Lucene search
K

35 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 2:58 p.m.6 views

CVE-2026-4558

A flaw has been found in Linksys MR9600 2.0.6.206937. Affected is the function smartConnectConfigure of the file SmartConnect.lua. Executing a manipulation of the argument configApSsid/configApPassphrase/srpLogin/srpPassword can lead to os command injection. The attack may be launched remotely. T...

9CVSS6.9AI score0.03628EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-24096

Malicious code in bioql PyPI...

9CVSS8.8AI score0.00871EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-16254

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00457EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31742

Malicious code in bioql PyPI...

5CVSS5AI score0.00419EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12563

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00602EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-1862

Malicious code in bioql PyPI...

5.4CVSS4.8AI score0.00295EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/26 1:32 p.m.9 views

CVE-2025-9481 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 setIpv6 stack-based overflow

A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function setIpv6 of the file /goform/setIpv6. The manipulation of the argument tunrdPrefix leads to stack-based buffer...

9CVSS0.01253EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/08/20 5:32 p.m.13 views

CVE-2025-9236 Portabilis i-Educar Tipos de usuàrio educar_tipo_usuario_lst.php sql injection

A vulnerability has been found in Portabilis i-Educar up to 2.10. This affects an unknown function of the file /intranet/educartipousuariolst.php of the component Tipos de usuàrio Page. Such manipulation of the argument nmtipo/descrição leads to sql injection. The attack may be performed from a...

6.5CVSS0.00369EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/08/11 1:32 a.m.8 views

CVE-2025-8824 Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 setRIP stack-based overflow

A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this issue is the function setRIP of the file /goform/setRIP. The manipulation of the argument RIPmode/RIPpasswd leads to stack-based buffer overflow. The attack may be launched...

9CVSS0.00871EPSS
Exploits1References6
CVE
CVE
added 2025/08/10 11:2 p.m.23 views

CVE-2025-8819

The CVE-2025-8819 issue affects Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 series (firmware up to 20250801). The vulnerability lies in the /goform/setWan file, specifically the setWan function, where crafting an input for the staticIp argument triggers a stack-based buffer overflow. This e...

9CVSS7.1AI score0.00871EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2025/08/10 6:15 a.m.8 views

CVE-2025-8796

A vulnerability has been found in LitmusChaos Litmus up to 3.19.0 and classified as problematic. This vulnerability affects unknown code of the file /auth/deleteproject/ of the component Delete Request Handler. The manipulation of the argument projectID leads to missing authorization. The attack...

5.5CVSS0.00343EPSS
Exploits1References4
CVE
CVE
added 2025/08/10 6:2 a.m.27 views

CVE-2025-8796

LitmusChaos up to 3.19.0 is affected by a vulnerability in the Delete Request Handler, specifically the /auth/delete_project/ path. Manipulating the projectID parameter leads to missing authorization, enabling a remote attack. Exploitation details have been publicly disclosed, and vendor contact ...

5.5CVSS7.2AI score0.00343EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/08/10 12:15 a.m.5 views

CVE-2025-8785

A vulnerability, which was classified as problematic, has been found in Portabilis i-Educar up to 2.9. This issue affects some unknown processing of the file /intranet/educarusuariolst.php. The manipulation of the argument nmpessoa/matricula/matriculainterna leads to cross site scripting. The...

5.4CVSS0.00287EPSS
Exploits1References5
NVD
NVD
added 2025/08/09 2:15 p.m.7 views

CVE-2025-8755

A vulnerability was found in macrozheng mall up to 1.0.3 and classified as problematic. This issue affects the function detail of the file UmsMemberController.java of the component com.macro.mall.portal.controller. The manipulation of the argument orderId leads to authorization bypass. The attack...

6.9CVSS0.0053EPSS
Exploits1References5
NVD
NVD
added 2025/08/09 7:15 a.m.9 views

CVE-2025-8750

A vulnerability has been found in macrozheng mall up to 1.0.3 and classified as problematic. Affected by this vulnerability is the function Upload of the file /minio/upload of the component Add Product Page. The manipulation of the argument File leads to cross site scripting. The attack can be...

5.4CVSS0.00276EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 7:36 a.m.5 views

CVE-2024-13199

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

6.1CVSS6.1AI score0.0044EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/29 7:11 p.m.19 views

CVE-2025-3982

A vulnerability, which was classified as problematic, was found in nortikin Sverchok 1.3.0. Affected is the function SvSetPropNodeMK2 of the file sverchok/nodes/objectnodes/getsetpropmk2.py of the component Set Property Mk2 Node. The manipulation leads to improperly controlled modification of...

8.8CVSS6.8AI score0.00523EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/04/15 3:0 a.m.8 views

CVE-2025-3613 Demtec Graphytics visualization cross site scripting

A vulnerability has been found in Demtec Graphytics 5.0.7 and classified as problematic. This vulnerability affects unknown code of the file /visualization. The manipulation of the argument description leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

5.1CVSS6.4AI score0.00285EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/20 4:0 p.m.48 views

CVE-2024-11487 Code4Berry Decoration Management System Between Dates Reports btndates_report.php sql injection

A vulnerability has been found in Code4Berry Decoration Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /decoration/admin/btndatesreport.php of the component Between Dates Reports. The manipulation of the argument fromdate/todate leads to sql...

6.5CVSS0.004EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/31 9:0 p.m.12 views

CVE-2024-10596 ESAFENET CDG EncryptPolicyTypeService.java delEntryptPolicySort sql injection

A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function delEntryptPolicySort of the file /com/esafenet/servlet/system/EncryptPolicyTypeService.java. The manipulation of the argument id leads to sql injection. The attack may be launched...

6.5CVSS6.7AI score0.00543EPSS
Exploits1References4
Rows per page
Query Builder