Lucene search
+L

246 matches found

OSV
OSV
added 2026/02/25 3:44 a.m.9 views

CVE-2026-27639 Mercator vulnerable to stored XSS via unescaped Blade directives in display templates

Mercator is an open source web application designed to enable mapping of information systems. A stored Cross-Site Scripting XSS vulnerability exists in Mercator prior to version 2026.02.22 due to the use of unescaped Blade directives !! !! in display templates. An authenticated user with the User...

8.5CVSS5.7AI score0.00279EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.12 views

Mercator 跨站脚本漏洞

Mercator is an ecosystem visualization software developed by Didier Barzin. Versions of Mercator before 2026.02.22 contained a cross-site scripting vulnerability. This vulnerability stemmed from the use of unescaped Blade directives in the display templates, which could lead to storage-based...

8.5CVSS5.6AI score0.00279EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/07 9:32 a.m.10 views

CVE-2019-16110

The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream...

8.1CVSS8.1AI score0.01691EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/12/09 9:35 a.m.7 views

STAC6565 Targets Canada in 80% of Attacks as Gold Blade Deploys QWCrypt Ransomware

Canadian organizations have emerged as the focus of a targeted cyber campaign orchestrated by a threat activity cluster known as STAC6565. Cybersecurity company Sophos said it investigated almost 40 intrusions linked to the threat actor between February 2024 and August 2025. The campaign is...

6.7AI score
Exploits0
OSV
OSV
added 2025/10/16 8:28 p.m.4 views

GHSA-527Q-4WQV-G9WJ bagisto has Server Side Template Injection (SSTI) in Product Description

Summary Bagisto v2.3.7 is vulnerable to Server-Side Template Injection SSTI due to unsanitized user input being processed by the server-side templating engine when rendering product descriptions. This allows an attacker with product creation privileges to inject arbitrary template expressions tha...

5.1CVSS8.1AI score0.00377EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/10/16 4:1 p.m.5 views

CVE-2025-61990

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS6.8AI score0.00324EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/15 6:31 p.m.6 views

EUVD-2025-34671

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS6.3AI score0.00324EPSS
Exploits0References2
OSV
OSV
added 2025/10/15 4:15 p.m.4 views

CVE-2025-61990

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/15 3:19 p.m.3 views

CVE-2025-61990 TMM vulnerability

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS6.4AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/15 3:19 p.m.9 views

CVE-2025-61990 TMM vulnerability

When using a multi-bladed platform with more than one blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00324EPSS
Exploits0References1
CVE
CVE
added 2025/10/15 3:19 p.m.34 views

CVE-2025-61990

CVE-2025-61990 affects F5 BIG-IP Traffic Management Microkernel (TMM) on multi-bladed platforms. An undisclosed traffic pattern can cause TMM to terminate, producing a DoS as the TMM restarts. Affected products include BIG-IP (various modules) and BIG-IP Next branches (SPK/CNF/Kubernetes) with vu...

8.7CVSS6.4AI score0.00324EPSS
Exploits0References1Affected Software21
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.3 views

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000156912)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156912 advisory. When using a multi-bladed platform with more than one active blade, undisclosed traffic can...

8.7CVSS5.6AI score0.00324EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2015-4302

Malware in sbrugna...

7.2CVSS6.4AI score0.00439EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0071

Malware in sbrugna...

7.5CVSS6.4AI score0.03421EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-3361

Malware in sbrugna...

5CVSS6.3AI score0.02584EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-7838

Malware in sbrugna...

6.8CVSS6.4AI score0.00347EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2015-4288

Malware in sbrugna...

4.9CVSS6.4AI score0.00415EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-28265

Malware in sbrugna...

9CVSS9AI score0.01143EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-2455

Malware in sbrugna...

6.1CVSS6.1AI score0.00799EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-17849

Malware in sbrugna...

9.8CVSS9.5AI score0.01191EPSS
Exploits0References2
Rows per page
Query Builder