Lucene search
K

10 matches found

EUVD
EUVD
added 2026/03/25 6:31 p.m.6 views

EUVD-2026-15830

Incorrect Privilege Assignment vulnerability in wpeverest User Registration user-registration allows Privilege Escalation.This issue affects User Registration: from n/a through = 4.4.9...

5.8AI score0.00345EPSS
Exploits1References2
OSV
OSV
added 2026/02/19 7:22 p.m.3 views

UBUNTU-CVE-2026-27474

SPIP before 4.4.9 allows Cross-Site Scripting XSS in the private area, complementing an incomplete fix from SPIP 4.4.8. The echappeantixss function was not systematically applied to input, form, button, and anchor a HTML tags, allowing an attacker to inject malicious scripts through these element...

6.1CVSS5.8AI score0.00264EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/19 6:38 p.m.1 views

CVE-2026-27473

SPIP before 4.4.9 allows Stored Cross-Site Scripting XSS via syndicated sites in the private area. The URLSYNDIC output is not properly sanitized on the private syndicated site page, allowing an attacker who can set a malicious syndication URL to inject persistent scripts that execute when other...

6.4CVSS5.4AI score0.0026EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/02/19 2:58 p.m.20 views

CVE-2025-71248

...

Exploits0
RedhatCVE
RedhatCVE
added 2026/01/23 9:15 p.m.5 views

CVE-2026-24353

Missing Authorization vulnerability in wpeverest User Registration user-registration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Registration: from n/a through = 4.4.9...

4.3CVSS5.4AI score0.00162EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/20 4:14 a.m.4 views

EUVD-2026-3449

Out of bounds memory access in V8 in Google Chrome prior to 144.0.7559.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.4AI score0.00382EPSS
Exploits0References3
OSV
OSV
added 2025/09/12 2:25 p.m.3 views

OESA-2025-2266 wireshark security update

Security Fixes: A vulnerability classified as problematic CWE-476 has been found in Wireshark versions 4.4.0 to 4.4.8. The application dereferences a pointer that it expects to be valid but is NULL, typically causing a crash or exit, impacting availability. Upgrading to version 4.4.9 eliminates...

7.8CVSS6.5AI score0.00194EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/06/20 1:15 p.m.3 views

CVE-2023-33495

Craft CMS through 4.4.9 is vulnerable to HTML Injection...

6.1CVSS5.7AI score0.00497EPSS
Exploits0References4
Circl
Circl
added 2022/04/15 10:30 p.m.9 views

CVE-2021-44495

creationtimestamp| type| source ---|---|--- 2022-04-15 22:30:54+00:00| seen| https://t.me/cibsecurity/40939...

7.5CVSS7.3AI score0.01493EPSS
Exploits0References1
CNVD
CNVD
added 2020/08/24 12:0 a.m.2 views

ALEOS Out-of-Bounds Read Vulnerability

ALEOS is an integrated development environment for building customized embedded M2M applications. An out-of-bounds read vulnerability exists in the ACEView service in ALEOS versions prior to 4.13.0, 4.9.5, and 4.4.9, which can be exploited by an attacker to obtain sensitive information...

9.1CVSS6.7AI score0.00938EPSS
Exploits0References1
Rows per page
Query Builder