Lucene search
+L

10852 matches found

Nuclei
Nuclei
added yesterday57 views

Citrix ADC/Gateway - Cross-Site Scripting

Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 contain a cross-site scripting vulnerability due to improper input validation. id: CVE-2020-8191 info: name: Citrix...

6.1CVSS6.4AI score0.22941EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-45201

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Gis Informatics Engineering Consulting Laboratory R&D and Software Services Inc. GisLab Laboratory Management System allows SQL Injection. This issue affects GisLab Laboratory Management System: fr...

9.8CVSS5.6AI score0.0026EPSS
Exploits0References1
EUVD
EUVD
added 2 days ago9 views

EUVD-2026-45102

OpenClaw versions before 2026.5.28 Bot Framework contains an improper input validation vulnerability that allows lower-trust callers to expose bot tokens and credentials by failing to properly validate serviceUrl parameters. Attackers can supply malicious serviceUrl values through configured inpu...

6.5CVSS6.1AI score0.00308EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 3 days ago9 views

Envoy Gateway: Authentication Bypass via Improper Input Validation in EnvoyExtensionPolicy Lua Allows Secret Disclosure

Impact The toabsolutenormalizedpath function security.lua:28-43 does not collapse redundant path separators // → /. On Linux, //etc/passwd is equivalent to /etc/passwd POSIX path semantics, but iscriticalpath fails to match the double-slash variant because //etc/passwd does not start with /etc/...

6.1AI score0.0004EPSS
Exploits0References2Affected Software1
OSV
OSV
added 3 days ago4 views

CVE-2026-47729 Squid: Memory disclosure in FTP gateway

Squid is a caching proxy for the Web. Prior to 7.6, due to an improper validation of syntactic correctness of input in the FTP gateway src/clients/FtpGateway.cc, Squid is vulnerable to an out-of-bounds read: when a listing entry date in the TypeA or TypeB directory-listing formats is not followed...

6.5CVSS6.6AI score0.01907EPSS
Exploits1References7
NVD
NVD
added 4 days ago6 views

CVE-2026-20153

As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. The...

7.5CVSS0.00252EPSS
Exploits0References1
EUVD
EUVD
added 4 days ago8 views

EUVD-2026-44719

As part of Cisco's ongoing commitment to proactive security and product quality, the Cisco RoomOS engineering team has conducted a comprehensive internal security review. This review resulted in a software hardening release that addresses multiple internally discovered vulnerabilities. The...

7.5CVSS6.1AI score0.00252EPSS
Exploits0References1
EUVD
EUVD
added 4 days ago5 views

EUVD-2026-44706

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in HCL Notes from HCL Software allows reflected Cross-Site Scripting XSS. Successful exploitation allows an attacker to execute arbitrary JavaScript in the context of another user. This issue affects...

5.5CVSS6.3AI score0.00258EPSS
Exploits0References1
EUVD
EUVD
added 4 days ago6 views

EUVD-2026-44522

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require use...

7.5CVSS6.1AI score0.00407EPSS
Exploits0References2
EUVD
EUVD
added 4 days ago7 views

EUVD-2026-44517

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files and directories outside the intended access scope. Exploitation of this issue requires user...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References2
EUVD
EUVD
added 4 days ago8 views

EUVD-2026-44561

Illustrator is affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed...

9.3CVSS6.5AI score0.00426EPSS
Exploits0References2
EUVD
EUVD
added 4 days ago5 views

EUVD-2026-44521

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require use...

6.2CVSS6.1AI score0.00154EPSS
Exploits0References2
EUVD
EUVD
added 4 days ago5 views

EUVD-2026-44523

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. Exploitation of this issue does not require user...

6.8CVSS6.1AI score0.00159EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 4 days ago10 views

PT-2026-60220

Name of the Vulnerable Software and Affected Versions Cisco RoomOS affected versions not specified Description Improper input validation occurs within the software, which is a failure to properly verify that input data is correct and safe before processing it. Recommendations At the moment, there...

7.5CVSS6.1AI score0.00252EPSS
Exploits0References3
NVD
NVD
added 5 days ago9 views

CVE-2026-48352

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require use...

7.5CVSS0.00407EPSS
Exploits0References1
NVD
NVD
added 5 days ago13 views

CVE-2026-48334

Illustrator is affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed...

9.6CVSS0.00426EPSS
Exploits0References1
NVD
NVD
added 5 days ago10 views

CVE-2026-48302

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require use...

6.2CVSS0.00154EPSS
Exploits0References1
NVD
NVD
added 5 days ago9 views

CVE-2026-48312

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. Exploitation of this issue does not require user...

6.8CVSS0.00159EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 5 days ago6 views

CVE-2026-48312

CAI Content Credentials is affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized write access. Exploitation of this issue does not require user...

6.8CVSS6.1AI score0.00159EPSS
Exploits0References2
CVE
CVE
added 5 days ago13 views

CVE-2026-48351

CVE-2026-48351 concerns CAI Content Credentials and describes an Improper Input Validation (CWE-20) vulnerability that could cause an application denial-of-service. The issue is triggered by invalid input processing and can crash the application, resulting in a DoS condition. Exploitation does no...

7.5CVSS6.1AI score0.00407EPSS
Exploits0References1Affected Software3
Rows per page
Query Builder