Lucene search
K

13007 matches found

Nuclei
Nuclei
added 13 hours ago62 views

ZKTeco BioTime <= 9.0.1 - Privilege Escalation

BioTime default employee credentials password 123456 allow login. Sessions are not role-validated, enabling privilege escalation to perform admin actions and enumerate backup files. id: CVE-2023-38952 info: name: ZKTeco BioTime = 9.0.1 - Privilege Escalation author: riteshs4hu severity: high...

9.8CVSS7AI score0.03197EPSS
Exploits2References3
Nuclei
Nuclei
added 13 hours ago57 views

Contest Gallery - Broken Access Control

Contest Gallery from n/a through 23.1.2 contains an exposure of sensitive information to an unauthorized actor caused by insufficient access controls, letting attackers access sensitive data, exploit requires no specific conditions. id: CVE-2024-43283 info: name: Contest Gallery - Broken Access...

7.5CVSS5.9AI score0.01104EPSS
Exploits0References2
Nuclei
Nuclei
added 13 hours ago37 views

Email Subscribers & Newsletters <= 5.3.1 - Authenticated SQL Injection

The Email Subscribers & Newsletters WordPress plugin before 5.3.2 does not correctly escape the order and orderby parameters to the ajaxfetchreportlist action, making it vulnerable to blind SQL injection attacks by users with roles as low as Subscriber. Further, it does not have any CSRF protecti...

8.8CVSS7.2AI score0.04184EPSS
Exploits3References2
Nuclei
Nuclei
added 13 hours ago50 views

Mail Mint < 1.19.5 - Unauthenticated Email Disclosure

Mail Mint WordPress plugin 1.19.5 contains an information disclosure vulnerability caused by lack of authorization in a REST API endpoint, letting unauthenticated users retrieve email addresses of blog users, exploit requires no authentication. id: CVE-2026-2025 info: name: Mail Mint 1.19.5 -...

7.5CVSS5.9AI score0.01379EPSS
Exploits0References3
Nuclei
Nuclei
added 13 hours ago30 views

RSVPMaker <= 9.2.5 - SQL Injection

The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to missing SQL escaping and parameterization on user supplied data passed to a SQL query in the rsvpmaker-util.php file. This makes it possible for unauthenticated attackers to steal sensitive information from t...

9.8CVSS7.1AI score0.07053EPSS
Exploits0References2
Nuclei
Nuclei
added 13 hours ago21 views

WP Directory Kit < 1.5.0 - Unauthenticated Email Exposure

WP Directory Kit plugin for WordPress = 1.4.9 contains a sensitive information exposure caused by improper access control in wdkpublicaction AJAX handler, letting unauthenticated attackers extract email addresses of users with Directory Kit-specific roles. id: CVE-2025-13920 info: name: WP...

5.3CVSS5.9AI score0.00669EPSS
Exploits0References3
NVD
NVD
added 16 hours ago7 views

CVE-2026-15134

A vulnerability was determined in CodeAstro Simple Online Leave Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /SimpleOnlineLeave/index.php. Executing a manipulation of the argument email can lead to sql injection. The attack may be performed from...

7.5CVSS
Exploits0References6
Nuclei
Nuclei
added yesterday89 views

Dolibarr Unauthenticated Contacts Database Theft

An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers to perform a database dump and access a company's entire customer file, prospects, suppliers, and employee information if a contact file exists. id: CVE-2023-33568 info: name: Dolibarr Unauthenticated Contacts Database Theft...

7.5CVSS7.1AI score0.1494EPSS
Exploits2References5
Nuclei
Nuclei
added 2 days ago62 views

Jenkins <=2.196 - Cookie Exposure

Jenkins through 2.196, LTS 2.176.3 and earlier prints the value of the cookie on the /whoAmI/ URL despite it being marked HttpOnly, thus making it possible to steal cookie-based authentication credentials if the URL is exposed or accessed via another cross-site scripting issue. id: CVE-2019-10405...

5.4CVSS5.9AI score0.65753EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 3 days ago5 views

Malicious code in env-axios (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d885afbe55405d7c329ba1537aae51888c8aa9145f34ab7fdca23ca0abc0a11 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.9AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 3 days ago3 views

The vulnerability of the ipv6_rpl_srh_rcv function in the RFC 6554 Source Routing Header Handler component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ipv6rplsrhrcv function in the RFC 6554 Source Routing Header Handler component of the Linux operating system is related to the execution of operations outside the buffer boundaries in memory. Exploitation of this vulnerability could allow a remote attacker to compromise t...

10CVSS6.3AI score0.00475EPSS
Exploits0References11Affected Software4
NVD
NVD
added 6 days ago6 views

CVE-2026-58296

Exposure of private personal information to an unauthorized actor in Microsoft Edge for Android allows an unauthorized attacker to disclose information over a network...

7.1CVSS0.00303EPSS
Exploits0References1
Cvelist
Cvelist
added last week33 views

CVE-2026-58580 LobeChat 2.2.9 - Broken Object-Level Authorization in Message Sub-Resource Writes

LobeChat through 2.2.9 server-database deployments are vulnerable to broken object-level authorization in MessageModel. The updateMessagePlugin, updatePluginState, updatePluginError, updateTTS and updateTranslate methods filter target rows by message id alone, omitting the userId scope that sibli...

6CVSS0.00154EPSS
Exploits0References2
NVD
NVD
added 2026/07/02 12:17 p.m.6 views

CVE-2026-57352

Unauthenticated Broken Authentication in ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce = 2.2.0 versions...

4.8CVSS0.0021EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/07/02 8:0 a.m.8 views

FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations

The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. "An operator tied to FortiBleed's infrastructure was found actively working...

9.8CVSS7.6AI score0.88505EPSS
Exploits8
CVE
CVE
added 2026/06/30 10:37 p.m.19 views

CVE-2026-13797

CVE-2026-13797 (Chromecast in Google Chrome) : The issue is caused by insufficient validation of untrusted input in Chromecast-related components of Chrome before version 150.0.7871.47. If an attacker could lure a user to load a crafted HTML page and compromised the renderer process, they could p...

9.6CVSS5.8AI score0.00293EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/30 7:55 p.m.15 views

CVE-2026-10140

CVE-2026-10140 affects Langflow OSS voice mode (versions 1.0.0–1.10.0). The issue is improper shared-state handling that enables reuse of API clients across tenant boundaries, allowing an authenticated attacker to manipulate cache state and cause requests from other users to be processed with inc...

9.6CVSS5.8AI score0.00201EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2026/06/26 10:16 p.m.15 views

CVE-2026-49984

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths for .. traversal before it converts Windows-style backslashes to forward slashes. An attacker can therefore smuggle a traversal sequence past...

7.7CVSS0.00386EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:55 p.m.8 views

CVE-2026-49984

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths for .. traversal before it converts Windows-style backslashes to forward slashes. An attacker can therefore smuggle a traversal sequence past...

7.7CVSS6AI score0.00386EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/06/26 8:55 p.m.19 views

CVE-2026-49984

CVE-2026-49984 – Kestra : A path traversal vulnerability in the LocalStorage backend allows any authenticated user who can view an execution to read arbitrary files on the server. Before patching, the LocalStorage path validator mishandles Windows-style backslashes, letting an attacker smuggle tr...

7.7CVSS6AI score0.00386EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder