Lucene search
K

4 matches found

Patchstack
Patchstack
added 2025/12/20 1:6 p.m.7 views

WordPress Gutenverse Form plugin <= 2.3.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by daroo in WordPress Plugin Gutenverse Form versions = 2.3.1...

9.1CVSS6.7AI score0.00224EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/10/01 11:30 p.m.10 views

CVE-2025-61588 risc0 vulnerable to arbitrary code execution in guest via memory safety failure in `sys_read`

RISC Zero is a zero-knowledge verifiable general computing platform based on zk-STARKs and the RISC-V microarchitecture. In versions 2.0.2 and below of risc0-zkvm-platform, when the zkVM guest calls sysread, the host is able to use a crafted response to write to an arbitrary memory location in th...

9.3CVSS0.00432EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/11 2:31 a.m.21 views

CVE-2025-54999

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 0.1.0 through 2.3.1, when using OpenBao's userpass auth method, user enumeration was possible due to timing difference between non-existent users an...

3.7CVSS6.5AI score0.0018EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.3 views

PT-2025-32381 · Openbao · Openbao

Name of the Vulnerable Software and Affected Versions: OpenBao versions 0.1.0 through 2.3.1 Description: OpenBao is a software solution designed for managing, storing, and distributing sensitive data, including secrets, certificates, and keys. In versions 0.1.0 through 2.3.1, user enumeration was...

3.7CVSS6.6AI score0.0032EPSS
Exploits0References14
Rows per page
Query Builder