Lucene search
K

11 matches found

CVE
CVE
added 2026/04/20 4:19 p.m.11 views

CVE-2026-40098

CVE-2026-40098 affects OpenMage LTS (Magento-based) prior to version 20.17.0. The shared wishlist add-to-cart endpoint improperly authorizes via a public sharing_code while loading the target wishlist item by a separate global wishlist_item_id, failing to verify ownership. This enables an attacke...

5.4CVSS5.8AI score0.00176EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.6 views

WWBN AVideo 授权问题漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 26.0 contained vulnerabilities related to authorization issues. These vulnerabilities stemmed from fixed session IDs and bypasses of session regeneration, which could lead ...

7.3CVSS5.8AI score0.00296EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.7 views

GFI MailEssentials AI 安全漏洞

GFI MailEssentials AI is an open-source anti-spam and data breach protection software developed by GFI in the United States. Versions of GFI MailEssentials AI prior to version 22.4 contained a security vulnerability. This vulnerability stemmed from a storage cross-site scripting vulnerability in...

5.4CVSS5.6AI score0.00173EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/17 12:0 a.m.5 views

AVideo 安全漏洞

AVideo is an open source broadcast network creation tool from World Wide Broadcast Network. A security vulnerability exists in AVideo versions prior to 20.0, which stems from a lack of ownership checking in the upload function that could cause an authenticated user to upload files to another user...

8.8CVSS6.5AI score0.00376EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/09 6:30 p.m.6 views

EUVD-2025-33366

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Juniper Networks Junos Space allows an attacker to inject script tags in the Generate Report page that, when visited by another user, enables the attacker to execute commands with the target's...

6.1CVSS6.5AI score0.00202EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/14 12:0 a.m.6 views

PT-2023-17292

Name of the Vulnerable Software and Affected Versions Eskom Water Metering Software versions prior to 23.04.06 Description The issue is related to an SQL Injection vulnerability, which allows for Command Line Execution through SQL Injection. This is due to the improper neutralization of special...

9.8CVSS7.4AI score0.00718EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:46 a.m.2 views

SUSE CVE-2012-2831

Use-after-free vulnerability in Google Chrome before 20.0.1132.43 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG references...

7.5CVSS9.6AI score0.01452EPSS
Exploits0References3
OSV
OSV
added 2022/12/06 12:15 a.m.5 views

CVE-2022-38336

An access control issue in MobaXterm before v22.1 allows attackers to make connections to the server via the SSH or SFTP protocols without authentication...

8.1CVSS5.8AI score0.00829EPSS
Exploits1References1
OSV
OSV
added 2022/06/29 9:0 p.m.4 views

UBUNTU-CVE-2022-2084

Sensitive data could be exposed in world readable logs of cloud-init before version 22.3 when schema failures are reported. This leak could include hashed passwords...

5.5CVSS6AI score0.00236EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2021/02/17 2:15 p.m.3 views

CVE-2020-24458

Incomplete cleanup in some IntelR PROSet/Wireless WiFi and Killer TM drivers before version 22.0 may allow a privileged user to potentially enable information disclosure and denial of service via adjacent access...

5.2CVSS5.6AI score0.00379EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/11 12:0 a.m.1 views

Intel PROSet/Wireless WiFi Software Elevation of Privilege Vulnerability

Intel Dual Band Wireless-AC 3160 and others are wireless network cards from Intel Corporation USA.Intel PROSet/Wireless WiFi Software is the set of software that runs on it. The software includes Wi-Fi drivers, wireless software extensions, and Wi-Fi connectivity utilities. A security vulnerabili...

7.8CVSS6.6AI score0.00277EPSS
Exploits0References1
Rows per page
Query Builder