Lucene search
K

648507 matches found

RedHat Linux
RedHat Linux
added 1 hour ago2 views

nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers

A flaw was found in NGINX. When NGINX is configured to proxy HTTP/2 traffic using the ngxhttpproxyv2module or ngxhttpgrpcmodule with specific settings, a remote, unauthenticated attacker can send specially crafted large headers. This can trigger a heap-based buffer overflow, leading to a restart ...

9.2CVSS7.7AI score0.02838EPSS
Exploits1References5
GithubExploit
GithubExploit
added 1 hour ago4 views

windows7-eternalblue-lab

MS17-010 EternalBlue Exploitation Lab Hands-on penetration t...

9.3CVSS7.4AI score0.93307EPSS
Exploits47
OSV
OSV
added 2 hours ago0 views

DEBIAN-CVE-2026-56002

Bulletin has no description...

8.5CVSS
Exploits0References1
OSV
OSV
added 4 hours ago0 views

DEBIAN-CVE-2026-42505

Bulletin has no description...

Exploits0References1
OSV
OSV
added 4 hours ago0 views

DEBIAN-CVE-2026-39822

Bulletin has no description...

Exploits0References1
NVD
NVD
added 5 hours ago4 views

CVE-2026-14495

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 5 hours ago3 views

CVE-2026-14495

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS5.9AI score
Exploits0References6
CVE
CVE
added 5 hours ago9 views

CVE-2026-14495

CVE-2026-14495 affects DoLogin Security for WordPress up to version 4.3. The issue is an authentication bypass caused by insufficient randomness in the dologin token: the PRNG is seeded with mt_srand((double) microtime() * 1000000), discarding the integer-seconds and giving ~10^6 seeds (~20 bits ...

8.8CVSS5.9AI score
Exploits0References5
Cvelist
Cvelist
added 5 hours ago11 views

CVE-2026-14495 DoLogin Security <= 4.3 - Unauthenticated Authentication Bypass via Insufficient Randomness via 'dologin' Parameter Weak PRNG Token

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS
Exploits0References5
EUVD
EUVD
added 5 hours ago5 views

EUVD-2026-42167

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS5.9AI score
Exploits0References5
OSV
OSV
added 6 hours ago0 views

DEBIAN-CVE-2026-55645

Bulletin has no description...

5.9AI score
Exploits0References1
OSV
OSV
added 6 hours ago0 views

DEBIAN-CVE-2026-42218

Bulletin has no description...

Exploits0References1
OSV
OSV
added 6 hours ago0 views

DEBIAN-CVE-2026-44178

Bulletin has no description...

Exploits0References1
OSV
OSV
added 6 hours ago0 views

DEBIAN-CVE-2026-41252

Bulletin has no description...

Exploits0References1
GithubExploit
GithubExploit
added 7 hours ago23 views

Exploit for Unrestricted Upload of File with Dangerous Type in Joomlack Page_Builder_Ck

CVE-2026-56290 - Compagebuilderck Mass Exploit ⚠️ Disclai...

10CVSS6.1AI score0.00356EPSS
Exploits3
OSV
OSV
added 10 hours ago0 views

DEBIAN-CVE-2026-60001

sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay...

6.5CVSS
Exploits0References1
OSV
OSV
added 10 hours ago0 views

DEBIAN-CVE-2026-59997

internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...

4.2CVSS6AI score
Exploits0References1
OSV
OSV
added 10 hours ago0 views

DEBIAN-CVE-2026-59996

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations...

4.2CVSS
Exploits0References1
Fedora
Fedora
added 10 hours ago3 views

[SECURITY] Fedora 43 Update: python-rignore-0.7.6-7.fc43

rignore is a Python module that provides a high-performance, Rust-powered file system traversal functionality. It wraps the Rust ignore crate using PyO3, offering an efficient way to walk through directories while respecting various ignore rules...

6AI score
Exploits0
Fedora
Fedora
added 10 hours ago3 views

[SECURITY] Fedora 43 Update: python-fastar-0.11.0-7.fc43

The fastar library wraps the Rust tar, flate2, and zstd crates, providing a high-performance way to work with compressed and uncompressed tar archives in Python...

6AI score
Exploits0
Rows per page
Query Builder