Lucene search
K

221 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-4948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus Desktop Bus setters, setZoneSetting...

5.5CVSS5.5AI score0.00118EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/09 12:0 a.m.8 views

SourceCodester Resort Reservation System 代码注入漏洞

The SourceCodester Resort Reservation System is an open-source resort reservation system developed by SourceCodester. Version 1.0 of the SourceCodester Resort Reservation System contains a code injection vulnerability. This vulnerability arises from incorrect handling of parameter IDs in the...

5.4CVSS5.7AI score0.00257EPSS
Exploits1References6
CVE
CVE
added 2026/03/05 7:20 p.m.16 views

CVE-2026-21621

CVE-2026-21621 affects the Hex.pm application (hexpm/hexpm). The vulnerability arises from the OAuth client_credentials flow in Elixir.HexpmWeb.API.OAuthController (validate_scopes_against_key/2), where a read-only API key (domain: api, resource: read) loses its scope and is issued a broad api sc...

7CVSS6AI score0.00323EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2025/12/09 12:0 a.m.4 views

Google Chrome Error Type Conversion Vulnerability

Google Chrome is a web browser developed by Google Inc. to provide users with a fast, secure and customizable web browsing experience. Google Chrome suffers from a mis-typed conversion vulnerability that originates from the presence of a mis-typed conversion in the loader, which can be exploited ...

8.8CVSS6.2AI score0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/12 7:18 p.m.2 views

EUVD-2025-143266

Malicious code in anita-hali-mis npm...

6.6AI score
Exploits0
Debian CVE
Debian CVE
added 2025/10/09 12:4 p.m.4 views

CVE-2025-11340

Removed by vendor...

7.7CVSS5.8AI score0.00349EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-28205

Malware in sbrugna...

5.3CVSS6.9AI score0.02983EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414417)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414417 advisory. Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions. Tenable h...

6.5CVSS7.2AI score0.03764EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/04 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a mis-typed amd-pstate global sysfs attribute, which could lead to a failure of control-flow integrity...

5.8AI score0.00128EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-4540

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.03037EPSS
Exploits0References27
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in mis-zt (npm)

The package mis-zt was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-26478 Malicious code in mis-zt (npm)

The package mis-zt was found to contain malicious code...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2021-26930

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provid...

7.8CVSS6.7AI score0.00348EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.7 views

The vulnerability of the ELMED MIS platform, due to deficiencies in access control mechanisms, allows unauthorized access by attackers, thereby compromising the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ELMED MIS platform is related to deficiencies in access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its confidentiality, integrity, and accessibility...

9.9CVSS5.5AI score
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2025/06/04 10:28 p.m.7 views

varnish: request smuggling attacks

A vulnerability was found in Varnish Cache. This vulnerability may allow request smuggling attacks, where a malicious actor can craft seemingly legitimate HTTP requests. This issue could result in an unspecified system caching incorrect content that can expose confidential information...

5.4CVSS5.7AI score0.00315EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/05/02 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly timed proc directory removal, which could lead to a race condition when modules are uninstalle...

5.5CVSS5.9AI score0.00155EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/04/13 9:2 a.m.11 views

CVE-2025-32541

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin WooCommerce Sales MIS Report woocommerce-mis-report allows Reflected XSS.This issue affects WooCommerce Sales MIS Report: from n/a through = 4.0.3...

7.1CVSS7.2AI score0.00374EPSS
Exploits0References1
NVD
NVD
added 2025/04/11 9:15 a.m.18 views

CVE-2025-32541

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin WooCommerce Sales MIS Report woocommerce-mis-report allows Reflected XSS.This issue affects WooCommerce Sales MIS Report: from n/a through = 4.0.3...

7.1CVSS0.00374EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/11 8:42 a.m.9 views

CVE-2025-32541 WordPress WooCommerce Sales MIS Report Plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin WooCommerce Sales MIS Report allows Reflected XSS. This issue affects WooCommerce Sales MIS Report: from n/a through 4.0.3...

7.1CVSS6.9AI score0.00374EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/11 8:42 a.m.25 views

CVE-2025-32541 WordPress WooCommerce Sales MIS Report Plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in infosoftplugin WooCommerce Sales MIS Report woocommerce-mis-report allows Reflected XSS.This issue affects WooCommerce Sales MIS Report: from n/a through = 4.0.3...

7.1CVSS0.00374EPSS
Exploits0References1
Rows per page
Query Builder