Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 3 days ago4 views

CVE-2026-48805

A flaw was found in Twig, a template language for PHP. Deprecated internal wrappers in the src/Resources/core.php file do not correctly forward the sandbox state. This allows legacy function calls, such as twigarraysome, to bypass security restrictions imposed by the sandbox. An attacker could...

9.1CVSS6AI score0.0027EPSS
Exploits0References2
OSV
OSV
added 2026/05/01 2:14 p.m.2 views

CVE-2026-31720 usb: gadget: f_uac1_legacy: validate control request size

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fuac1legacy: validate control request size faudiocomplete copies req-length bytes into a 4-byte stack variable: u32 data = 0; memcpy&data, req-buf, req-length; req-length is derived from the host-controlled USB reque...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-45156

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00598EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/01 12:0 a.m.13 views

PT-2024-6750 · Splunk · Splunk Cloud Platform +1

Name of the Vulnerable Software and Affected Versions: Splunk Enterprise versions prior to 9.2.2 Splunk Enterprise versions prior to 9.1.5 Splunk Enterprise versions prior to 9.0.10 Splunk Cloud Platform versions prior to 9.1.2312.109 Splunk Cloud Platform versions prior to 9.1.2308.207...

9CVSS7.9AI score0.00996EPSS
Exploits0References14
OpenSSL
OpenSSL
added 2022/09/29 12:0 a.m.53 views

Vulnerability in OpenSSL - Using a Custom Cipher with NID_undef may lead to NULL encryption

OpenSSL supports creating a custom cipher via the legacy EVPCIPHERmethnew function and associated function calls. This function was deprecated in OpenSSL 3.0 and application authors are instead encouraged to use the new provider mechanism in order to implement custom ciphers. OpenSSL versions 3.0...

7.3AI score0.02846EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2010/01/13 6:5 p.m.9 views

php: htmlspecialchars() insufficient checking of input for multi-byte encodings

The htmlspecialchars function in PHP before 5.2.12 does not properly handle 1 overlong UTF-8 sequences, 2 invalid ShiftJIS sequences, and 3 invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting XSS attacks by placing a crafted byte sequence before a special...

4.3CVSS5.7AI score0.06497EPSS
Exploits2References4
Rows per page
Query Builder