Lucene search
K

20285 matches found

Nuclei
Nuclei
added 8 hours ago33 views

WebsitePanel before v1.2.2.1 - Open Redirect

Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx id: CVE-2012-4032 info: name: WebsitePanel before v1.2.2.1 - Open Redirect author:...

5.8CVSS6.2AI score0.07304EPSS
Exploits1References5
Nuclei
Nuclei
added 8 hours ago32 views

MySQLDumper 1.24.4 - Directory Traversal

Multiple directory traversal vulnerabilities in MySQLDumper 1.24.4 allow remote attackers to read arbitrary files via a .. dot dot in the 1 language parameter to learn/cubemail/install.php or 2 f parameter learn/cubemail/filemanagement.php, or execute arbitrary local files via a .. dot dot in the...

4.3CVSS6.3AI score0.08465EPSS
Exploits1References5
Nuclei
Nuclei
added 8 hours ago35 views

WordPress Plugin Download Monitor < 3.3.5.9 - Cross-Site Scripting

A cross-site scripting vulnerability in the Download Monitor plugin before 3.3.5.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dlsearch parameter to the default URI. id: CVE-2012-4768 info: name: WordPress Plugin Download Monitor 3.3.5.9 - Cross-Site...

4.3CVSS6.2AI score0.10456EPSS
Exploits2References5
Nuclei
Nuclei
added 8 hours ago23 views

ManageEngine Firewall Analyzer 7.2 - Cross-Site Scripting

Multiple cross-site scripting vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the 1 subTab or 2 tab parameter to createAnomaly.do; 3 url, 4 subTab, or 5 tab parameter to mindex.do; 6 tab parameter to index2.do; or 7 port...

4.3CVSS6.2AI score0.07718EPSS
Exploits1References5
Nuclei
Nuclei
added 8 hours ago30 views

WordPress Integrator 1.32 - Cross-Site Scripting

A cross-site scripting vulnerability in wp-integrator.php in the WordPress Integrator module 1.32 for WordPress allows remote attackers to inject arbitrary web script or HTML via the redirectto parameter to wp-login.php. id: CVE-2012-5913 info: name: WordPress Integrator 1.32 - Cross-Site Scripti...

4.3CVSS6.2AI score0.08732EPSS
Exploits1References5
Nuclei
Nuclei
added 8 hours ago21 views

OpenEMR 4.1 - Local File Inclusion

Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the formname parameter to 1 contrib/acog/printform.php; or 2 loadform.php, 3 viewform.php, or 4 trendform.php in interface/patientfile/encounter. id:...

3.5CVSS6.2AI score0.11261EPSS
Exploits1References5
Nuclei
Nuclei
added 8 hours ago64 views

Apache Struts <2.3.1.1 - Remote Code Execution

Apache Struts before 2.3.1.1 is susceptible to remote code execution. When developer mode is used in the DebuggingInterceptor component, a remote attacker can execute arbitrary OGNL commands via unspecified vectors, which can allow for execution of malware, obtaining sensitive information,...

6.8CVSS7.4AI score0.74405EPSS
Exploits9References5
Tenable Nessus
Tenable Nessus
added 2026/07/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2012-0501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and...

5CVSS6.9AI score0.03588EPSS
Exploits1References2
Circl
Circl
added 2026/06/28 10:37 a.m.5 views

CVE-2012-3054

creationtimestamp| type| source ---|---|--- 2026-06-28 10:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpdrq76jfy2k...

9.3CVSS5.8AI score0.03911EPSS
Exploits0References1
Circl
Circl
added 2026/06/28 10:7 a.m.4 views

CVE-2012-3053

creationtimestamp| type| source ---|---|--- 2026-06-28 10:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpdq2kh6gq2x...

9.3CVSS5.8AI score0.03189EPSS
Exploits1References1
Nuclei
Nuclei
added 2026/06/16 7:13 a.m.75 views

PHP CGI v5.3.12/5.4.2 Remote Code Execution

sapi/cgi/cgimain.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script aka php-cgi, does not properly handle query strings that lack an = equals sign character, which allows remote attackers to execute arbitrary code by placing command-line options in the query string,...

9.8CVSS8AI score0.99998EPSS
Exploits42References5
OSV
OSV
added 2026/05/28 7:16 p.m.4 views

PYSEC-2026-603

An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federated user rescopes a token via POST /v3/auth/tokens, the handlescopedtoken function in the mapped...

8.1CVSS5.8AI score0.00249EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 7:16 a.m.11 views

Security Bulletin: IBM SPSS Modeler is affected by multiple vulnerabilities in xercesImpl

Summary IBM SPSS Modeler is affected by multiple vulnerabilities in xercesImpl CVE-2009-2625, CVE-2012-0881, CVE-2013-4002, CVE-2020-14338, CVE-2022-23437. This has been addressed in the remediation section. Vulnerability Details CVEID:CVE-2009-2625 DESCRIPTION: XMLScanner.java in Apache Xerces2...

7.8CVSS6.7AI score0.3038EPSS
Exploits2Affected Software1
Chainguard
Chainguard
added 2026/05/15 7:17 a.m.16 views

CVE-2012-1007 vulnerabilities

Vulnerabilities for packages: hadoop-fips...

4.3CVSS5.8AI score0.33937EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.8 views

RHCOS 6 : openshift-origin-node-util (RHSA-2013:0148)

The remote Red Hat Enterprise Linux CoreOS 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2013:0148 advisory. - openshift-origin-node-util: restorer.php pregmatch shell code injection CVE-2012-5646 - openshift-origin-node-util: restorer.php...

7.5CVSS6AI score0.02204EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.6 views

RHCOS 6 : openshift-console (RHSA-2012:1555)

The remote Red Hat Enterprise Linux CoreOS 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2012:1555 advisory. - openshift-console: CSRF attack CVE-2012-5622 Note that Nessus has not tested for this issue but has instead relied only on the application'...

6.8CVSS5.8AI score0.00664EPSS
Exploits0References4
Circl
Circl
added 2026/04/13 6:0 p.m.3 views

CVE-2012-1854

creationtimestamp| type| source ---|---|--- 2026-04-13 18:00:02+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/5bcfae49-c2a1-49d8-a588-65ac74882fb9 2026-04-13 18:07:38+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/6244769 2026-04-13...

7.8CVSS6AI score0.21028EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.6 views

MiracleLinux 3 : perl-DBD-Pg-1.49-4.AXS3 (AXSA:2012-693:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-693:01 advisory. An implementation of DBI for PostgreSQL for Perl. Security issues fixed with this release: CVE-2012-1151 No description available at the time of writing, plea...

5CVSS5.7AI score0.02744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 3 : bind-9.3.6-20.P1.2.0.1.AXS3 (AXSA:2012-779:03)

"The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-779:03 advisory. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names ...

7.8CVSS5.6AI score0.27383EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.9 views

MiracleLinux 3 : kvm-83-266.0.1.AXS3.1 (AXSA:2014-242:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-242:01 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines...

7.2CVSS7.8AI score0.01446EPSS
Exploits8References9
Rows per page
Query Builder