Lucene search
+L

350 matches found

Prion
Prion
added 2023/08/08 10:15 a.m.17 views

Out-of-bounds

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 7. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted DFT files. This could allow an attacker to execute code in the context of the curre...

4.4CVSS7.6AI score0.00219EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/18 8:18 p.m.9 views

CVE-2023-22022

...

6.5CVSS6.5AI score0.0048EPSS
Exploits0References1
Prion
Prion
added 2023/05/14 12:15 p.m.26 views

Sql injection

A vulnerability classified as critical was found in SourceCodester Lost and Found Information System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=items/manageitem of the component GET Parameter Handler. The manipulation of the argument id leads to sql...

6.5CVSS9.7AI score0.0082EPSS
Exploits1References3Affected Software1
Openbugbounty
Openbugbounty
added 2023/04/23 5:47 p.m.8 views

gayanwathsala.com Cross Site Scripting vulnerability OBB-3271260

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

5.9AI score
Exploits0
HackRead
HackRead
added 2023/04/19 1:24 a.m.15 views

Goldoson Android Malware Found in 60 Apps with 100M Downloads

By Deeba Ahmed The malware was identified by cybersecurity researchers at McAfee. This is a post from HackRead.com Read the original post: Goldoson Android Malware Found in 60 Apps with 100M Downloads...

6.7AI score
Exploits0
Vulnrichment
Vulnrichment
added 2023/04/18 7:54 p.m.17 views

CVE-2023-21999

...

3.6CVSS6.8AI score0.00271EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/18 7:54 p.m.9 views

CVE-2023-21926

...

5.5CVSS5.6AI score0.00246EPSS
Exploits0References1
Chainguard
Chainguard
added 2023/04/13 5:53 p.m.5 views

GHSA-CJR9-MR35-7XH6 vulnerabilities

Vulnerabilities for packages: spicedb...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/03/22 12:0 a.m.10 views

PT-2023-11940 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It appears to be a notification about a rejected candidate number from the National...

6.2AI score
Exploits0References2
Prion
Prion
added 2023/03/17 7:15 a.m.16 views

Sql injection

A vulnerability has been found in SourceCodester Automatic Question Paper Generator System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file admin/courses/viewcourse.php of the component GET Parameter Handler. The manipulation of the argument i...

6.5CVSS9.7AI score0.00829EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2023/03/10 11:47 p.m.31 views

Crossplane-runtime contains Improper Input Validation via Compositions

Summary Fuzz testing, by Ada Logics and sponsored by the CNCF, identified a vulnerability in the fieldpath package from crossplane/crossplane-runtime that an already highly privileged Crossplane user able to create or update Compositions could leverage to cause an out of memory panic in Crossplan...

6.2CVSS5.5AI score0.00678EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/02 6:7 p.m.16 views

CVE-2023-1156 SourceCodester Health Center Patient Record Management System fecalysis_form.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Health Center Patient Record Management System 1.0. This vulnerability affects unknown code of the file admin/fecalysisform.php. The manipulation of the argument itrno leads to cross site scripting. The attack can be initiated...

4CVSS6.6AI score0.00562EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.5 views

SUSE CVE-2011-1407

The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity...

7.5CVSS7.9AI score0.03802EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/01/17 11:35 p.m.23 views

CVE-2023-21854

...

7.5CVSS8.3AI score0.00517EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/15 8:58 a.m.25 views

CVE-2014-125078 yanheven console horizon.instances.js cross site scripting

A vulnerability was found in yanheven console and classified as problematic. Affected by this issue is some unknown functionality of the file horizon/static/horizon/js/horizon.instances.js. The manipulation leads to cross site scripting. The attack may be launched remotely. The patch is identifie...

4CVSS5.2AI score0.0052EPSS
Exploits0References3
NVD
NVD
added 2023/01/08 5:15 p.m.26 views

CVE-2021-4309

A vulnerability, which was classified as problematic, has been found in 01-Scripts 01ACP. This issue affects some unknown processing. The manipulation of the argument $SERVER'SCRIPTNAME' leads to cross site scripting. The attack may be initiated remotely. The identifier of the patch is...

6.1CVSS4.5AI score0.00519EPSS
Exploits0References3
F5 Networks
F5 Networks
added 2023/01/04 12:39 a.m.30 views

K92859602: BIG-IP TMM iRules vulnerability CVE-2016-5024

Security Advisory Description Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1 and 12.1.x before 12.1.2, when configured to parse RADIUS messages via an iRule, allow remote attackers to cause a denial of service Traffic Management Microkernel restart via crafted network traffic...

5.9CVSS5.9AI score0.01837EPSS
Exploits0Affected Software10
Vulnrichment
Vulnrichment
added 2022/12/16 12:0 a.m.5 views

CVE-2022-20533

In getSlice of WifiSlice.java, there is a possible way to connect a new WiFi network from the guest mode due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

4.1AI score0.00109EPSS
Exploits0References1
Prion
Prion
added 2022/12/15 9:15 p.m.14 views

Cross site scripting

A vulnerability was found in collective.task up to 3.0.8. It has been classified as problematic. This affects the function renderCell/AssignedGroupColumn of the file src/collective/task/browser/table.py. The manipulation leads to cross site scripting. It is possible to initiate the attack remotel...

5.8CVSS6AI score0.00542EPSS
Exploits0References3Affected Software1
Openbugbounty
Openbugbounty
added 2022/11/02 3:49 a.m.13 views

buergerwelle.de Cross Site Scripting vulnerability OBB-3031510

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder