Lucene search
K

1427 matches found

RedhatCVE
RedhatCVE
added 2026/05/19 7:57 p.m.11 views

CVE-2026-8803

A flaw has been found in opensourcepos Open Source Point of Sale up to 3.4.2. Impacted is the function Login of the file app/Models/Employee.php of the component Employee Login. This manipulation causes use of weak hash. Remote exploitation of the attack is possible. The attack is considered to...

6.3CVSS5.3AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/18 7:59 p.m.14 views

CVE-2026-8741

A vulnerability has been found in EMQX up to 6.2.0. This affects an unknown function of the file apps/emqx/src/emqxpersistentsessionds.erl of the component QoS 2 PUBLISH Packet Handler. Such manipulation leads to race condition. The attack may be performed from remote. A high complexity level is...

3.1CVSS5AI score0.00282EPSS
Exploits1References1
NVD
NVD
added 2026/05/18 12:16 p.m.18 views

CVE-2026-8803

A flaw has been found in opensourcepos Open Source Point of Sale up to 3.4.2. Impacted is the function Login of the file app/Models/Employee.php of the component Employee Login. This manipulation causes use of weak hash. Remote exploitation of the attack is possible. The attack is considered to...

6.3CVSS0.00182EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.18 views

PT-2026-41671

Name of the Vulnerable Software and Affected Versions opensourcepos Open Source Point of Sale versions prior to 3.4.3 Description A flaw in the Employee Login component allows for the use of a weak hash. The issue is located in the Login function within the app/Models/Employee.php file. This...

6.3CVSS5.8AI score0.00182EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/05/17 10:30 p.m.8 views

CVE-2026-8767 vercel ai PR Branch Name Interpolation prettier-on-automerge.yml run os command injection

A vulnerability has been found in vercel ai up to 3.0.97. Impacted is the function run of the file .github/workflows/prettier-on-automerge.yml of the component PR Branch Name Interpolation. The manipulation leads to os command injection. The attack can be initiated remotely. The complexity of an...

5CVSS5.2AI score0.04261EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/05/17 8:15 a.m.41 views

CVE-2026-8741 EMQX QoS 2 PUBLISH Packet emqx_persistent_session_ds.erl race condition

A vulnerability has been found in EMQX up to 6.2.0. This affects an unknown function of the file apps/emqx/src/emqxpersistentsessionds.erl of the component QoS 2 PUBLISH Packet Handler. Such manipulation leads to race condition. The attack may be performed from remote. A high complexity level is...

3.1CVSS0.00282EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/05/17 12:0 a.m.22 views

PT-2026-41527

Name of the Vulnerable Software and Affected Versions EMQX versions prior to 6.2.0 Description A race condition exists in the QoS 2 PUBLISH Packet Handler component within the apps/emqx/src/emqx persistent session ds.erl file. This issue allows a remote attacker to trigger a race condition, which...

3.1CVSS5.8AI score0.00282EPSS
Exploits1References10
ATTACKERKB
ATTACKERKB
added 2026/05/15 1:41 a.m.13 views

CVE-2026-0438

A System Management Mode SMM handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially...

5.4CVSS6AI score0.00139EPSS
Exploits0References3
OSV
OSV
added 2026/05/12 5:16 p.m.17 views

ALPINE-CVE-2025-35979

Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some IntelR Processors within VMX non-root guest operation may allow an information disclosure. Unprivileged software adversary with an authenticated user combined with a...

6.8CVSS5.8AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/11 8:27 p.m.10 views

CVE-2026-8242

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high...

6.3CVSS5.2AI score0.00289EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/11 6:31 a.m.41 views

EUVD-2026-29036

A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysqlserver/mysqlserver.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requires...

6.3CVSS5AI score0.00389EPSS
Exploits0References9
OSV
OSV
added 2026/05/11 6:31 a.m.21 views

GHSA-JCQV-2G3V-GM88 bettercap Has an Integer Coercion Error in modules/mysql_server/mysql_server.go

A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysqlserver/mysqlserver.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requires...

6.3CVSS4.9AI score0.00389EPSS
Exploits0References10
EUVD
EUVD
added 2026/05/10 9:31 a.m.10 views

EUVD-2026-28991

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high...

6.3CVSS5.2AI score0.00289EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/10 8:15 a.m.9 views

CVE-2026-8242

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high...

6.3CVSS5.2AI score0.00289EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/10 8:15 a.m.18 views

CVE-2026-8242

Technical details about CVE-2026-8242 are not publicly available in the provided documents. Monitor for updates from the vendor and security advisories.

6.3CVSS5.2AI score0.00289EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/10 8:15 a.m.7 views

CVE-2026-8242 Industrial Application Software IAS Canias ERP Login RMI doAction response discrepancy

A vulnerability was found in Industrial Application Software IAS Canias ERP 8.03. The impacted element is the function doAction of the component Login RMI Interface. Performing a manipulation results in observable response discrepancy. The attack is possible to be carried out remotely. A high...

6.3CVSS5.2AI score0.00289EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/10 6:30 a.m.12 views

EUVD-2026-28984

A vulnerability was determined in Dotouch XproUPF 2.0.0-release-088aa7c4. Affected is an unknown function of the component UPF. This manipulation causes improper access controls. A high degree of complexity is needed for the attack. The exploitability is told to be difficult. The vendor was...

4.6CVSS5.2AI score0.00139EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/10 5:30 a.m.9 views

CVE-2026-8233

A vulnerability was determined in Dotouch XproUPF 2.0.0-release-088aa7c4. Affected is an unknown function of the component UPF. This manipulation causes improper access controls. A high degree of complexity is needed for the attack. The exploitability is told to be difficult. The vendor was...

4.6CVSS5.2AI score0.00139EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/10 5:30 a.m.16 views

CVE-2026-8233

CVE-2026-8233 concerns Dotouch XproUPF 2.0.0-release-088aa7c4 where an unknown UPF function manipulation leads to improper access controls. The description indicates a high attack complexity and requires adjacent access with low privileges and no user interaction. Impact is described as low for c...

4.6CVSS5.2AI score0.00139EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/10 5:30 a.m.9 views

CVE-2026-8233 Dotouch XproUPF access control

A vulnerability was determined in Dotouch XproUPF 2.0.0-release-088aa7c4. Affected is an unknown function of the component UPF. This manipulation causes improper access controls. A high degree of complexity is needed for the attack. The exploitability is told to be difficult. The vendor was...

4.6CVSS5.2AI score0.00139EPSS
Exploits0References3
Rows per page
Query Builder