Lucene search
K

224 matches found

ossf
ossf
added 2025/08/14 6:52 p.m.6 views

Malicious code in @epc-tools/testutil-cdk-expect-policy (npm)

The package @epc-tools/testutil-cdk-expect-policy was found to contain malicious code...

7AI score
Exploits0
ossf
ossf
added 2025/08/14 6:52 p.m.4 views

Malicious code in @epc-libraries/common-api-responses (npm)

The package @epc-libraries/common-api-responses was found to contain malicious code...

7AI score
Exploits0
ossf
ossf
added 2025/08/14 6:52 p.m.5 views

Malicious code in @epc-libraries/common-types (npm)

The package @epc-libraries/common-types was found to contain malicious code...

7AI score
Exploits0
osv
osv
added 2025/08/14 6:52 p.m.3 views

MAL-2025-7835 Malicious code in @epc-apps/api-version-test (npm)

The package @epc-apps/api-version-test was found to contain malicious code...

7.2AI score
Exploits0
patchstack
patchstack
added 2025/07/25 12:0 a.m.9 views

WordPress KALLYAS - Creative eCommerce Multi-Purpose WordPress Theme Theme <= 4.21.0 is vulnerable to Local File Inclusion

Software KALLYAS - Creative eCommerce Multi-Purpose WordPress Theme Type Theme Vulnerable versions = 4.21.0 Fixed in 4.22.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2025-6991 Patch priority Low CVSS severity Low 7.5 Developer EPC PSID 34bd1e68ee25 Credits stealthcopt...

7.5CVSS6.8AI score0.00644EPSS
Exploits0References2Affected Software1
susecve
susecve
added 2025/07/10 11:22 p.m.4 views

SUSE CVE-2025-38334

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

6.1CVSS7.7AI score0.00145EPSS
Exploits0References16
osv
osv
added 2025/07/10 9:15 a.m.1 views

DEBIAN-CVE-2025-38334

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

5.5CVSS5.5AI score0.00145EPSS
Exploits0References1
osv
osv
added 2025/07/10 9:15 a.m.6 views

AZL-72587 CVE-2025-38334 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

5.5CVSS5.6AI score0.00145EPSS
Exploits0References1
osv
osv
added 2025/07/10 9:15 a.m.6 views

AZL-65009 CVE-2025-38334 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Prevent attempts to reclaim poisoned pages TL;DR: SGX page reclaim touches the page to copy its contents to secondary storage. SGX instructions do not gracefully handle machine checks. Despite this, the existing SGX code...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References1
osv
osv
added 2025/06/18 11:15 a.m.6 views

UBUNTU-CVE-2022-50146

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dwpcieepinit errors If dwpcieepinit fails to perform any action after the EPC memory is initialized and the MSI memory region is allocated, the latter parts won't be undone thus causing a memory...

5.5CVSS6.1AI score0.00159EPSS
Exploits0References7
patchstack
patchstack
added 2025/06/12 11:38 a.m.6 views

WordPress School Management plugin <= 93.0.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Aiden Thái An in WordPress Plugin School Management versions = 93.0.0...

7.5CVSS6.7AI score0.00488EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/06/10 12:0 a.m.8 views

WordPress Photography Theme <= 7.5.2 is vulnerable to PHP Object Injection

Software Photography Type Theme Vulnerable versions = 7.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2025-47579 Patch priority High CVSS severity High 9 Developer EPC PSID f3488f35689e Credits Rafie Muhammad Patchstack Required privilege Unauthenticated...

7.2AI score0.00303EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2025/06/03 11:52 a.m.7 views

WordPress Motors - Events plugin <= 1.4.7 - Unauthenticated Local File Inclusion vulnerability

WordPress Motors - Events plugin = 1.4.7 - Unauthenticated Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Motors - Events versions = 1.4.7...

9CVSS6.8AI score0.00465EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/06/03 11:30 a.m.11 views

WordPress WooCommerce Ultimate Gift Card plugin <= 2.9.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Bonds in WordPress Plugin WooCommerce Ultimate Gift Card versions = 2.9.6...

9.3CVSS8AI score0.00579EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/06/03 9:10 a.m.11 views

WordPress WooCommerce Photo Reviews plugin <= 1.3.13 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Seb in WordPress Plugin WooCommerce Photo Reviews versions = 1.3.13...

7.1CVSS5.9AI score0.00219EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/05/30 7:46 a.m.11 views

WordPress Blog Designer PRO plugin <= 3.4.7 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Seb in WordPress Plugin Blog Designer PRO versions = 3.4.7...

7.1CVSS5.9AI score0.00213EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/05/29 5:45 p.m.11 views

WordPress QuickCab plugin <= 1.3.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin QuickCab versions = 1.3.3...

5.3CVSS6.8AI score0.00218EPSS
Exploits0Affected Software1
redhatcve
redhatcve
added 2025/05/23 6:33 a.m.7 views

CVE-2024-24425

Magma v1.8.0 and OAI EPC Federation v1.20 were discovered to contain an out-of-bounds read in the amfasestablishreq function at /tasks/amf/amfas.cpp. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted NAS packet...

6.5CVSS7AI score0.00446EPSS
Exploits0References1
patchstack
patchstack
added 2025/05/22 11:26 a.m.9 views

WordPress Hospital Management System plugin <= 47.0(20-11-2023) - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Jingle Bells in WordPress Plugin Hospital Management System versions = 47.020-11-2023...

8.8CVSS6.7AI score0.00302EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2025/05/22 12:0 a.m.4 views

WordPress Photography Theme <= 7.5.2 is vulnerable to PHP Object Injection

Software Photography Type Theme Vulnerable versions = 7.5.2 Fixed in N/A OWASP Top 10 A3: Injection Classification PHP Object Injection CVE N/A Patch priority High CVSS severity High 8.5 Developer EPC PSID 070158f14a77 Credits Rafie Muhammad Patchstack Required privilege Subscriber Published 22...

7.2AI score
Exploits0Affected Software1
Rows per page
Query Builder