Lucene search
K

22 matches found

Nuclei
Nuclei
added 18 hours ago36 views

D-LINK DNS-320L,DNS-320LW and DNS-327L - Information Disclosure

A vulnerability has been found in D-Link DNS-320L, DNS-320LW and DNS-327L up to 20240403 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/info.cgi of the component HTTP GET Request Handler. id: CVE-2024-3274 info: name: D-LINK...

5.3CVSS5.7AI score0.33484EPSS
Exploits0References3
CVE
CVE
added 2026/05/24 11:15 a.m.21 views

CVE-2026-9378

Edimax BR-6675nD (firmware 1.12) is affected by CVE-2026-9378 due to a vulnerability in the POST Request Handler, specifically in formHwSet (/goform/formHwSet). The issue allows manipulation of arguments regDomain, ABandregDomain, nic0Addr, nic1Addr, wlanAddr, inicAddr to trigger command injectio...

6.5CVSS6.4AI score0.01171EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/07 1:32 p.m.3 views

CVE-2026-3661 Wavlink WL-NU516U1 adm.cgi ota_new_upgrade command injection

A flaw has been found in Wavlink WL-NU516U1 240425. This affects the function otanewupgrade of the file /cgi-bin/adm.cgi. This manipulation of the argument model causes command injection. It is possible to initiate the attack remotely. The exploit has been published and may be used. The vendor wa...

5.8CVSS5.6AI score0.10863EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/07/25 12:0 a.m.38 views

CVE-2025-30086

CNCF Harbor 2.13.x before 2.13.1 and 2.12.x before 2.12.4 allows information disclosure by administrators who can exploit an ORM Leak present in the /api/v2.0/users endpoint to leak users' password hash and salt values. The q URL parameter allows a user to filter users by any column, and filter...

0.00607EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/13 9:2 p.m.13 views

CVE-2025-20101

Out-of-bounds read for some IntelR Graphics Drivers may allow an authenticated user to potentially enable information disclosure or denial of service via local access...

8.4CVSS0.00142EPSS
Exploits0References1
CVE
CVE
added 2025/05/09 5:12 p.m.90 views

CVE-2025-1993

CVE-2025-1993 affects IBM App Connect Enterprise Certified Container DesignerAuthoring instances where flows are stored in a database protected by weaker than expected cryptographic algorithms, potentially exposed to a local user. IBM bulletin (CVE-2025-1993) details affected products/versions: A...

5.5CVSS6.5AI score0.00111EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2025/02/06 8:30 p.m.44 views

CVE-2024-56467

Affected product/versions: IBM EntireX 11.1. Vulnerability: Local users may obtain sensitive information when a detailed technical error message is returned. The issue corresponds to CWE-209 (Generation of Error Message Containing Sensitive Information). Impact (as per sources): Information discl...

3.3CVSS3.4AI score0.00136EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/03 9:1 p.m.22 views

CVE-2025-24899 Disclosure of Sensitive User Information via API in reNgine

reNgine is an automated reconnaissance framework for web applications. A vulnerability was discovered in reNgine, where an insider attacker with any role such as Auditor, Penetration Tester, or Sys Admin can extract sensitive information from other reNgine users. After running a scan and obtainin...

7.1CVSS0.00517EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/19 2:39 a.m.13 views

CVE-2024-45653 IBM Sterling Connect:Direct Web Services information disclosure

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could disclose sensitive IP address information to authenticated users in responses that could be used in further attacks against the system...

4.3CVSS0.00365EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:4 p.m.17 views

SUSE-SU-2025:0105-1 Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059167 fixes several issues. The following security issues were fixed: - CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. - CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637. -...

7.8CVSS7.1AI score0.00352EPSS
Exploits1References13
Circl
Circl
added 2025/01/14 5:29 p.m.13 views

CVE-2025-21294

creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-01-14 18:20:31+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpuivp6wu2r 2025-01-14 18:48:54+00:00| seen|...

8.1CVSS7.5AI score0.01165EPSS
Exploits0References7
Circl
Circl
added 2024/11/21 5:0 a.m.7 views

CVE-2024-11559

creationtimestamp| type| source ---|---|--- 2024-11-21 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1558/...

7.8CVSS6.9AI score0.00421EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/21 3:31 p.m.15 views

CVE-2023-52823

...

6.5AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/12/04 5:58 a.m.3 views

jclocksmiths.com Improper Access Control vulnerability OBB-3801894

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
OSV
OSV
added 2023/10/05 8:30 p.m.8 views

CVE-2023-5441 NULL Pointer Dereference in vim/vim

NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960...

6.2CVSS6.7AI score0.00431EPSS
Exploits1References7
Openbugbounty
Openbugbounty
added 2023/07/18 7:49 p.m.13 views

adoptapet.shelterbuddy.com.au Cross Site Scripting vulnerability OBB-3528861

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/10/24 12:47 p.m.5 views

old.physique-ens-cachan.educ.space Cross Site Scripting vulnerability OBB-1442269

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/10/23 10:38 a.m.35 views

aviationwannabes.com Cross Site Scripting vulnerability OBB-1438954

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.11 views

CVE-2015-4855

...

Exploits0
Openbugbounty
Openbugbounty
added 2016/02/18 7:43 p.m.31 views

newopenx.detik.com Open Redirect vulnerability

Vulnerable URL: http://newopenx.detik.com/delivery/ck.php?oaparams=2bannerid=22013zoneid=316cb=561259df5foadest=https://www.xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclose...

6.9AI score
Exploits0
Rows per page
Query Builder