Lucene search
K

9 matches found

NVD
NVD
added 2026/06/15 9:16 p.m.6 views

CVE-2026-39478

Contributor PHP Object Injection in Anti-Malware Security and Brute-Force Firewall = 4.23.87 versions...

8.8CVSS0.00428EPSS
Exploits0References1
NVD
NVD
added 2026/06/01 2:16 a.m.12 views

CVE-2026-10210

A vulnerability was found in AstrBotDevs AstrBot 4.23.6. Affected by this vulnerability is the function sanitizepromptdescription of the file astrbot/core/skills/skillmanager.py. The manipulation results in injection. The attack may be performed from remote. The exploit has been made public and...

6.5CVSS0.00228EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/01 9:30 a.m.14 views

EUVD-2025-37431

The kallyas theme for WordPress is vulnerable to Stored Cross-Site Scripting via several of the plugin's shortcodes in all versions up to, and including, 4.23.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS4.7AI score0.00176EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/29 12:0 a.m.71 views

VulnCheck KEV: CVE-2025-11705

The Anti-Malware Security and Brute-Force Firewall plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.23.81 due to a missing capability check combined with an information exposure in several GOTMLS AJAX actions. This makes it possible for authenticat...

6.5CVSS5.9AI score0.00572EPSS
In wildExploits0References2
Positive Technologies
Positive Technologies
added 2024/03/15 12:0 a.m.3 views

PT-2024-21208 · Unknown · My Calendar

Name of the Vulnerable Software and Affected Versions: My Calendar versions through 3.4.23 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Stored XSS. This enables attackers to inject malicious scripts...

6.5CVSS6.9AI score0.00331EPSS
Exploits0References6
CNNVD
CNNVD
added 2020/12/28 12:0 a.m.6 views

Arista EOS Security Breach

Arista Networks Arista EOS is a scalable operating system for data centers and cloud network centers from Arista Networks, Inc. Arista EOS builds cloud architectures that scale to hundreds of thousands of compute and storage nodes with management and provisioning capabilities for large-scale jobs...

5.9CVSS5.8AI score0.00841EPSS
Exploits1References2
OSV
OSV
added 2020/06/10 8:15 p.m.2 views

CVE-2020-11622

A vulnerability exists in Arista’s Cloud EOS VM / vEOS 4.23.2M and below releases in the 4.23.x train, 4.22.4M and below releases in the 4.22.x train, 4.21.3M to 4.21.9M releases in the 4.21.x train, 4.21.3FX-7368., 4.21.4-FCRFX., 4.21.4.1, 4.21.7.1, 4.22.2.0.1, 4.22.2.2.1, 4.22.3.1, and 4.23.2.1...

7.5CVSS5.8AI score0.01277EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/03/31 9:8 p.m.4 views

squid: Incorrect pointer handling when processing ESI Responses can lead to denial of service

The Squid Software Foundation Squid HTTP Caching Proxy version 3.0 to 3.5.27, 4.0 to 4.0.22 contains a Incorrect Pointer Handling vulnerability in ESI Response Processing that can result in Denial of Service for all clients using the proxy.. This attack appear to be exploitable via Remote server...

7.5CVSS5.8AI score0.08077EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/02/24 5:57 p.m.21 views

openldap: segfault on certain queries with rwm overlay

The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the session context while it is being used by...

4.3CVSS6.2AI score0.10913EPSS
Exploits1References4
Rows per page
Query Builder