Lucene search
K

19179 matches found

RedhatCVE
RedhatCVE
added 2025/11/17 5:3 a.m.3 views

CVE-2025-64329

A flaw was found in containerd. This vulnerability allows a user to exhaust memory on the host due to goroutine leaks via a bug in the CRI Container Runtime Interface Attach implementation...

6.9CVSS5AI score0.00151EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.5 views

PT-2025-47206

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A flaw exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0 that allows for SQL injection. The issue is located in an unknown...

7.5CVSS7.1AI score0.00339EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.4 views

itsourcecode Web-Based Internet Laboratory SQL注入漏洞

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /settings/controller.php. An attacker...

9.8CVSS7.8AI score0.00339EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.4 views

PT-2025-47208

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A SQL injection issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue is located in an unknown functionality of...

7.5CVSS7.2AI score0.00339EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.5 views

PT-2025-47201

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A flaw exists in itsourcecode Web-Based Internet Laboratory Management System 1.0 that allows for SQL injection. The issue is located in the file...

7.5CVSS7AI score0.00363EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.7 views

PT-2025-47191

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A security issue exists in itsourcecode Web-Based Internet Laboratory Management System version 1.0. The issue involves a SQL injection impacting an unknown...

7.5CVSS7.2AI score0.00339EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.5 views

PT-2025-47203

Name of the Vulnerable Software and Affected Versions itsourcecode Web-Based Internet Laboratory Management System version 1.0 Description A flaw exists in itsourcecode Web-Based Internet Laboratory Management System 1.0. The issue impacts an unknown function within the /user/controller.php file...

7.5CVSS6.8AI score0.00339EPSS
Exploits1References7
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.3 views

itsourcecode Web-Based Internet Laboratory SQL注入漏洞

Web-Based Internet Laboratory Management System is a web laboratory software. The Web-Based Internet Laboratory Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the file /course/controller.php. An attacker...

9.8CVSS7.9AI score0.00339EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.3 views

itsourcecode Web-Based Internet Laboratory SQL注入漏洞

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /enrollment/controller.php. An attacke...

9.8CVSS7.9AI score0.00363EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/11/15 6:32 p.m.4 views

CVE-2025-13209 bestfeng oa_git_free WorkflowPredefineController.java updateWriteBack xml external entity reference

A weakness has been identified in bestfeng oagitfree up to 9.5. This affects the function updateWriteBack of the file yimioa-oa9.5\server\c-flow\src\main\java\com\cloudweb\oa\controller\WorkflowPredefineController.java. This manipulation of the argument writeProp causes xml external entity...

6.5CVSS6.5AI score0.00255EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/11/15 12:0 a.m.3 views

oa_git_free 代码问题漏洞

bestfeng oagitfree line cloud process engine is an enterprise automation process platform from China Cloud OA bestfeng company. A code issue vulnerability exists in oagitfree 9.5 and earlier versions, which originates from the parameter in the file...

6.5CVSS6.6AI score0.00255EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/14 4:55 p.m.4 views

CVE-2025-13121

A security vulnerability has been detected in cameasy Liketea 1.0.0. Impacted is the function list of the file laravel/app/Http/Controllers/Front/StoreController.php of the component API Endpoint. Such manipulation of the argument lng/lat leads to sql injection. The attack may be performed from...

7.5CVSS6.9AI score0.00325EPSS
Exploits0References1
OSV
OSV
added 2025/11/14 12:38 p.m.3 views

OESA-2025-2658 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: spufs: fix a leak on spufsnewfile failure It's called from spufsfilldir, and caller of that will do spufsrmdir in case of failure. That does remove everything we...

5.5CVSS6.4AI score0.00241EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/11/14 12:24 a.m.2 views

SUSE CVE-2025-40157

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller When loading the i10nmedac driver on some Intel Granite Rapids servers, a call trace may appear as follows: UBSAN: shift-out-of-bounds in...

5.2CVSS6.5AI score0.00199EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2025/11/14 12:23 a.m.2 views

SUSE CVE-2025-40197

In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released...

5.5CVSS6.5AI score0.00171EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/11/13 11:8 p.m.4 views

CVE-2023-7329

Tinycontrol LAN Controller v3 LK3 firmware versions up to 1.58a hardware v3.8 contain a missing authentication vulnerability in the stm.cgi endpoint. A remote, unauthenticated attacker can send crafted requests to forcibly reboot the device or restore factory settings, leading to a denial of...

8.7CVSS6.8AI score0.00819EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/13 4:40 p.m.3 views

CVE-2025-40157

A flaw was found in the Linux kernel's i10nmedac driver. A local user with elevated privileges could trigger a denial of service when the driver is loaded on systems where a memory controller is disabled by the BIOS due to unpopulated memory modules DIMMs. This specific condition causes a...

4.4CVSS7.7AI score0.00199EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/13 4:32 p.m.12 views

CVE-2025-13121 cameasy Liketea API Endpoint StoreController.php list sql injection

A security vulnerability has been detected in cameasy Liketea 1.0.0. Impacted is the function list of the file laravel/app/Http/Controllers/Front/StoreController.php of the component API Endpoint. Such manipulation of the argument lng/lat leads to sql injection. The attack may be performed from...

7.5CVSS0.00325EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/13 4:32 p.m.2 views

EUVD-2025-175332

A security vulnerability has been detected in cameasy Liketea 1.0.0. Impacted is the function list of the file laravel/app/Http/Controllers/Front/StoreController.php of the component API Endpoint. Such manipulation of the argument lng/lat leads to sql injection. The attack may be performed from...

7.5CVSS7.1AI score0.00325EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/13 4:32 p.m.2 views

CVE-2025-13121 cameasy Liketea API Endpoint StoreController.php list sql injection

A security vulnerability has been detected in cameasy Liketea 1.0.0. Impacted is the function list of the file laravel/app/Http/Controllers/Front/StoreController.php of the component API Endpoint. Such manipulation of the argument lng/lat leads to sql injection. The attack may be performed from...

7.5CVSS7.2AI score0.00325EPSS
Exploits0References5
Rows per page
Query Builder