38665 (Linux kernel CAN): A NULL pointer dereference in netlink can_changelink() when restarting a CAN device, due to missing can_priv::do_set_mode callback. Two code paths call this callback: manual restart via can_changelink() and delayed automatic restart after bus off. The fix preven...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2025/08/22 4:2 p.m.7 views

CVE-2025-38665

In the Linux kernel, the following vulnerability has been resolved: can: netlink: canchangelink: fix NULL pointer deref of struct canpriv::dosetmode Andrei Lalaev reported a NULL pointer deref when a CAN device is restarted from Bus Off and the driver does not implement the struct...

5.5CVSS5.4AI score0.00136EPSS
Exploits0
Snyk
Snyk
added 2025/08/22 2:43 p.m.3 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in the IRC client process when handling crafted numeric replies from an IRC server. An attacker can execute arbitrary code by sending a specially crafted 001 message during the automatic IRC connection proces...

9.8CVSS7.7AI score0.00809EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/08/22 2:7 p.m.5 views

CVE-2009-10006

UFO: Alien Invasion versions up to and including 2.2.1 contain a buffer overflow vulnerability in its built-in IRC client component. When the client connects to an IRC server and receives a crafted numeric reply specifically a 001 message, the application fails to properly validate the length of...

9.3CVSS6.4AI score0.00809EPSS
Exploits0References5
CVE
CVE
added 2025/08/22 2:7 p.m.14 views

CVE-2009-10006

UFO: Alien Invasion (versions up to and including 2.2.1) contains a stack-based buffer overflow in the built-in IRC client component. When the client processes a crafted IRC 001 numeric reply during automatic IRC connection handling, the string length validation can overflow the stack, potentiall...

9.3CVSS7.6AI score0.00809EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/08/22 9:32 a.m.10 views

CVE-2025-57729

In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start...

7.3CVSS7.2AI score0.00118EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.6 views

PT-2025-34366 · Unknown · Ufo: Alien Invasion

Name of the Vulnerable Software and Affected Versions: UFO: Alien Invasion versions up to and including 2.2.1 Description: UFO: Alien Invasion versions up to and including 2.2.1 contain a buffer overflow in its built-in IRC client component. When the client connects to an IRC server and receives ...

9.3CVSS7.3AI score0.00809EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.3 views

Fedora 44 : docker-buildx (2025-d6e22cfe3d)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d6e22cfe3d advisory. Automatic update for docker-buildx-0.27.0-1.fc44. Changelog Wed Aug 20 2025 Bradley G Smith - 0.27.0-1 - Update to release v0.27.0 - Resolves: rhvz2388453,...

5.6AI score
Exploits0References1
Malwarebytes
Malwarebytes
added 2025/08/21 12:4 p.m.6 views

All Apple users should update after company patches zero-day vulnerability in all platforms

Apple has released security updates for iPhones, iPads and Macs to fix a zero-day vulnerability a vulnerability which Apple was previously unaware of that is reportedly being used in targeted attacks. The updates cover: iOS 18.6.2 and iPadOS 18.6.2 iPhone XS and later, iPad Pro 13-inch, iPad Pro...

8.8CVSS7.1AI score0.19972EPSS
Exploits9
Vulnrichment
Vulnrichment
added 2025/08/21 12:0 a.m.3 views

CVE-2024-45438

An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent emai...

7.1AI score0.00529EPSS
Exploits0References4
NVD
NVD
added 2025/08/20 10:15 a.m.16 views

CVE-2025-57729

In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start...

7.3CVSS0.00118EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/20 9:13 a.m.14 views

CVE-2025-57729

In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start...

6.5CVSS0.00118EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/08/20 9:13 a.m.2 views

CVE-2025-57729

In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start...

7.3CVSS5.8AI score0.00118EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 9:13 a.m.4 views

CVE-2025-57729

In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start...

6.5CVSS7.1AI score0.00118EPSS
Exploits0References1
CVE
CVE
added 2025/08/20 9:13 a.m.25 views

CVE-2025-57729

CVE-2025-57729 affects JetBrains IntelliJ IDEA prior to 2025.2, where an automated LSP server startup can trigger an unexpected plugin startup. Multiple connected sources (CNVD, Red Hat, OSV, PT-Security, etc.) corroborate the issue and describe the root cause as the automatic LSP server initiali...

7.3CVSS7.1AI score0.00118EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.8 views

PT-2025-34030 · Jetbrains · Intellij Idea

Name of the Vulnerable Software and Affected Versions: JetBrains IntelliJ IDEA versions prior to 2025.2 Description: Unexpected plugin startup was possible due to automatic LSP server start. Recommendations: Update JetBrains IntelliJ IDEA to version 2025.2 or later...

7.3CVSS6.4AI score0.00118EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2025/08/19 11:50 a.m.454 views

Exploit for CVE-2025-8723

⚡️ Cloudflare Image Resizing Description: The plugin'...

9.8CVSS8.2AI score0.14009EPSS
Exploits1
Rows per page
Query Builder