Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-35542

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. The remote image blocking feature can be bypassed via a crafted background attribute of a...

5.3CVSS5.8AI score0.00402EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/04/03 5:16 a.m.4 views

CVE-2026-35542

An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. The remote image blocking feature can be bypassed via a crafted background attribute of a BODY element in an e-mail message. This may lead to information disclosure or access-control bypass...

5.3CVSS5.8AI score0.00402EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/04/03 3:54 a.m.4 views

CVE-2026-35542

An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. The remote image blocking feature can be bypassed via a crafted background attribute of a BODY element in an e-mail message. This may lead to information disclosure or access-control bypass...

5.3CVSS5.3AI score0.00402EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-1517

Malware in sbrugna...

5CVSS7.4AI score0.03397EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2022/11/08 9:35 a.m.4 views

httpd: mod_lua: Use of uninitialized value of in r:parsebody

A flaw was found in the modlua module of httpd. A crafted request body can cause a read to a random memory area due to an uninitialized value in functions called by the parsebody function. The highest threat from this vulnerability is to system availability...

7.5CVSS7.1AI score0.69803EPSS
Exploits0References5
PyPA
PyPA
added 2022/05/25 1:15 a.m.5 views

PYSEC-2022-203

DISPUTED Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below allows attackers to perform HTTP Request Smuggling using a crafted HTTP request with multiple requests included inside the body. NOTE: the vendor's position is that this behavior can only occur in unsupported...

9.8CVSS6.9AI score0.07663EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/02/03 4:59 p.m.14 views

Code injection

jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service abort via a crafted chunk-encoded body...

5CVSS6.9AI score0.03397EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder