Lucene search
K

112 matches found

NVD
NVD
added yesterday9 views

CVE-2026-14193

DVP80ES300T with Improper Validation of Array Index Vulnerability...

7.5CVSS0.00263EPSS
Exploits0References1
Cvelist
Cvelist
added yesterday29 views

CVE-2026-14193 DVP80ES300T - Improper Validation of Array Index Vulnerability

DVP80ES300T with Improper Validation of Array Index Vulnerability...

7.5CVSS0.00263EPSS
Exploits0References1
OSV
OSV
added 3 days ago4 views

PYSEC-2026-396 llama-index-core Command Injection vulnerability

A command injection vulnerability exists in the run-llama/llamaindex repository, specifically within the safeeval function. Attackers can bypass the intended security mechanism, which checks for the presence of underscores in code generated by LLM, to execute arbitrary code. This is achieved by...

9.8CVSS8.1AI score0.02862EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.8 views

Altium 365 访问控制错误漏洞

Altium 365 is a product design and development platform provided by the American company Altium. Altium 365 has a security vulnerability related to access control, which stems from the lack of authentication. This vulnerability could allow unauthenticated attackers to read, inject, modify, or...

10CVSS5.8AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/28 5:30 p.m.31 views

CVE-2026-5003 PromtEngineer localGPT Web api_server.py handle_index information disclosure

A vulnerability was found in PromtEngineer localGPT up to 4d41c7d1713b16b216d8e062e51a5dd88b20b054. This affects the function handleindex of the file ragsystem/apiserver.py of the component Web Interface. Performing a manipulation results in information disclosure. It is possible to initiate the...

6.9CVSS0.00311EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.5 views

PT-2026-27439

SQL injection in Solicitante::resetaSenha in esiclivre/esiclivre v0.2.2 and earlier allows unauthenticated remote attackers to gain unauthorized access to sensitive information via the cpfcnpj parameter in /reset/index.php...

5.9AI score0.00514EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2026/01/14 12:0 a.m.176 views

📄 Control Web Panel 0.9.8.1208 Remote Code Execution

Control Web Panel CWP versions less than or equal to 0.9.8.1208 are vulnerable to unauthenticated OS command injection. User input passed via the "key" GET parameter to /admin/index.php when the "api" parameter is set is not properly sanitized before being used to execute OS commands. This can be...

8.1AI score0.01186EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.7 views

CVE-2021-22333

There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions...

10CVSS7.1AI score0.00917EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/30 5:2 a.m.2 views

CVE-2025-15221 SohuTV CacheCloud AppDataMigrateController.java index cross site scripting

A flaw has been found in SohuTV CacheCloud up to 3.2.0. This vulnerability affects the function index of the file src/main/java/com/sohu/cache/web/controller/AppDataMigrateController.java. This manipulation causes cross site scripting. Remote exploitation of the attack is possible. The exploit ha...

5.1CVSS5.3AI score0.002EPSS
Exploits1References4
CVE
CVE
added 2025/12/30 5:2 a.m.7 views

CVE-2025-15221

CVE-2025-15221 affects SohuTV CacheCloud up to version 3.2.0. The flaw resides in the index function of AppDataMigrateController.java (src/main/java/com/sohu/cache/web/controller/AppDataMigrateController.java), enabling cross-site scripting. Remote exploitation is possible, and an exploit has bee...

5.4CVSS5.3AI score0.002EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.2 views

Siemens SIMATIC Devices Improper Validation of Array Index (CVE-2024-43858)

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix array-index-out-of-bounds in diFree This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

7.8CVSS6.3AI score0.00234EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/13 4:15 p.m.9 views

CVE-2025-7707 World-Writable NLTK Cache Directory Vulnerability in run-llama/llama_index

The llamaindex library version 0.12.33 sets the NLTK data directory to a subdirectory of the codebase by default, which is world-writable in multi-user environments. This configuration allows local users to overwrite, delete, or corrupt NLTK data files, leading to potential denial of service, dat...

7.1CVSS0.00168EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-1687

Malware in sbrugna...

9.3CVSS7.3AI score0.06136EPSS
Exploits1References65
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-0256

Malware in sbrugna...

2.1CVSS6.6AI score0.0045EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-0496

Malware in sbrugna...

7.5CVSS6AI score0.0537EPSS
Exploits2References37
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-22143

Malware in sbrugna...

9.8CVSS9.2AI score0.01087EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-14815

Malware in sbrugna...

7.8CVSS7.6AI score0.00267EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-7368

Malware in sbrugna...

5.3CVSS5.5AI score0.00862EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1104

Malware in sbrugna...

4.6CVSS6.1AI score0.00378EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26468

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References5
Rows per page
Query Builder