Lucene search
K

122 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2053

Malware in sbrugna...

5CVSS6.2AI score0.0198EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27218

Malicious code in bioql PyPI...

5.1CVSS6.4AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 3:19 a.m.8 views

CVE-2025-43777

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.1CVSS6.8AI score0.00216EPSS
Exploits0References1
OSV
OSV
added 2025/09/09 3:30 a.m.3 views

GHSA-9VWQ-J6GQ-W9XH Liferay Portal exposes 500 status when attempting login with a deleted client secret

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.1CVSS6.9AI score0.00216EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/09/09 3:30 a.m.8 views

Liferay Portal exposes 500 status when attempting login with a deleted client secret

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.3CVSS6.9AI score0.00216EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/09 3:15 a.m.3 views

CVE-2025-43777

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.3CVSS5.8AI score0.00216EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/09 3:0 a.m.2 views

CVE-2025-43777

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.1CVSS6.4AI score0.00216EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/09 3:0 a.m.8 views

CVE-2025-43777

Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.9, 2025.Q1.0 through 2025.Q1.16, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13 and 2024.Q1.1 through 2024.Q1.19 exposes "Internal Server Error" in the response body when a...

5.1CVSS0.00216EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 3:0 a.m.22 views

CVE-2025-43777

CVE-2025-43777 affects Liferay Portal 7.4.0–7.4.3.132 and Liferay DXP versions 2025.Q1.0–2025.Q2.9 (and earlier 2024.Q1.1–2024.Q4.7, 2024.Q2.0–2024.Q2.13, 2024.Q3.0–2024.Q3.13). The issue: an Internal Server Error is exposed in the login response when a request uses a deleted Client Secret. Root ...

5.3CVSS6.4AI score0.00216EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2025/09/09 12:0 a.m.4 views

Liferay Portal和Liferay DXP 安全漏洞

Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...

5.3CVSS6.5AI score0.00216EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.6 views

PT-2025-36566

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.4.0 through 7.4.3.132 Liferay DXP versions 2024.Q1.1 through 2024.Q1.19 Liferay DXP versions 2024.Q2.0 through 2024.Q2.13 Liferay DXP versions 2024.Q3.0 through 2024.Q3.13 Liferay DXP versions 2024.Q4.0 through...

5.1CVSS6.5AI score0.00216EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/08/15 11:42 p.m.19 views

CVE-2025-55194

Part-DB is an open source inventory management system for electronic components. Prior to version 1.17.3, any authenticated user can upload a profile picture with a misleading file extension e.g., .jpg.txt, resulting in a persistent 500 Internal Server Error when attempting to view or edit that...

5.7CVSS7AI score0.00324EPSS
Exploits1References1
OSV
OSV
added 2025/08/13 10:46 p.m.19 views

CVE-2025-55194 Part-DB Persistent Denial of Service via Uncaught Exception from Misleading File Extension in Avatar Upload

Part-DB is an open source inventory management system for electronic components. Prior to version 1.17.3, any authenticated user can upload a profile picture with a misleading file extension e.g., .jpg.txt, resulting in a persistent 500 Internal Server Error when attempting to view or edit that...

5.7CVSS6.7AI score0.00324EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2025/07/08 10:31 p.m.455 views

Exploit for CVE-2025-49132

CVE-2025-49132-poc I made this poc for CVE-2025-49132https...

10CVSS7.9AI score0.13105EPSS
Exploits28
NVD
NVD
added 2025/03/20 10:15 a.m.8 views

CVE-2024-11040

Rejected reason: REJECT DO NOT USE THIS CVE ID NUMBER. The Rejected CVE Record is a duplicate of CVE-2024-8939. Notes: All CVE users should reference CVE-2024-8939 instead of this CVE Record. All references and descriptions in this candidate have been removed to prevent accidental usage...

Exploits0
Vulnrichment
Vulnrichment
added 2025/03/20 10:10 a.m.8 views

CVE-2024-11040

...

7.6AI score
Exploits0
CVE
CVE
added 2025/03/20 10:10 a.m.53 views

CVE-2024-11040

CVE-2024-11040 entry is rejected and not used; duplicate of CVE-2024-8939.

7.5AI score
Exploits0
Citrix
Citrix
added 2024/10/07 12:0 a.m.7 views

Hotfix XS82ECU1074 - For Citrix Hypervisor 8.2 Cumulative Update 1

Who Should Install This Hotfix? This is a hotfix for customers running Citrix Hypervisor 8.2 Cumulative Update 1. Note: This hotfix is available only to customers on theCustomer Success Servicesprogram. Where To Get This Hotfix Download Citrix Hypervisor 8.2 Cumulative Update 1 hotfixes from...

7.2AI score
Exploits0
Citrix
Citrix
added 2024/07/13 12:0 a.m.9 views

Applications in StoreFront Fail to Enumerate

When using Citrix Receiver running in Mac 11 to log on to StoreFront, the applications fail to enumerate. An internal server error occurs in the client device. The following is the log trace of the issue in StoreFront server: Log Name: Citrix Delivery ServicesSource: WebApplicationDate: 06/02/201...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 5 : kdelibs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kdelibs: kssl incorrect verification of SSL certificate with NUL in subjectAltName CVE-2009-2702 - kf5-ki...

5.5CVSS6.5AI score0.0198EPSS
Exploits0References3
Rows per page
Query Builder