Lucene search
K

484 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-2454

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.24. Difficult...

7CVSS6.8AI score0.00374EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/15 5:30 p.m.30 views

CVE-2025-23296

NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Python component where an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS7.6AI score0.00568EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-21869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.31 and prior. Easily exploitable...

5.5CVSS6.2AI score0.00796EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.10 views

PT-2025-32339 · Unknown · Com.Huuge.Game.Zjbox +1

Name of the Vulnerable Software and Affected Versions: Huuge Box version 1.0.3 Description: A vulnerability exists in the Huuge Box App for Android. The issue involves the improper export of Android application components due to manipulation of an unknown part of the AndroidManifest.xml file with...

5.3CVSS5AI score0.00211EPSS
Exploits1References10
BDU FSTEC
BDU FSTEC
added 2025/07/18 12:0 a.m.7 views

The vulnerability of the InnoDB component of the MySQL Database Server, which allows a hacker to cause a service failure

The vulnerability of the InnoDB component in the MySQL Database Management System is related to an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

6.8CVSS7.1AI score0.00559EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/07/03 9:1 p.m.135 views

CVE-2025-49005

Next.js CVE-2025-49005 affects Next.js App Router (versions 15.3.0 to before 15.3.3) and Vercel CLI (41.4.1 to 42.2.0). A cache poisoning vulnerability could cause HTML requests to return a React Server Component payload under certain conditions. When deployed on Vercel, impact is limited to the ...

3.7CVSS6.3AI score0.00403EPSS
Exploits1References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.9 views

The vulnerability of the cet.c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the cet.c component in the Linux operating system’s kernel is related to the lack of data security mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00219EPSS
Exploits0References9Affected Software3
Cvelist
Cvelist
added 2025/06/02 3:52 p.m.14 views

CVE-2025-48940 MyBB's upgrade component vulnerable to local file inclusion

MyBB is free and open source forum software. Prior to version 1.8.39, the upgrade component does not validate user input properly, which allows attackers to perform local file inclusion LFI via a specially crafted parameter value. In order to exploit the vulnerability, the installer must be...

7.2CVSS0.00469EPSS
Exploits0References3
NVD
NVD
added 2025/06/01 1:15 p.m.11 views

CVE-2025-5401

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /post.php of the component GET Parameter Handler. The manipulation of the argument pid leads...

9.8CVSS0.00476EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/05/30 6:13 a.m.14 views

CVE-2025-48492 GetSimple CMS RCE in Edit component

GetSimple CMS is a content management system. In versions starting from 3.3.16 to 3.3.21, an authenticated user with access to the Edit component can inject arbitrary PHP into a component file and execute it via a crafted query string, resulting in Remote Code Execution RCE. This issue is set to ...

8.6CVSS0.00764EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:59 a.m.7 views

CVE-2025-22996

A stored cross-site scripting XSS vulnerability in the spftablecontent component of Linksys E5600 Router Ver. 1.1.0.26 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the desc parameter...

4.8CVSS5.5AI score0.00277EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:23 a.m.11 views

CVE-2024-40544

PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery SSRF via the component /admin/maintenancesysTask/edit...

8.8CVSS7.4AI score0.00458EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 10:18 a.m.8 views

CVE-2024-22638

liveSite v2019.1 was discovered to contain a remote code execution RCE vulenrabiity via the component /livesite/editdesignerregion.php or /livesite/addemailcampaign.php...

9.8CVSS8.4AI score0.01645EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:45 a.m.6 views

CVE-2024-50716

SQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the id parameter in the /sendPushManually.php component...

9.8CVSS8.7AI score0.0086EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:11 p.m.4 views

CVE-2022-36748

PicUploader v2.6.3 was discovered to contain a cross-site scripting XSS vulnerability via the component /master/index.php...

6.1CVSS6.2AI score0.00381EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:47 p.m.11 views

CVE-2022-29792

The chip component has a vulnerability of disclosing CPU SNs.Successful exploitation of this vulnerability may affect data confidentiality...

7.5CVSS6.9AI score0.00634EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.8 views

CVE-2022-29017

Bento4 v1.6.0.0 was discovered to contain a segmentation fault via the component /x8664/multiarch/strlen-avx2.S...

5.5CVSS7.3AI score0.00587EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:38 p.m.6 views

CVE-2022-28008

Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\attendancedelete.php...

8.8CVSS8.3AI score0.01095EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:37 p.m.10 views

CVE-2021-25445

Unprotected component vulnerability in Samsung Internet prior to version 14.2 allows untrusted application to access internal files in Samsung Internet...

5.3CVSS6.9AI score0.00752EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:10 p.m.9 views

CVE-2021-27343

SerenityOS Unspecified is affected by: Buffer Overflow. The impact is: obtain sensitive information context-dependent. The component is: /Userland/Libraries/LibCrypto/ASN1/DER.h Crypto::derdecodesequence function. The attack vector is: Parsing RSA Key ASN.1...

7.5CVSS6.6AI score0.01673EPSS
Exploits0References1
Rows per page
Query Builder