Lucene search
K

22 matches found

Rockylinux
Rockylinux
added 2026/07/05 12:3 p.m.7 views

rrdtool security update

An update is available for rrdtool. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The round robin database RRD system stores and displays time-series data, suc...

7.8CVSS6.2AI score0.00132EPSS
Exploits0
OSV
OSV
added 2026/07/01 12:0 a.m.5 views

ALSA-2026:34155 Moderate: rrdtool security update

The round robin database RRD system stores and displays time-series data, such as network bandwidth, machine-room temperature, and server load average. RRDtool is a high performance data logging and graphing utility, which can be easily integrated with shell scripts, or used to create application...

7.8CVSS6AI score0.00132EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/04 2:21 a.m.11 views

SUSE CVE-2026-46258

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Avoid NULL dereference in linehandlecreate In linehandlecreate, there is a statement like this: retainandnullptrlh; Soon after, there is a debug printout that dereferences "lh", which will crash things. Avoid the cras...

5.8AI score0.001EPSS
Exploits0References3
OSV
OSV
added 2026/06/03 3:49 p.m.3 views

CVE-2026-46258 gpio: cdev: Avoid NULL dereference in linehandle_create()

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: Avoid NULL dereference in linehandlecreate In linehandlecreate, there is a statement like this: retainandnullptrlh; Soon after, there is a debug printout that dereferences "lh", which will crash things. Avoid the cras...

5.5CVSS5.9AI score0.001EPSS
Exploits0References5
CVE
CVE
added 2026/02/26 11:32 p.m.20 views

CVE-2026-3269

PSI Probe

6.5CVSS5.1AI score0.00561EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2025/12/18 10:16 a.m.7 views

CVE-2025-14364

The Demo Importer Plus plugin for WordPress is vulnerable to unauthorized modification of data, loss of data, and privilege escalation due to a missing capability check on the Ajax::handlerequest function in all versions up to, and including, 2.0.8. This makes it possible for authenticated...

8.8CVSS0.00302EPSS
Exploits1References2
CVE
CVE
added 2025/12/18 9:21 a.m.27 views

CVE-2025-14364

CVE-2025-14364 affects the WordPress Demo Importer Plus plugin (versions

8.8CVSS5AI score0.00302EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/06/09 12:0 a.m.8 views

The vulnerability of the handle_request function in the ASUS GT-AC2900 router allows a hacker to gain unauthorized access to the administrator interface.

The vulnerability of the handlerequest function in ASUS GT-AC2900 routers is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain unauthorized access to the administrator interface...

10CVSS8AI score0.99393EPSS
Exploits1References4Affected Software2
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.3 views

drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()

...

7.8CVSS7.4AI score0.00215EPSS
Exploits0
OSV
OSV
added 2024/08/20 2:15 a.m.5 views

CVE-2024-5941

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized access and deletion of data due to a missing capability check on the 'handlerequest' function in all versions up to, and including, 3.14.1. This makes it possible for authenticated attackers,...

5.4CVSS5.8AI score0.00389EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.6 views

WordPress plugin GiveWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.4CVSS6.3AI score0.00389EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.3 views

WordPress plugin GiveWP 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

6.5CVSS6.5AI score0.00466EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/19 12:0 a.m.6 views

PT-2024-37255 · WordPress · Givewp

Name of the Vulnerable Software and Affected Versions: GiveWP – Donation Plugin and Fundraising Platform versions prior to 3.13.1 Description: The issue allows unauthorized modification of data due to a missing capability check on the handle request function. This makes it possible for...

6.5CVSS6.8AI score0.00466EPSS
Exploits0References11
OSV
OSV
added 2024/01/05 4:15 a.m.3 views

CVE-2024-22086

handlerequest in http.c in cherry through 4b877df has an sscanf stack-based buffer overflow via a long URI, leading to remote code execution...

9.8CVSS6.4AI score0.01098EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/01/05 12:0 a.m.7 views

PT-2024-19197 · Cherry · Cherry

Name of the Vulnerable Software and Affected Versions: cherry versions through 4b877df Description: The issue is related to a stack-based buffer overflow in the handle request function in http.c due to the use of sscanf with a long URI, which can lead to remote code execution. Recommendations: Fo...

9.8CVSS9.8AI score0.01098EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2023/10/17 8:41 a.m.21 views

Exploit for CVE-2023-45828

CVE-2023-45828 RumbleTalk Live Group Chat = 6.1.9 - Missin...

5.4CVSS9.1AI score0.00797EPSS
Exploits1
Prion
Prion
added 2023/08/14 1:15 a.m.15 views

Directory traversal

An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the "zola serve" command, allows directory traversal. The handlerequest function, used by the server to process HTTP requests, does not account for sequences of special path control...

5CVSS7.5AI score0.00921EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/12/13 1:15 a.m.3 views

CVE-2021-44847

A stack-based buffer overflow in handlerequest function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 caused by an improper length calculation during the handling of received network packets allows remote attackers to crash the process or potentially execute arbitrary code via...

9.8CVSS8.1AI score0.03954EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/12/13 12:0 a.m.36 views

TokTok c-toxcore 缓冲区错误漏洞

c-toxcore is a peer-to-peer serverless instant messenger designed to make security and privacy easier for the average user. A buffer error vulnerability in TokTok c-toxcore, which stems from a stack-based buffer overflow in the handlerequest function in DHT.c caused by improperly calculating the...

9.8CVSS9.1AI score0.03954EPSS
Exploits1References5
CNVD
CNVD
added 2018/11/29 12:0 a.m.6 views

OpenWrt and LEDE Cross-Site Scripting Vulnerabilities

Both OpenWrt and LEDE are Linux operating systems for embedded devices. The systems are capable of providing fully writable file systems and package management. A cross-site scripting vulnerability exists in the 'cgihandlerequest' function in OpenWrt versions 18.06.1 and earlier and LEDE versions...

6.1CVSS6AI score0.00663EPSS
Exploits1References1
Rows per page
Query Builder