Lucene search
+L

276 matches found

OSV
OSV
added 2025/07/10 9:15 a.m.7 views

AZL-65009 CVE-2025-38334 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 11:15 a.m.9 views

UBUNTU-CVE-2022-50146

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dwpcieepinit errors If dwpcieepinit fails to perform any action after the EPC memory is initialized and the MSI memory region is allocated, the latter parts won't be undone thus causing a memory...

5.5CVSS6.1AI score0.00159EPSS
Exploits0References7
Patchstack
Patchstack
added 2025/06/12 11:38 a.m.6 views

WordPress School Management plugin <= 93.0.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Aiden Thái An in WordPress Plugin School Management versions = 93.0.0...

7.5CVSS6.7AI score0.00488EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/10 12:0 a.m.9 views

WordPress Photography Theme <= 7.5.2 is vulnerable to PHP Object Injection

Software Photography Type Theme Vulnerable versions = 7.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-47579 Patch priority High CVSS severity High 9 Developer EPC PSID f3488f35689e Credits Rafie Muhammad Patchstack Required privilege Unauthenticated...

7.2AI score0.00303EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/06/03 11:52 a.m.8 views

WordPress Motors - Events plugin <= 1.4.7 - Unauthenticated Local File Inclusion vulnerability

WordPress Motors - Events plugin = 1.4.7 - Unauthenticated Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Motors - Events versions = 1.4.7...

9CVSS6.8AI score0.00582EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/03 11:30 a.m.11 views

WordPress WooCommerce Ultimate Gift Card plugin <= 2.9.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Bonds in WordPress Plugin WooCommerce Ultimate Gift Card versions = 2.9.6...

9.3CVSS8AI score0.00579EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/06/03 9:10 a.m.11 views

WordPress WooCommerce Photo Reviews plugin <= 1.3.13 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Seb in WordPress Plugin WooCommerce Photo Reviews versions = 1.3.13...

7.1CVSS5.9AI score0.00219EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/30 7:46 a.m.13 views

WordPress Blog Designer PRO plugin <= 3.4.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Seb in WordPress Plugin Blog Designer PRO versions = 3.4.7...

7.1CVSS5.9AI score0.00213EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/29 5:45 p.m.11 views

WordPress QuickCab plugin <= 1.3.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin QuickCab versions = 1.3.3...

5.3CVSS6.8AI score0.00218EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 6:33 a.m.8 views

CVE-2024-24425

Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amfasestablishreq function at /tasks/amf/amfas.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

6.5CVSS7AI score0.00446EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/22 11:26 a.m.10 views

WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Jingle Bells in WordPress Plugin Hospital Management System versions = 47.020-11-2023...

8.8CVSS6.7AI score0.00302EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/22 12:0 a.m.5 views

WordPress Photography Theme <= 7.5.2 is vulnerable to PHP Object Injection

Software Photography Type Theme Vulnerable versions = 7.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE N/A Patch priority High CVSS severity High 8.5 Developer EPC PSID 070158f14a77 Credits Rafie Muhammad Patchstack Required privilege Subscriber Published 22...

7.2AI score
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/05/21 11:57 a.m.11 views

WordPress Blog Designer PRO plugin <= 3.4.7 - Unauthenticated Non-Arbitrary Local File Inclusion vulnerability

Unauthenticated Non-Arbitrary Local File Inclusion vulnerability discovered by Seb in WordPress Plugin Blog Designer PRO versions = 3.4.7...

8.1CVSS6.7AI score0.00436EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.9 views

kernel: x86/sgx: Fix deadlock in SGX NUMA node search

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Fix deadlock in SGX NUMA node search When the current node doesn't have an EPC section configured by firmware and all other EPC sections are used up, CPU can get stuck inside the while loop that looks for an available EP...

5.5CVSS6.5AI score0.00205EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/05/13 12:0 a.m.16 views

WordPress Bimber - Viral Magazine WordPress Theme Theme <= 9.2.5 is vulnerable to Local File Inclusion

Software Bimber - Viral Magazine WordPress Theme Type Theme Vulnerable versions = 9.2.5 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2025-47576 Patch priority Low CVSS severity Low 8.8 Developer EPC PSID 08c8e83478ea Credits Ananda Dhakal Patchstack Required...

8.8CVSS6.8AI score0.00405EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/04/28 12:0 a.m.12 views

WordPress Kleo Theme < 5.4.4 is vulnerable to Broken Access Control

Software Kleo Type Theme Vulnerable versions 5.4.4 Fixed in 5.4.4 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-39367 Patch priority Low CVSS severity Low 5.3 Developer EPC PSID 7bef03870816 Credits Ananda Dhakal Patchstack Required privilege...

5.3CVSS6.5AI score0.00232EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2025/04/22 12:40 p.m.7 views

WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Jingle Bells in WordPress Plugin Hospital Management System versions = 47.020-11-2023...

10CVSS8.3AI score0.00359EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/22 12:38 p.m.6 views

WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Jingle Bells in WordPress Plugin Hospital Management System versions = 47.020-11-2023...

7.1CVSS6.9AI score0.00191EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/22 11:12 a.m.8 views

WordPress Car Park Booking System for WordPress plugin <= 2.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Car Park Booking System for WordPress versions = 2.6...

4.3CVSS8.4AI score0.00198EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/22 12:0 a.m.10 views

WordPress JNews Theme <= 11.6.5 is vulnerable to Broken Access Control

Software JNews Type Theme Vulnerable versions = 11.6.5 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2025-39373 Patch priority Low CVSS severity Low 5.3 Developer EPC PSID 775c2569b9cb Credits Ananda Dhakal Patchstack Required privilege...

5.3CVSS6.6AI score0.00224EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder