Lucene search
K

9 matches found

CVE
CVE
added 2026/05/23 1:45 p.m.43 views

CVE-2026-9304

CVE-2026-9304 describes a server-side request forgery in calcom cal.diy ≤ 4.9.4 . The flaw is in the function validateUrlForSSRF in the file apps/web/app/api/logo/route.ts of the Logo API component. Exploitation can be remote; exploitability is described as difficult. A public exploit exists. The...

5CVSS5.3AI score0.00199EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : podman-4.9.4-0.1.el9 (AXSA:2024-7787:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7787:03 advisory. golang: net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326 golang: crypto/tls: Timing Side Channel...

7.5CVSS7.6AI score0.0125EPSS
Exploits0References3
Circl
Circl
added 2026/01/04 9:2 p.m.20 views

CVE-2022-4940

creationtimestamp| type| source ---|---|--- 2026-01-04 21:02:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbmt47va2r2h...

7.3CVSS7.1AI score0.01084EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/05/21 9:31 p.m.7 views

ch.admin.bit.jeap:jeap-messaging-avro-maven-plugin (>=8.31.0 <=8.50.0), ch.admin.bit.jeap:jeap-messaging-registry-maven-plugin (>=8.31.0 <=8.50.0) +166 more potentially affected by CVE-2025-4949 via org.eclipse.jgit:org.eclipse.jgit (=7.2.0.202503040940-r)

org.eclipse.jgit:org.eclipse.jgit MAVEN version =7.2.0.202503040940-r is affected by a known vulnerability. The following packages have a transitive dependency on org.eclipse.jgit:org.eclipse.jgit and may be impacted: - ch.admin.bit.jeap:jeap-messaging-avro-maven-plugin =8.31.0, =8.31.0, =2.59.0,...

6.8CVSS6.9AI score0.0104EPSS
Exploits1
Circl
Circl
added 2025/02/14 9:46 a.m.6 views

CVE-2024-4945

creationtimestamp| type| source ---|---|--- 2025-02-14 09:46:58+00:00| seen| Telegram/DAS6KHUxaWGoRQsNhRC1A1lJOOMWMXiqLvsAhxYns2UTPSfb...

9.8CVSS4.5AI score0.00869EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2024/04/03 12:0 a.m.4 views

PT-2024-21987

Name of the Vulnerable Software and Affected Versions Macro Expert versions 4.9.4 and earlier Description The issue allows an unprivileged user to escalate to SYSTEM by replacing the MacroService.exe binary due to improper access control. The "%PROGRAMFILESX86%GrassSoftMacro Expert" folder has...

7.8CVSS5.9AI score0.00312EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/12/07 6:15 p.m.7 views

CVE-2023-49409

Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet...

9.8CVSS5.8AI score0.01516EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/03/10 12:0 a.m.4 views

Katy Voor HHVM 缓冲区错误漏洞

Katy Voor HHVM is an open source application by Katy Voor. Provides an open source virtual machine designed to execute programs written in Hack. A security vulnerability exists in HHVM that stems from a write out-of-bounds if a buffer is full. The following products and versions are affected: HHV...

9.8CVSS8.5AI score0.01384EPSS
Exploits0References3
CNVD
CNVD
added 2015/11/19 12:0 a.m.3 views

GNU Compiler Collection libstdc++ Component Random Number Predictability Vulnerability

The GNU Compiler Collection a.k.a. GCC is a compiler system developed by the GNU Project to support multiple programming languages. A security vulnerability exists in the class 'std::randomdevice' in the libstdc++ component of GCC versions prior to 4.9.4. Due to the program failing to properly...

5CVSS8.3AI score0.02941EPSS
Exploits0References1
Rows per page
Query Builder