Lucene search
K

614 matches found

NVD
NVD
added 2026/04/13 6:16 a.m.9 views

CVE-2026-21011

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

6.8CVSS0.00149EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/13 5:4 a.m.36 views

CVE-2026-21011

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

5.4CVSS0.00149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/13 5:4 a.m.3 views

CVE-2026-21011

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

5.4CVSS5.8AI score0.00149EPSS
Exploits0References2
CVE
CVE
added 2026/04/13 5:4 a.m.10 views

CVE-2026-21011

CVE-2026-21011 describes an incorrect privilege assignment in Bluetooth when in Maintenance mode, prior to the SMR Apr-2026 Release 1. This flaw could allow a physical attacker to bypass Extend Unlock. The reporting sources (NVD and CVE feeds) confirm the description and note a Samsung security u...

6.8CVSS5.8AI score0.00149EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/13 5:4 a.m.4 views

CVE-2026-21011

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

5.4CVSS5.8AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/13 12:0 a.m.10 views

PT-2026-32269

Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attackers to bypass Extend Unlock...

5.4CVSS5.8AI score0.00149EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/13 12:0 a.m.6 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by South Korea’s Samsung Corporation, including smartphones and tablets. There are security vulnerabilities in Samsung Mobile Devices, which stem from improper permission allocation. These vulnerabilities may allow physical attackers ...

6.8CVSS5.8AI score0.00149EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/31 12:31 p.m.5 views

EUVD-2026-17355

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Extend Themes Kubio AI Page Builder allows Stored XSS.This issue affects Kubio AI Page Builder: from n/a through 2.7.0...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/31 10:19 a.m.3 views

CVE-2026-34887

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Extend Themes Kubio AI Page Builder allows Stored XSS.This issue affects Kubio AI Page Builder: from n/a through 2.7.0...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.2 views

PT-2026-29218

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Extend Themes Kubio AI Page Builder allows Stored XSS.This issue affects Kubio AI Page Builder: from n/a through 2.7.0...

6.5CVSS5.9AI score0.0013EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/26 9:30 a.m.5 views

EUVD-2026-16136

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS4AI score0.00269EPSS
Exploits0References5
NVD
NVD
added 2026/03/26 7:16 a.m.11 views

CVE-2026-4848

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS0.00269EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/26 6:59 a.m.1 views

CVE-2026-4848 dameng100 muucmf list.html cross site scripting

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS4AI score0.00269EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/26 6:59 a.m.2 views

CVE-2026-4848

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS4AI score0.00269EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/26 6:59 a.m.16 views

CVE-2026-4848

CVE-2026-4848 affects dameng100 muucmf 1.9.5.20260309. The vulnerability is in an unknown function of /admin/extend/list.html, where manipulating the Name parameter can cause cross-site scripting. Exploitation is remote, with a publicly disclosed exploit and PoC maturity indicated. No remediation...

5.3CVSS4AI score0.00269EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/26 6:59 a.m.34 views

CVE-2026-4848 dameng100 muucmf list.html cross site scripting

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS0.00269EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.10 views

PT-2026-28223

A vulnerability was determined in dameng100 muucmf 1.9.5.20260309. This affects an unknown function of the file /admin/extend/list.html. Executing a manipulation of the argument Name can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and...

5.3CVSS4AI score0.00269EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.10 views

MuuCmf 代码注入漏洞

MuuCmf is an open-source application development framework created by Dameng100. Version muucmf 1.9.5.20260309 contains a code injection vulnerability. This vulnerability stems from incorrect handling of parameters in the file admin/extend/list.html, which may lead to cross-site scripting attacks...

5.3CVSS5.7AI score0.00269EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/24 3:44 p.m.7 views

Malicious code in env-extend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b65432f04e2d76673de1e30fd9afbce2259306e45f6590848f02eb6f72535333 The package env-extend was found to contain malicious code...

5.9AI score
Exploits0
OSV
OSV
added 2026/03/24 3:44 p.m.8 views

MAL-2026-2363 Malicious code in env-extend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b65432f04e2d76673de1e30fd9afbce2259306e45f6590848f02eb6f72535333 The package env-extend was found to contain malicious code...

5.8AI score
Exploits0
Rows per page
Query Builder