Lucene search
K

648524 matches found

BDU FSTEC
BDU FSTEC
added 5 minutes ago10 views

The vulnerabilities in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel allow a hacker to cause a service failure.

The vulnerability in the net/bluetooth/eir.c and net/bluetooth/mgmt.c modules of Linux kernel systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

7CVSS6.1AI score0.00121EPSS
Exploits0References5Affected Software2
RedHat Linux
RedHat Linux
added 1 hour ago4 views

nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers

A flaw was found in NGINX. When NGINX is configured to proxy HTTP/2 traffic using the ngxhttpproxyv2module or ngxhttpgrpcmodule with specific settings, a remote, unauthenticated attacker can send specially crafted large headers. This can trigger a heap-based buffer overflow, leading to a restart ...

9.2CVSS7.7AI score0.02838EPSS
Exploits1References5
GithubExploit
GithubExploit
added 1 hour ago6 views

windows7-eternalblue-lab

MS17-010 EternalBlue Exploitation Lab Hands-on penetration t...

9.3CVSS7.4AI score0.93307EPSS
Exploits47
Debian CVE
Debian CVE
added 2 hours ago2 views

CVE-2026-56003

computeProps Property Buffer Heap Buffer Overflow...

8.5CVSS5.9AI score
Exploits0
Debian CVE
Debian CVE
added 2 hours ago4 views

CVE-2026-56002

PCF Font Parsing Heap Buffer Overflow...

8.5CVSS5.9AI score
Exploits0
Debian CVE
Debian CVE
added 3 hours ago3 views

CVE-2026-56001

BitmapScaleBitmaps Integer Overflow Heap Buffer Overflow...

8.5CVSS5.9AI score
Exploits0
OSV
OSV
added 3 hours ago1 views

DEBIAN-CVE-2026-56002

Bulletin has no description...

8.5CVSS
Exploits0References1
Debian CVE
Debian CVE
added 3 hours ago3 views

CVE-2026-55999

glamor Font Atlas Heap Buffer Overflow...

8.5CVSS5.9AI score
Exploits0
Debian CVE
Debian CVE
added 4 hours ago3 views

CVE-2026-56000

GLX contextTags Use-After-Free in CommonMakeCurrent...

9CVSS5.9AI score
Exploits0
OSV
OSV
added 5 hours ago1 views

DEBIAN-CVE-2026-42505

Bulletin has no description...

Exploits0References1
OSV
OSV
added 5 hours ago0 views

DEBIAN-CVE-2026-39822

Bulletin has no description...

Exploits0References1
NVD
NVD
added 5 hours ago4 views

CVE-2026-14495

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS
Exploits0References5
CVE
CVE
added 6 hours ago9 views

CVE-2026-14495

CVE-2026-14495 affects DoLogin Security for WordPress up to version 4.3. The issue is an authentication bypass caused by insufficient randomness in the dologin token: the PRNG is seeded with mt_srand((double) microtime() * 1000000), discarding the integer-seconds and giving ~10^6 seeds (~20 bits ...

8.8CVSS5.9AI score
Exploits0References5
Cvelist
Cvelist
added 6 hours ago11 views

CVE-2026-14495 DoLogin Security <= 4.3 - Unauthenticated Authentication Bypass via Insufficient Randomness via 'dologin' Parameter Weak PRNG Token

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS
Exploits0References5
EUVD
EUVD
added 6 hours ago5 views

EUVD-2026-42167

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS5.9AI score
Exploits0References5
ATTACKERKB
ATTACKERKB
added 6 hours ago3 views

CVE-2026-14495

The DoLogin Security plugin for WordPress is vulnerable to Authentication Bypass via Insufficient Randomness in all versions up to, and including, 4.3. The vulnerability exists because dologin\s::rrand seeds the Mersenne Twister with mtsranddouble microtime 1000000 — discarding the integer-second...

8.8CVSS5.9AI score
Exploits0References6
Nuclei
Nuclei
added 6 hours ago22 views

Drupal 7 CKEditor XSS

CKEditor 4.14.0 through 4.16.x before 4.16.1 contains a reflected cross-site scripting caused by mishandling in comments, letting remote attackers inject executable JavaScript code, exploit requires victim to view malicious content. id: CVE-2021-33829 info: name: Drupal 7 CKEditor XSS author:...

6.1CVSS6.7AI score0.03189EPSS
Exploits0References4
Nuclei
Nuclei
added 6 hours ago13 views

Hippoo Mobile App for WooCommerce <= 1.7.1 - Unauthenticated Arbitrary File Read

The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to and including 1.7.1 via the templateredirect function. The plugin registers 'hippooserve' as a WordPress query variable and uses it to serve PWA files from the pwa/ directory. In...

7.5CVSS6AI score0.02056EPSS
Exploits0References3
Nuclei
Nuclei
added 6 hours ago17 views

WordPress Frontend Login and Registration Blocks Plugin 1.0.7 - Privilege Escalation

Privilege escalation vulnerability exists in the Frontend Login and Registration Blocks plugin for WordPress versions = 1.0.7. An unauthenticated attacker can exploit the AJAX endpoint flrblocksusersettingshandleajaxcallback to change the administrator's email address. Subsequently, the attacker...

9.8CVSS7.2AI score0.06441EPSS
Exploits4References5
Nuclei
Nuclei
added 6 hours ago37 views

Pritunl VPN Server 1.29.2145.25 - Username Enumeration

Pritunl 1.29.2145.25 contains a username enumeration issue caused by different error responses in /auth/session login attempts, letting attackers verify valid usernames, exploit requires network access to the login endpoint. id: CVE-2020-25200 info: name: Pritunl VPN Server 1.29.2145.25 - Usernam...

5.3CVSS6.2AI score0.0747EPSS
Exploits1References1
Rows per page
Query Builder