Lucene search
K

94 matches found

Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.6 views

PT-2025-34590 · Scada-Lts · Scada-Lts

Name of the Vulnerable Software and Affected Versions: Scada-LTS versions prior to 2.7.8.2 Description: A vulnerability was identified in Scada-LTS up to version 2.7.8.1. The affected element is an unknown function within the /pointHierarchySLTS file of the Folder Handler component. Manipulation ...

4.8CVSS3.6AI score0.0026EPSS
Exploits1References10
Debian CVE
Debian CVE
added 2025/08/24 1:2 p.m.5 views

CVE-2025-9389

A vulnerability was identified in vim 9.1.0000. Affected is the function memmoveavxunalignederms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack needs to be performed locally. The exploit is publicly available and might be used. Some users are not...

5.5CVSS4.4AI score0.00195EPSS
Exploits1
Cvelist
Cvelist
added 2025/08/23 6:2 a.m.11 views

CVE-2025-9357 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 langSwitchByBBS stack-based overflow

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function langSwitchByBBS of the file /goform/langSwitchByBBS. The manipulation of the argument langSelectionOnly leads to stack-bas...

9CVSS0.009EPSS
Exploits1References6
CVE
CVE
added 2025/08/21 2:2 p.m.23 views

CVE-2025-9302

PHPGurukul User Management System 1.0 is affected by a SQL injection in signup.php via the emailid parameter. The vulnerability allows remote exploitation with a publicly available exploit, as confirmed by multiple connected sources (CNVD/PT-2025-34224/CNNVD-like reports). Root cause: lack of val...

9.8CVSS7.7AI score0.00387EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/08/20 8:15 p.m.6 views

CVE-2025-9241

A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation causes csv injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited...

7.5CVSS6.9AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.6 views

PT-2025-34036 · Emlog Pro · Emlog Pro

Name of the Vulnerable Software and Affected Versions: Emlog Pro versions through 2.5.18 Description: A weakness has been identified that allows for unrestricted file upload. This issue affects the processing of the file /admin/media.php?action=upload&sid=0. Manipulation of the File argument can...

6.5CVSS6.2AI score0.00066EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-38561

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: kunit: Fix kthread reference There is a race condition when a kthread finishes after the...

7CVSS5.8AI score0.00227EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2017-15193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by...

7.8CVSS7.4AI score0.02655EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/17 12:0 a.m.6 views

PT-2024-8544

Name of the Vulnerable Software and Affected Versions needrestart versions prior to 3.8 Module::ScanDeps versions prior to 3.8 Description The needrestart utility, versions prior to 3.8, contains a flaw due to improper handling of the PYTHONPATH environment variable. This allows local attackers t...

7.8CVSS7.6AI score0.19924EPSS
Exploits16References70
Hacker One
Hacker One
added 2020/04/20 10:53 a.m.13 views

U.S. Dept Of Defense: PulseSSL VPN Site with Compromised Creds @ ████

Dear US DoD, Back in 2019, I had reported that a pulseSSL VPN server owned by US DoD can be compromised by a publicly available exploit. The report is████████. As a result, the userid and passwd db was also compromised. I found that at least 1 userid and password combination from that compromised...

0.3AI score
Exploits0
Cisco
Cisco
added 2014/12/22 5:24 p.m.36 views

Cisco Enterprise Content Delivery System Web Directory Traversal and Arbitrary File Access Vulnerability

A vulnerability in Cisco Enterprise Content Delivery System ECDS could allow an unauthenticated, remote attacker to conduct directory traversal attacks on a targeted system. The vulnerability is due to insufficient validation of user-supplied input by the affected software. An attacker could...

5CVSS6.5AI score0.02863EPSS
Exploits0References1
0day.today
0day.today
added 2008/10/16 12:0 a.m.33 views

CafeEngine Multiple Remote SQL Injection Vulnerabilities

Exploit for unknown platform in category web applications ======================================================== CafeEngine Multiple Remote SQL Injection Vulnerabilities ======================================================== | | | | | / / / / / // / / / / // || || |/ // // \ | | | | ^ / / / /...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2007/08/23 12:0 a.m.59 views

Olate Download 3.4.2~modules/core/uim.php~XSS

VISIT ORIGINAL ADVISORY FOR MORE DETAILES http://myimei.com/security/2007-08-22/olate-download-342modulescoreuimphpxss.html VISIT ORIGINAL ADVISORY FOR MORE DETAILES ——————-Summary—————- Software: Olate Download Sowtware's Web Site: http://www.olate.co.uk/ Versions: 3.4.2 Class: Remote Status:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2006/01/26 12:0 a.m.26 views

CheesyBlog-1.0.txt

New eVuln Advisory: CheesyBlog XSS Vulnerability http://evuln.com/vulns/49/summary.html --------------------Summary---------------- Software: CheesyBlog Sowtware's Web Site: http://cheesepizza.net/ Versions: 1.0 Critical Level: Harmless Type: Cross-Site Scripting Class: Remote Status: Unpatched...

7.4AI score
Exploits0
Rows per page
Query Builder