Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.26 views

PT-2026-48850

A race condition in AbstractOAuthDataProvider allows concurrent requests using the same Refresh Token to bypass single-use semantics and generate multiple valid Access Tokens, when 'recycleRefreshTokens' is set to false. A leaked refresh token can be replayed concurrently by multiple attackers or...

5.2AI score0.00294EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/01/29 9:41 p.m.6 views

WordPress Secure Copy Content Protection and Content Locking plugin < 4.1.7 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Secure Copy Content Protection and Content Locking versions 4.1.7...

4.8CVSS5.9AI score0.00353EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/10/28 6:16 a.m.6 views

WordPress Auto Featured Image (Auto Post Thumbnail) plugin <= 4.1.7 - Authenticated (Author+) Server-Side Request Forgery vulnerability

Authenticated Author+ Server-Side Request Forgery vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Auto Featured Image Auto Post Thumbnail versions = 4.1.7...

6.8AI score0.00042EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-55004

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00281EPSS
Exploits1References4
OSV
OSV
added 2025/09/05 12:42 p.m.4 views

OESA-2025-2152 netty security update

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers clients. %package help Summary: Documents for Buildarch: noarch Requires: man info Provides: -javadoc = - Obsoletes: -javadoc - %description help Man pages a...

5.5CVSS9AI score0.01044EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/06/24 12:0 a.m.4 views

Netbox 安全漏洞

NetBox is a Django, PostgreSql based tool for IP Address Management IPAM and Data Center Infrastructure Management DCIM from the NetBox community. A security vulnerability exists in Netbox version 4.1.7, which stems from a flaw in the login page that could lead to a cross-site scripting attack...

6.1CVSS5.9AI score0.00281EPSS
Exploits1References4
Rows per page
Query Builder