Lucene search
K

58 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:11 a.m.9 views

CVE-2019-11537

In osTicket before 1.12, XSS exists via /upload/file.php, /upload/scp/users.php?do=import-users, and /upload/scp/ajax.php/users/import if an agent manager user uploads a crafted .csv file to the User Importer, because file contents can appear in an error message. The XSS can lead to local file...

6.1CVSS5.8AI score0.04622EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:59 a.m.9 views

CVE-2020-7239

The conversation-watson plugin before 0.8.21 for WordPress has a DOM-based XSS vulnerability that is executed when a chat message containing JavaScript is sent...

6.1CVSS6.1AI score0.01371EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-14718

Malware in sbrugna...

6.1CVSS6.3AI score0.00671EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-1507

Malware in sbrugna...

5CVSS6.4AI score0.01997EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-1602

Malware in sbrugna...

2.1CVSS7.3AI score0.00729EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-1408

Malware in sbrugna...

2.6CVSS6.4AI score0.01333EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-3408

Malware in sbrugna...

7.5CVSS6.4AI score0.01126EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-3352

Malware in sbrugna...

7.8CVSS6.4AI score0.01978EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-0408

Malware in sbrugna...

7.5CVSS6.4AI score0.02762EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-6734

Malware in sbrugna...

7.5CVSS6.1AI score0.17415EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-9979

Malware in sbrugna...

4.3CVSS4.9AI score0.00664EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.20 views

EUVD-2020-27264

Malware in sbrugna...

8.8CVSS8.2AI score0.04264EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-2311

Malware in sbrugna...

5CVSS6AI score0.01714EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2025/06/23 8:41 a.m.8 views

CVE-2025-48705

An issue was discovered in COROS PACE 3 through 3.0808.0. Due to a NULL pointer dereference vulnerability, sending a crafted BLE message forces the device to reboot...

7.5CVSS7AI score0.00446EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:15 a.m.5 views

CVE-2023-26238

An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to enable or disable defensive capabilities by sending a crafted message to a named pipe...

5.5CVSS6.8AI score0.00163EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:0 a.m.12 views

CVE-2023-47610

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion EHS5/6/8 that could allow a remote unauthenticated attacker to execute arbitrary code on the targeted system by sending a specially crafted SMS message...

9.8CVSS8AI score0.01694EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/07 7:14 p.m.20 views

CVE-2025-46719

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.6.6, a vulnerability in the way certain html tags in chat messages are rendered allows attackers to inject JavaScript code into a chat transcript. The JavaScript code will be...

6.4CVSS6.8AI score0.00449EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/17 4:7 p.m.8 views

CVE-2025-2830

By crafting a malformed file name for an attachment in a multipart message, an attacker can trick Thunderbird into including a directory listing of /tmp when the message is forwarded or edited as a new message. This vulnerability could allow attackers to disclose sensitive information from the...

6.1CVSS6AI score0.00313EPSS
Exploits0References6
OSV
OSV
added 2025/04/15 3:16 p.m.8 views

CVE-2025-2830

By crafting a malformed file name for an attachment in a multipart message, an attacker can trick Thunderbird into including a directory listing of /tmp when the message is forwarded or edited as a new message. This vulnerability could allow attackers to disclose sensitive information from the...

6.3CVSS6.4AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/13 6:4 p.m.5 views

CVE-2025-26659

SAP NetWeaver Application Server ABAP does not sufficiently encode user-controlled inputs, leading to DOM-basedCross-Site Scripting XSS vulnerability. This allows an attacker with no privileges, to craft a malicious web message that exploits WEBGUI functionality. On successful exploitation, the...

6.1CVSS5.9AI score0.00221EPSS
Exploits0References1
Rows per page
Query Builder