Lucene search
K

3385 matches found

AlpineLinux
AlpineLinux
added 2025/04/03 1:34 p.m.9 views

CVE-2025-3155

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment...

7.4CVSS7.3AI score0.10598EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/04/03 9:54 a.m.16 views

CVE-2025-30878

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.2...

9.1CVSS7.2AI score0.00554EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:48 a.m.10 views

CVE-2025-30882

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...

7.5CVSS7.2AI score0.00526EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:47 a.m.8 views

CVE-2025-30901

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.1CVSS7.2AI score0.00761EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:47 a.m.8 views

CVE-2025-30886

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...

10CVSS7.3AI score0.00465EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/03 9:44 a.m.11 views

CVE-2025-30880

Missing Authorization vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 2.9.2...

7.5CVSS7.2AI score0.00435EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.3 views

Yelp 安全漏洞

Yelp is a website by Yelp Inc. where users rate restaurants and other establishments. A security vulnerability exists in Yelp that originates in the Gnome User Help application that allows the help documentation to execute arbitrary scripts, potentially leading to the disclosure of user files...

7.4CVSS7.5AI score0.10598EPSS
Exploits1References4
FreeBSD
FreeBSD
added 2025/04/03 12:0 a.m.6 views

Yelp -- arbitrary file read

[email protected] reports: A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment...

7.4CVSS7.6AI score0.10598EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/04/03 12:0 a.m.6 views

Yelp -- arbitrary file read

[email protected] reports: A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment...

7.4CVSS7.6AI score0.10598EPSS
Exploits1References1
OSV
OSV
added 2025/04/01 6:15 a.m.1 views

CVE-2025-30882

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk allows Path Traversal. This issue affects JS Help Desk: from n/a through 2.9.1...

7.5CVSS7.3AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/01 6:15 a.m.1 views

CVE-2025-30882

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...

7.5CVSS7.2AI score0.00526EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 6:15 a.m.1 views

CVE-2025-30901

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk allows PHP Local File Inclusion. This issue affects JS Help Desk: from n/a through 2.9.2...

8.1CVSS5.8AI score0.00761EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/01 6:15 a.m.0 views

CVE-2025-30886

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...

10CVSS7.3AI score0.00465EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 6:15 a.m.3 views

CVE-2025-30886

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk allows SQL Injection. This issue affects JS Help Desk: from n/a through 2.9.2...

10CVSS7.3AI score0.00465EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/01 6:15 a.m.1 views

CVE-2025-30901

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.1CVSS7.2AI score0.00761EPSS
Exploits0References3
NVD
NVD
added 2025/04/01 6:15 a.m.12 views

CVE-2025-30882

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in JoomSky JS Help Desk js-support-ticket allows Path Traversal.This issue affects JS Help Desk: from n/a through = 2.9.1...

7.5CVSS0.00526EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 6:15 a.m.17 views

CVE-2025-30886

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in JoomSky JS Help Desk js-support-ticket allows SQL Injection.This issue affects JS Help Desk: from n/a through = 2.9.2...

10CVSS0.00465EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 6:15 a.m.15 views

CVE-2025-30901

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in JoomSky JS Help Desk js-support-ticket allows PHP Local File Inclusion.This issue affects JS Help Desk: from n/a through = 2.9.2...

8.1CVSS0.00761EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 6:15 a.m.1 views

CVE-2025-30880

Missing Authorization vulnerability in JoomSky JS Help Desk allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects JS Help Desk: from n/a through 2.9.2...

7.5CVSS7.3AI score0.00435EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/01 6:15 a.m.3 views

CVE-2025-30880

Missing Authorization vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through = 2.9.2...

7.5CVSS7.2AI score0.00435EPSS
Exploits0References3
Rows per page
Query Builder