Lucene search
K

294 matches found

Snyk
Snyk
added 2026/03/20 2:41 a.m.4 views

Directory Traversal

Overview org.springframework:spring-webmvc is a package that provides Model-View-Controller MVC architecture and ready components that can be used to develop flexible and loosely coupled web applications. Affected versions of this package are vulnerable to Directory Traversal via the Script View...

8.2CVSS6.4AI score0.00385EPSS
Exploits0References2
Schneier on Security
Schneier on Security
added 2026/02/27 10:4 p.m.9 views

Friday Squid Blogging: Squid Fishing in Peru

Peru has increased its squid catch limit. The article says "giant squid," but they can't possibly mean that. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...

6AI score
Exploits0
Patchstack
Patchstack
added 2026/02/03 7:59 a.m.8 views

WordPress Catch Popup plugin <= 1.4.4 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zakaria in WordPress Plugin Catch Popup versions = 1.4.4...

6.4CVSS5.3AI score0.00431EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2026/01/30 7:56 a.m.6 views

Sandbox Escape

vm2 is vulnerable to Sandbox Escape. The vulnerability is due to incomplete sanitization of Promise callbacks, where globalPromise.prototype.then and catch are not sanitized while localPromise is, this allowing attackers to bypass sandbox restrictions via async function return values and execute...

10CVSS6.2AI score0.01222EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/26 9:32 p.m.3 views

CVE-2026-22709

vm2 is an open source vm/sandbox for Node.js. In vm2 prior to version 3.10.2, Promise.prototype.then Promise.prototype.catch callback sanitization can be bypassed. This allows attackers to escape the sandbox and run arbitrary code. In lib/setup-sandbox.js, the callback function of...

9.8CVSS5.9AI score0.01222EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/26 9:32 p.m.5 views

CVE-2026-22709 vm2 has a Sandbox Escape

vm2 is an open source vm/sandbox for Node.js. In vm2 prior to version 3.10.2, Promise.prototype.then Promise.prototype.catch callback sanitization can be bypassed. This allows attackers to escape the sandbox and run arbitrary code. In lib/setup-sandbox.js, the callback function of...

9.8CVSS5.9AI score0.01222EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/01/26 6:57 p.m.7 views

vm2 has a Sandbox Escape

In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch callback sanitization can be bypassed. This allows attackers to escape the sandbox and run arbitrary code. js const VM = require"vm2"; const code = const error = new Error; error.name = Symbol; const f = async = error.stack...

10CVSS6AI score0.01222EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/01/26 6:57 p.m.2 views

GHSA-99P7-6V5W-7XG8 vm2 has a Sandbox Escape

In vm2 for version 3.10.0, Promise.prototype.then Promise.prototype.catch callback sanitization can be bypassed. This allows attackers to escape the sandbox and run arbitrary code. js const VM = require"vm2"; const code = const error = new Error; error.name = Symbol; const f = async = error.stack...

9.8CVSS7.3AI score0.01222EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/01/26 12:0 a.m.5 views

PT-2026-4821

Name of the Vulnerable Software and Affected Versions vm2 versions prior to 3.10.2 Description vm2 is a Node.js library used to create sandboxed environments for executing untrusted code. A flaw exists in versions prior to 3.10.2 where the sanitization of Promise.prototype.then and...

10CVSS9AI score0.01222EPSS
Exploits1References58
RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.12 views

CVE-2022-0440

The Catch Themes Demo Import WordPress plugin before 2.1.1 does not validate one of the file to be imported, which could allow high privivilege admin to upload an arbitrary PHP file and gain RCE even in the case of an hardened blog ie DISALLOWUNFILTEREDHTML, DISALLOWFILEEDIT and DISALLOWFILEMODS...

7.2CVSS7.1AI score0.0142EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.5 views

CVE-2023-25961

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Catch Themes Darcie theme = 1.1.5 versions...

7.1CVSS5.8AI score0.00382EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.6 views

CVE-2025-23619

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Catch Themes Catch Duplicate Switcher catch-duplicate-switcher allows Reflected XSS.This issue affects Catch Duplicate Switcher: from n/a through = 2.0...

7.1CVSS5.9AI score0.00363EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.7 views

CVE-2025-1406

The Newpost Catch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's npc shortcode in all versions up to, and including, 1.3.19 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attacker...

6.4CVSS5.8AI score0.00278EPSS
Exploits0References1
NVD
NVD
added 2026/01/06 9:15 a.m.3 views

CVE-2025-13964

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the catchlpajax function in all versions up to, and including, 4.3.2. This makes it possible for unauthenticated attackers to modify course contents b...

5.3CVSS0.00232EPSS
Exploits0References3
CVE
CVE
added 2026/01/06 8:21 a.m.14 views

CVE-2025-13964

CVE-2025-13964 : LearnPress – WordPress LMS Plugin (LearnPress) is vulnerable to unauthorized modification of course data due to a missing capability check in catch_lp_ajax, affecting all versions up to 4.3.2. This allows unauthenticated attackers to add/remove/update/reorder sections and section...

5.3CVSS5AI score0.00232EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/06 8:21 a.m.26 views

CVE-2025-13964 LearnPress – WordPress LMS Plugin <= 4.3.2 - Missing Authentication to Unauthenticated Course Modification

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the catchlpajax function in all versions up to, and including, 4.3.2. This makes it possible for unauthenticated attackers to modify course contents b...

5.3CVSS0.00232EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.5 views

PT-2026-1425

Name of the Vulnerable Software and Affected Versions LearnPress – WordPress LMS Plugin versions up to and including 4.3.2 Description The LearnPress – WordPress LMS Plugin for WordPress is susceptible to unauthorized data modification. This is due to a missing capability check within the catch l...

5.3CVSS5.9AI score0.00232EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/12/17 12:25 a.m.3 views

SUSE CVE-2025-68186

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not warn in ringbuffermapgetreader when reader catches up The function ringbuffermapgetreader is a bit more strict than the other get reader functions, and except for certain situations the rbgetreaderpage should...

5.5CVSS6.4AI score0.00166EPSS
Exploits0References7
EUVD
EUVD
added 2025/12/16 3:30 p.m.3 views

EUVD-2025-203710

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not warn in ringbuffermapgetreader when reader catches up The function ringbuffermapgetreader is a bit more strict than the other get reader functions, and except for certain situations the rbgetreaderpage should...

5.9AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2025/12/16 2:15 p.m.4 views

CVE-2025-68186

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not warn in ringbuffermapgetreader when reader catches up The function ringbuffermapgetreader is a bit more strict than the other get reader functions, and except for certain situations the rbgetreaderpage should...

0.00166EPSS
Exploits0References3
Rows per page
Query Builder