Lucene search
K

9 matches found

QT
QT
added 2025/06/30 12:0 a.m.19 views

Security advisory: Recently reported incomplete cleanup issue in Qt's Schannel handling can impact Qt

There is a "Incomplete Cleanup" problem in Qt’s Schannel handling when it is used to provide a server handling incoming TLS connections. This has been assigned the CVE id CVE-2025-6338. Affected versions: This issue affects only the Schannel functionality on Windows if it is turned on in Qt 5.15...

9.2CVSS6.2AI score0.00403EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 9:53 a.m.18 views

CVE-2024-7394

Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName. A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVSS v4.0 rank of 4.6 with vector...

4.8CVSS4.8AI score0.00412EPSS
Exploits0References1
NVD
NVD
added 2024/08/12 1:38 p.m.24 views

CVE-2024-4350

Concrete CMS versions 9.0.0 to 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in RSS Displayer when user input is stored and later embedded into responses. A rogue administrator could inject malicious code into fields due to insufficient input validation. The Concrete CMS security team gave...

5.1CVSS0.00464EPSS
Exploits0References4
OSV
OSV
added 2024/08/12 1:38 p.m.15 views

CVE-2024-4350

Concrete CMS versions 9.0.0 to 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in RSS Displayer when user input is stored and later embedded into responses. A rogue administrator could inject malicious code into fields due to insufficient input validation. The Concrete CMS security team gave...

4.8CVSS4.9AI score
Exploits0References4
Cvelist
Cvelist
added 2024/08/09 12:37 a.m.54 views

CVE-2024-4350 Concrete CMS version 9 below 9.3.3 and below 8.5.18 are vulnerable to Stored XSS in RSS Displayer

Concrete CMS versions 9.0.0 to 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in RSS Displayer when user input is stored and later embedded into responses. A rogue administrator could inject malicious code into fields due to insufficient input validation. The Concrete CMS security team gave...

5.1CVSS0.00464EPSS
Exploits0References4
OSV
OSV
added 2024/08/08 5:15 p.m.15 views

CVE-2024-7394

Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName. A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVSS v4.0 rank of 4.6 with vector...

4.8CVSS4.8AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/08/08 4:31 p.m.16 views

CVE-2024-7394 Concrete CMS version 9.0.0 through 9.3.2 and below 8.5.18 - Stored XSS in getAttributeSetName()

Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName. A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVSS v4.0 rank of 4.6 with vector...

4.6CVSS4.8AI score0.00412EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2024/05/15 11:38 a.m.15 views

(Cyber) Risk = Probability of Occurrence x Damage

Here's How to Enhance Your Cyber Resilience with CVSS In late 2023, the Common Vulnerability Scoring System CVSS v4.0 was unveiled, succeeding the eight-year-old CVSS v3.0, with the aim to enhance vulnerability assessment for both industry and the public. This latest version introduces additional...

7.8AI score
Exploits0
HackRead
HackRead
added 2023/11/02 5:59 p.m.27 views

CVSS v4.0 Released with New Supplemental Metrics, and OT/ICS/IoT Support

By Deeba Ahmed IN SUMMARY The non-profit collective Forum of Incident Response and Security Teams FIRST, has released the new version… This is a post from HackRead.com Read the original post: CVSS v4.0 Released with New Supplemental Metrics, and OT/ICS/IoT Support...

7.3AI score
Exploits0
Rows per page
Query Builder