Lucene search
K

23 matches found

OSV
OSV
added 2026/04/24 3:16 p.m.7 views

DEBIAN-CVE-2026-31593

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU Reject synchronizing vCPU state to its associated VMSA if the vCPU has already been launched, i.e. if the VMSA has already been encrypted. On a host wit...

5.5CVSS5.3AI score0.00122EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/24 2:42 p.m.7 views

EUVD-2026-25486

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU Reject synchronizing vCPU state to its associated VMSA if the vCPU has already been launched, i.e. if the VMSA has already been encrypted. On a host wit...

5.4AI score0.00122EPSS
Exploits0References4
HackRead
HackRead
added 2025/08/12 7:28 p.m.7 views

Connex Credit Union Data Breach Affects 172,000 Members

Connex Credit Union breach exposes data of 172000 members, legal probe launched, experts urge victims to monitor accounts…...

7.3AI score
Exploits0
HackRead
HackRead
added 2025/04/23 10:14 a.m.9 views

M&S Cyberattack Disrupts Contactless Payments and Click & Collect Services

Marks & Spencer M&S cyberattack disrupts contactless payments and Click & Collect; investigation launched as retailer apologises and…...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2024/06/24 1:52 p.m.32 views

CVE-2024-4748 RCE in Cruddiy

The CRUDDIY project is vulnerable to shell command injection via sending a crafted POST request to the application server. The exploitation risk is limited since CRUDDIY is meant to be launched locally. Nevertheless, a user with the project running on their computer might visit a website which...

8.8CVSS0.01115EPSS
Exploits0References3
OSV
OSV
added 2024/06/24 1:52 p.m.21 views

CVE-2024-4748 RCE in Cruddiy

The CRUDDIY project is vulnerable to shell command injection via sending a crafted POST request to the application server. The exploitation risk is limited since CRUDDIY is meant to be launched locally. Nevertheless, a user with the project running on their computer might visit a website which...

8.8CVSS5.9AI score0.01115EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/04/16 6:31 p.m.12 views

CVE-2024-3878 Tenda F1202 webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow

A vulnerability, which was classified as critical, has been found in Tenda F1202 1.2.0.20408. Affected by this issue is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter. The manipulation of the argument page leads to stack-based buffer overflow. The attack may be...

9CVSS6.9AI score0.01683EPSS
Exploits1References4
CNVD
CNVD
added 2024/03/15 12:0 a.m.3 views

Tenda AC18 Stack Buffer Overflow Vulnerability

Tenda AC18 is a dual-band wireless router launched by Shenzhen Jixiang Tenda Technology Co. in July 2016, mainly for villas and large home users, supporting 2.4GHz and 5GHz dual-band, with a maximum transmission rate of 1900Mbps. Tenda AC18 suffers from a stack buffer overflow vulnerability that...

9CVSS7.6AI score0.01684EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/10/28 1:31 p.m.21 views

CVE-2023-5835 hu60t hu60wap6 ubbparser.php markdown cross site scripting

A vulnerability classified as problematic was found in hu60t hu60wap6. Affected by this vulnerability is the function markdown of the file src/class/ubbparser.php. The manipulation leads to cross site scripting. The attack can be launched remotely. This product does not use versioning. This is wh...

4CVSS6.1AI score0.00385EPSS
Exploits0References3
Prion
Prion
added 2022/12/05 10:15 a.m.14 views

Design/Logic Flaw

A vulnerability was found in SpringBootCMS and classified as critical. Affected by this issue is some unknown functionality of the component Template Management. The manipulation leads to injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

5.8CVSS7.2AI score0.007EPSS
Exploits1References2
NVD
NVD
added 2022/08/05 9:15 p.m.24 views

CVE-2022-2682

A vulnerability, which was classified as problematic, has been found in SourceCodester Alphaware Simple E-Commerce System. Affected by this issue is some unknown functionality of the file stockin.php. The manipulation of the argument id with the input '"alert/xss/ leads to cross site scripting. T...

5.4CVSS0.00497EPSS
Exploits1References2
NVD
NVD
added 2022/06/30 5:15 a.m.18 views

CVE-2017-20125

A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. Affected by this vulnerability is an unknown functionality of the file /roomtype-details.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has...

9.8CVSS0.01095EPSS
Exploits1References2
CNVD
CNVD
added 2022/06/20 12:0 a.m.17 views

Microsoft DFSCoerce Domain Control Privilege Vulnerability

Windows Server is a server operating system for Windows introduced by Microsoft on April 24, 2003, with the Microsoft Windows Server System WSS at its core. Microsoft DFSCoerce has a domain control privilege exploit, which can be exploited by an attacker to request the certificate of a domain...

7.3AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/24 5:10 p.m.29 views

Missing SSH host key validation in Mac Plugin

Mac Plugin 1.1.0 and earlier does not use SSH host key validation when connecting to Mac Cloud host launched by the plugin. This lack of validation could be abused using a man-in-the-middle attack to intercept these connections to build agents. Mac Plugin 1.2.0 validates SSH host keys when...

7.4CVSS7AI score0.0057EPSS
Exploits0References5Affected Software1
HackRead
HackRead
added 2021/09/21 7:4 p.m.45 views

12 years jail for man who unlocked phones, defrauded AT&T of $200m

By Deeba Ahmed According to the US DoJ, Fahd remotely unlocked phones belonging to AT&T despite knowing that an investigation was launched against him. This is a post from HackRead.com Read the original post: 12 years jail for man who unlocked phones, defrauded AT&T of $200m...

4.3AI score
Exploits0
OSV
OSV
added 2021/01/07 2:15 p.m.4 views

CVE-2020-35112

If a user downloaded a file lacking an extension on Windows, and then "Open"-ed it from the downloads panel, if there was an executable file in the downloads directory with the same name but with an executable extension such as .bat or .exe that executable would have been launched instead. Note:...

8.8CVSS7.4AI score0.01289EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/08/28 12:0 a.m.377 views

Nessus Launched Plugin List

This plugin displays the list of launched plugins in a semicolon delimited list. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid112154; scriptversion"1.4"; scriptcvsdate"Date: 2018/09/24 10:11:01"; scriptnameenglish:"Nessus Launched Plugin List";...

5.4AI score
Exploits0
HackRead
HackRead
added 2018/06/27 10:9 p.m.50 views

Firefox Monitor tool informs users if they have been hacked

By Carolina The Firefox Monitor will be launched next week - The tool This is a post from HackRead.com Read the original post: Firefox Monitor tool informs users if they have been hacked...

1.9AI score
Exploits0
Citrix
Citrix
added 2017/08/07 12:0 a.m.11 views

Win + G Pop Up Citrix Receiver Launching Apps/Desktops

When launching published apps or desktops from a Windows 10 OS a green popup windows briefly appears prompting to press Win + G for the game bar or for the search bar...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

Generic Payload Handler

No description provided by source. $Id: handler.rb 11845 2011-02-28 03:22:40Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.1AI score
Exploits0
Rows per page
Query Builder