Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.6 views

PT-2026-27843

CVE-2026-23971 Deserialization of Untrusted Data vulnerability in xtemos WoodMart woodmart allows Object Injection.This issue affects WoodMart: from n/a through = 8.3.8. https://t.co/0me4zW3qJ4...

5.9AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/22 4:52 p.m.5 views

EUVD-2026-3838

Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Curly curly allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Curly: from n/a through = 3.3...

5.4AI score0.00229EPSS
Exploits0References2
CVE
CVE
added 2026/01/22 4:51 p.m.9 views

CVE-2025-67958

CVE-2025-67958 affects the TaxCloud for WooCommerce plugin (simple-sales-tax) for WordPress; a broken/misconfigured access control enables missing authorization via vulnerable versions up to and including 8.3.8. Impact details in sources indicate broken access control rather than remote code exec...

6.5CVSS5.4AI score0.00255EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/21 12:0 a.m.6 views

TYPO3 Security Vulnerabilities

TYPO3 is a free and open source content management system framework CMS/CMF from the Swiss TYPO3 Association. A security vulnerability exists in TYPO3 versions prior to 8.3.8, and 9.x versions prior to 9.0.6, which stems from the presence of an insecure direct object reference IDOR vulnerability,...

5.4CVSS6.8AI score0.0029EPSS
Exploits0References3
Rapid7 Blog
Rapid7 Blog
added 2024/05/23 1:0 p.m.7 views

CVE-2024-4978: Backdoored Justice AV Solutions Viewer Software Used in Apparent Supply Chain Attack

The following Rapid7 team members contributed to this blog: Ipek Solak, Thomas Elkins, Evan McCann, Matthew Smith, Jake McMahon, Tyler McGraw, Ryan Emmons, Stephen Fewer, and John Fenninger Overview Justice AV Solutions JAVS is a U.S.-based company specializing in digital audio-visual recording...

8.7CVSS6.5AI score0.26937EPSS
Exploits1
CNNVD
CNNVD
added 2023/05/12 12:0 a.m.4 views

Loadbalancer Enterprise VA MAX 路径遍历漏洞

Loadbalancer Enterprise VA MAX is a full-featured virtual ADC from the Loadbalancer organization. standardized on WAF and GSLB, it provides the highest throughput and unmatched reliability for critical workloads. A security vulnerability exists in Loadbalancer Enterprise VA MAX version 8.3.8 and...

8.1CVSS7.8AI score0.01526EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:2 a.m.3 views

SUSE CVE-2009-3231

The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty password...

6.8CVSS7.3AI score0.07568EPSS
Exploits0References6
Rows per page
Query Builder