Lucene search
K

8 matches found

Patchstack
Patchstack
added 2026/05/01 2:45 p.m.6 views

WordPress Simple Link Directory plugin <= 8.9.2 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zaim in WordPress Plugin Simple Link Directory versions = 8.9.2...

6.4CVSS5.8AI score0.00195EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/19 11:12 p.m.3 views

CVE-2026-29109 SuiteCRM Authenticated Remote Code Execution via Unsafe Deserialization in SavedSearch Filter Processing

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions up to and including 8.9.2 contain an unsafe deserialization vulnerability in the SavedSearch filter processing component that allows an authenticated administrator to execute arbitrary...

8.6CVSS6.1AI score0.00469EPSS
Exploits0References1
OSV
OSV
added 2026/03/19 11:12 p.m.4 views

CVE-2026-29109 SuiteCRM Authenticated Remote Code Execution via Unsafe Deserialization in SavedSearch Filter Processing

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions up to and including 8.9.2 contain an unsafe deserialization vulnerability in the SavedSearch filter processing component that allows an authenticated administrator to execute arbitrary...

8.6CVSS6.1AI score0.00469EPSS
Exploits0References3
CVE
CVE
added 2026/03/19 10:54 p.m.20 views

CVE-2026-29103

CVE-2026-29103 affects SuiteCRM 7.15.0 and 8.9.2, enabling authenticated administrators to trigger remote code execution via a Patch Bypass of CVE-2024-49774. The root cause is a flaw in ModuleScanner.php’s PHP token parsing that resets its internal state (checkFunction) on single-character token...

9.1CVSS6.2AI score0.00497EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/19 10:54 p.m.6 views

EUVD-2026-13364

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. A Critical Remote Code Execution RCE vulnerability exists in SuiteCRM 7.15.0 and 8.9.2, allowing authenticated administrators to execute arbitrary system commands. This vulnerability is a direc...

9.1CVSS6.2AI score0.00497EPSS
Exploits0References2
NVD
NVD
added 2026/02/19 12:16 a.m.11 views

CVE-2026-25926

Notepad++ is a free and open-source source code editor. An Unsafe Search Path vulnerability CWE-426 exists in versions prior to 8.9.2 when launching Windows Explorer without an absolute executable path. This may allow execution of a malicious explorer.exe if an attacker can control the process...

7.3CVSS0.00248EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/18 11:7 p.m.45 views

CVE-2026-25926 Notepad++ has an Untrusted Search Path

Notepad++ is a free and open-source source code editor. An Unsafe Search Path vulnerability CWE-426 exists in versions prior to 8.9.2 when launching Windows Explorer without an absolute executable path. This may allow execution of a malicious explorer.exe if an attacker can control the process...

7.3CVSS0.00248EPSS
Exploits1References3
Circl
Circl
added 2022/09/16 10:35 p.m.5 views

CVE-2022-38992

creationtimestamp| type| source ---|---|--- 2022-09-16 22:35:05+00:00| seen| https://t.me/cibsecurity/49965...

7.5CVSS7.3AI score0.00434EPSS
Exploits0References1
Rows per page
Query Builder