Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.10 views

PT-2026-49833

It was discovered that rabbitmq-c exposed credentials in command-line arguments under certain circumstances. A local attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2023-35789 It was discovered that...

5.5CVSS6.7AI score0.00214EPSS
Exploits0References15
Github Security Blog
Github Security Blog
added 2026/05/19 2:35 p.m.51 views

Malware in @opensearch-project/opensearch

Overview The OpenSearch Project has sustained a security incident involving an external actor gaining force-push permissions within the project's CI infrastructure to embed malicious packages into four release versions of @opensearch-project/opensearch. Users are instructed to immediately take...

5.8AI score
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.8 views

PT-2026-1343

Name of the Vulnerable Software and Affected Versions Craft versions 5.0.0-RC1 through 5.8.20 Craft versions 4.0.0-RC1 through 4.16.16 Description Craft is a platform for creating digital experiences. Authenticated users on a Craft installation could potentially expose sensitive assets via their...

7.1CVSS6.5AI score0.00232EPSS
Exploits0References6
OSV
OSV
added 2025/09/22 6:30 p.m.4 views

GHSA-JH9H-8XF2-25WJ Liferay has a stored cross-site scripting (XSS) vulnerability via a a publication’s “Name” text field

Stored cross-site scripting XSS vulnerability in the notifications widget in Liferay Portal 7.4.0 through 7.4.3.112, and Liferay DXP 2023.Q4.0 through 2023.Q4.8, 2023.Q3.1 through 2023.Q3.10, and 7.4 GA through update 92 allows remote attackers to inject arbitrary web scripts or HTML via a crafte...

4.8CVSS5.2AI score0.00197EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/08 12:0 a.m.3 views

FreeBSD Security Vulnerabilities

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A security vulnerability exists in FreeBSD version 12.4-RELEASE up to and including version 12.4-RELEASE-p7, and version 13.2-RELEASE up to and including version 13.2-RELEASE-p5. An attacker can exploit the vulnerability...

9.8CVSS7.3AI score0.01073EPSS
Exploits0References3
OSV
OSV
added 2022/01/19 12:15 p.m.6 views

AZL-7707 CVE-2022-21316 affecting package mysql for versions less than 8.0.28-1

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the...

6.3CVSS6.7AI score0.01068EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/07 12:0 a.m.6 views

FreeBSD 资源管理错误漏洞

FreeBSD is a set of Unix-like operating systems from the Freebsd Foundation. FreeBSD suffers from a resource management error vulnerability that stems from allowing processes to read private data. The following products and versions are affected: FreeBSD 13.0-STABLE before n245117, 12.2-STABLE...

5.5CVSS5.7AI score0.00336EPSS
Exploits0References4
Rows per page
Query Builder