Lucene search
K

362 matches found

OSV
OSV
added last week5 views

MINI-8RQG-VHVG-WQ2V

Bulletin has no description...

6.9CVSS5.9AI score0.00341EPSS
Exploits0
OSV
OSV
added 2026/07/03 1:33 p.m.5 views

MINI-PF9M-W6HG-9M75

Bulletin has no description...

8.8CVSS5.9AI score0.08123EPSS
Exploits1
OSV
OSV
added 2026/07/01 9:18 a.m.3 views

CGA-JJJX-R7M6-9WGP

Bulletin has no description...

6.5CVSS5.7AI score0.00336EPSS
Exploits0
OSV
OSV
added 2026/06/24 11:57 a.m.3 views

MINI-GX44-PMRG-J57V

Bulletin has no description...

5.3CVSS5.7AI score0.00219EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/23 4:38 p.m.42 views

CVE-2026-54022 Open WebUI: Any authenticated user can read other users' private notes via Socket.IO

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the ydoc:document:join Socket.IO handler checks note ownership only when the documentid starts with note: colon. However, the YdocManager storage layer normalizes all document IDs b...

5.3CVSS0.00268EPSS
Exploits1References1
OSV
OSV
added 2026/06/19 4:19 p.m.7 views

MINI-PVQV-W7RC-6V25

Bulletin has no description...

5.3CVSS5.7AI score0.00313EPSS
Exploits0
OSV
OSV
added 2026/06/18 9:16 p.m.3 views

MINI-X2FW-P82Q-V99H

Bulletin has no description...

9.1CVSS5.7AI score0.00533EPSS
Exploits0
OSV
OSV
added 2026/06/17 10:33 p.m.3 views

MINI-2RVP-J9JF-M7CM

Bulletin has no description...

6.1CVSS5AI score0.00178EPSS
Exploits0
OSV
OSV
added 2026/06/17 10:6 p.m.3 views

MINI-JG53-6PQM-2VW8

Bulletin has no description...

8.1CVSS5AI score0.00573EPSS
Exploits0
OSV
OSV
added 2026/06/12 12:44 a.m.8 views

MINI-689W-955V-2J3X

Bulletin has no description...

3.5CVSS4.9AI score0.01082EPSS
Exploits0
OSV
OSV
added 2026/06/09 7:47 p.m.8 views

MINI-MWMR-7JXC-VRW8

Bulletin has no description...

4CVSS5.2AI score0.00136EPSS
Exploits0
OSV
OSV
added 2026/06/07 7:24 p.m.7 views

MINI-7JPM-FQFW-HCRR

Bulletin has no description...

3.3CVSS5.2AI score0.00114EPSS
Exploits0
OSV
OSV
added 2026/06/07 7:24 p.m.5 views

MINI-3HXV-MQ22-HFGX

Bulletin has no description...

7.5CVSS5.2AI score0.00415EPSS
Exploits0
OSV
OSV
added 2026/06/07 4:15 a.m.9 views

MINI-4X6Q-HG5M-JV27

Bulletin has no description...

9.1CVSS5.2AI score0.00525EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.12 views

PT-2026-45852

Name of the Vulnerable Software and Affected Versions code-projects Student Admission System version 1.0 Description A SQL injection flaw exists in the /index.php file. This issue allows a remote attacker to manipulate the eid and did arguments to execute unauthorized database queries...

7.5CVSS7.3AI score0.00272EPSS
Exploits0References12
Cvelist
Cvelist
added 2026/06/01 4:53 p.m.37 views

CVE-2026-45282 Nextcloud: Logged-in user bypasses share password and download restrictions on Text attachments via documentId leads to unauthorized file access

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...

6.5CVSS0.00294EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/01 4:53 p.m.13 views

CVE-2026-45282 Nextcloud: Logged-in user bypasses share password and download restrictions on Text attachments via documentId leads to unauthorized file access

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...

6.5CVSS5.7AI score0.00294EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/01 4:53 p.m.15 views

EUVD-2026-33707

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, an authenticated attacker can access attachments of link shares when knowing the share token, circumventing password protection or download...

6.5CVSS5.7AI score0.00294EPSS
Exploits0References3
CVE
CVE
added 2026/06/01 4:53 p.m.41 views

CVE-2026-45282

This CVE affects Nextcloud Server versions 32.0.0–32.0.8 and 33.0.0–33.0.2, where an authenticated attacker can access attachments of link shares using a valid share token and a known documentId, bypassing password protection or download restrictions. The vulnerability enables access to attachmen...

6.5CVSS5.7AI score0.00294EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/01 12:0 a.m.19 views

ASB-A-500171842

Bulletin has no description...

7.8CVSS5.7AI score0.00108EPSS
Exploits0References1
Rows per page
Query Builder