Lucene search
K

72 matches found

Positive Technologies
Positive Technologies
added 4 days ago10 views

PT-2026-57268

Name of the Vulnerable Software and Affected Versions Snipe-IT versions prior to 8.6.0 Description An authenticated user can silently cancel pending asset requests of another user due to insufficient authorization. This occurs when the system processes the cancel by admin URL path segment in the...

5.3CVSS6.1AI score0.002EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/23 12:0 a.m.9 views

PT-2026-51616

Name of the Vulnerable Software and Affected Versions Snipe-IT affected versions not specified Description An improper access control issue exists in the 'GET /api/v1/object/selectlist' API endpoint due to a missing authorization check. Any authenticated user, regardless of their assigned...

7.1CVSS6AI score0.00385EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.13 views

Snipe-IT 输入验证错误漏洞

Snipe-IT is a set of open-source IT asset/license management systems developed by Grokability. Versions of Snipe-IT prior to 8.4.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from the unauthorized storage of HTTP Referer headers in session variables,...

7.1CVSS5.8AI score0.00163EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/04/16 2:37 p.m.105 views

Exploit for CVE-2025-15602

CVE-2025-15602-PoC CVE-2025-15602-PoC is a proof of concept f...

8.8CVSS5.8AI score0.0046EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/02 12:25 p.m.8 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring, IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service (CVE-2026-2327)

Summary Node.js module markdown-it is used by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container DesignerAuthoring, IntegrationServer and IntegrationRuntime operands are vulnerable to regular expression denial of service ReDoS. This bulletin provides...

7.5CVSS5.9AI score0.00503EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/02/12 6:16 a.m.5 views

CVE-2026-2327

Versions of the package markdown-it from 13.0.0 and before 14.1.1 are vulnerable to Regular Expression Denial of Service ReDoS due to the use of the regex /+$/ in the linkify function. An attacker can supply a long sequence of characters followed by a non-matching character, which triggers...

7.5CVSS0.00503EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/28 7:14 p.m.4 views

Security Bulletin: Astronomer with IBM is vulnerable to cross-site scripting due to the markdown-it package (CVE-2025-7969)

Summary Markdown-it is used by Astronomer with IBM as part of markdown parsing functionality. Vulnerability Details CVEID:CVE-2025-7969 DESCRIPTION: Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in markdown-it allows Cross-Site Scripting...

6.9CVSS5.9AI score0.00229EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/03 10:14 p.m.19 views

Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for October 2025.

Summary Security vulnerabilities are addressed with IBM Business Automation Insights 24.0.0-IF005 and 25.0.0-IF002. These vulnerabilities have been also addressed in 24.0.1-IF005. Vulnerability Details CVEID:CVE-2025-36091 DESCRIPTION: IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and...

9.1CVSS8.1AI score0.05006EPSS
Exploits7Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-1054

Malware in sbrugna...

10CVSS6.4AI score0.03443EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-2162

Malware in sbrugna...

6.1CVSS5.4AI score0.00764EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-2443

Malware in sbrugna...

7.2CVSS3.9AI score0.00893EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-2605

Malware in sbrugna...

9.8CVSS9.3AI score0.03468EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-21649

Malware in sbrugna...

8.8CVSS8.8AI score0.01652EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-2332

Malware in sbrugna...

8CVSS6.5AI score0.00731EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-2448

Malware in sbrugna...

6.3CVSS6AI score0.00635EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-1056

Malware in sbrugna...

5CVSS6.4AI score0.01344EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-2203

Malware in sbrugna...

8.8CVSS5AI score0.00526EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-2585

Malware in sbrugna...

6.4CVSS6.3AI score0.00764EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-2184

Malware in sbrugna...

6.8CVSS6AI score0.00803EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21648

Malware in sbrugna...

6.5CVSS4.4AI score0.00757EPSS
Exploits0References3
Rows per page
Query Builder