Lucene search
K

3385 matches found

Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.3 views

PT-2025-14061 · Joomsky · Joomsky Js Help Desk

Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions n/a through 2.9.2 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a Path Traversal vulnerability. This vulnerability allows unauthorized access...

8.6CVSS9.2AI score0.00554EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

WordPress plugin JS Help Desk 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.1CVSS8.5AI score0.00761EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.4 views

PT-2025-14064 · Joomsky · Joomsky Js Help Desk

Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions 2.9.2 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows unauthorized SQL commands to be execute...

9.3CVSS9.5AI score0.00465EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.3 views

PT-2025-14065 · Joomsky · Joomsky Js Help Desk

Name of the Vulnerable Software and Affected Versions: JoomSky JS Help Desk versions 2.9.2 and earlier Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion', which allows PHP Local File Inclusio...

8.1CVSS9.3AI score0.00761EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.2 views

WordPress plugin JS Help Desk 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS8.5AI score0.00435EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/01 12:0 a.m.5 views

PT-2025-14062

Name of the Vulnerable Software and Affected Versions JoomSky JS Help Desk versions n/a through 2.9.2 Description The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations For versions n/a through...

7.5CVSS7.3AI score0.00435EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.3 views

WordPress plugin JS Help Desk 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

8.6CVSS8.4AI score0.00554EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/03/27 11:22 a.m.4 views

WordPress JS Help Desk plugin <= 2.9.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by LVT-tholv2k in WordPress Plugin JS Help Desk versions = 2.9.2...

7.5CVSS7AI score0.00435EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/27 11:20 a.m.5 views

WordPress JS Help Desk plugin <= 2.9.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by LVT-tholv2k in WordPress Plugin JS Help Desk versions = 2.9.2...

10CVSS8.1AI score0.00465EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/27 11:3 a.m.6 views

WordPress JS Help Desk plugin <= 2.9.1 - Arbitrary File Download vulnerability

Arbitrary File Download vulnerability discovered by LVT-tholv2k in WordPress Plugin JS Help Desk versions = 2.9.1...

7.5CVSS7AI score0.00526EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/27 11:1 a.m.4 views

WordPress JS Help Desk plugin <= 2.9.2 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by LVT-tholv2k in WordPress Plugin JS Help Desk versions = 2.9.2...

9.1CVSS7AI score0.00554EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/03/27 10:31 a.m.2 views

WordPress JS Help Desk plugin <= 2.9.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin JS Help Desk versions = 2.9.2...

8.1CVSS7AI score0.00761EPSS
Exploits0Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/25 7:27 a.m.2 views

Malicious code in cdn-icon-fetcher-help (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c71170b5cf713c4abd33856c7cabcf76ea0e5141bc79c5d3a7fd74568d978aad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/03/24 10:15 p.m.3 views

CVE-2025-2712

A vulnerability was found in Yonyou UFIDA ERP-NC 5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /help/top.jsp. The manipulation of the argument langcode leads to cross site scripting. The attack can be launched remotely. The exploi...

6.1CVSS3.6AI score
Exploits0References3
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.6 views

Yonyou UFIDA ERP-NC 代码注入漏洞

Yonyou UFIDA ERP-NC is a kind of Enterprise Resource Planning ERP software, which is mainly used for financial management, supply chain management, production management and customer relationship management of enterprises. Yonyou UFIDA ERP-NC suffers from a cross-site scripting vulnerability that...

6.1CVSS6.2AI score0.0079EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.3 views

Yonyou UFIDA ERP-NC 代码注入漏洞

Yonyou UFIDA ERP-NC is a kind of Enterprise Resource Planning ERP software, which is mainly used for financial management, supply chain management, production management and customer relationship management of enterprises. Yonyou UFIDA ERP-NC suffers from a cross-site scripting vulnerability, whi...

6.1CVSS6.2AI score0.00872EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.6 views

SolarWinds Web Help Desk < 12.8.5 Information Disclosure

The version of Solarwinds Web Help Desk installed on the remote host is prior to 12.8.5. It is, therefore, affected by a vulnerability. SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software. Note that...

5.5CVSS5.6AI score0.00268EPSS
Exploits0References2
Snyk
Snyk
added 2025/03/05 4:51 p.m.1 views

Embedded Malicious Code

Overview cdn-icon-fetcher-help is a Malicious package. Affected versions of this package are vulnerable to Embedded Malicious Code. Once this package is installed and executed, it downloads a Javascript file from a cdn-static-seven.vercel.app URL, which appears to be an image hosting site. Howeve...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49497

In the Linux kernel, the following vulnerability has been resolved: net: remove two BUG from skbchecksumhelp I have a syzbot report that managed to get a crash in skbchecksumhelp If syzbot can trigger these BUG, it makes sense to replace them with more friendly WARNONONCE since skbchecksumhelp ca...

5.5CVSS5.6AI score0.00246EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49497

In the Linux kernel, the following vulnerability has been resolved: net: remove two BUG from skbchecksumhelp I have a syzbot report that managed to get a crash in skbchecksumhelp If syzbot can trigger these BUG, it makes sense to replace them with more friendly WARNONONCE since skbchecksumhelp ca...

5.5CVSS6.2AI score0.00246EPSS
Exploits0References8
Rows per page
Query Builder