Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:58 a.m.4 views

CVE-2018-19924

An issue was discovered in Sales & Company Management System SCMS through 2018-06-06. An email address can be modified in between the request for a validation code and the entry of the validation code, leading to storage of an XSS payload contained in the modified address...

6.1CVSS6.3AI score0.00707EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:34 a.m.4 views

CVE-2017-18459

cPanel before 62.0.17 allows arbitrary code execution during account modification SEC-220...

7.8CVSS7.8AI score0.00474EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-19264

Malware in sbrugna...

7.8CVSS7.7AI score0.00284EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-5512

Malware in sbrugna...

4CVSS7.8AI score0.11413EPSS
Exploits2References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-2838

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00971EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-34941

Malicious code in bioql PyPI...

6.8CVSS6.7AI score0.00271EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-7794

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.00298EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.12 views

PT-2025-26920 · WordPress · Vg Wort Metis

Name of the Vulnerable Software and Affected Versions: VG WORT METIS plugin for WordPress versions prior to 2.0.0 Description: The issue is related to unauthorized modification of data due to a missing capability check on the gutenberg save post function. This allows authenticated attackers with...

4.3CVSS6.9AI score0.00227EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 9:44 a.m.7 views

CVE-2024-21722

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...

6.3CVSS6.9AI score0.00512EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:52 a.m.7 views

CVE-2017-18427

In cPanel before 66.0.2, weak log-file permissions can occur after account modification SEC-289...

3.3CVSS7AI score0.00362EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/30 6:31 p.m.10 views

CVE-2024-9876 Application is vulnerable to Privilege escalation

: Modification of Assumed-Immutable Data MAID vulnerability in ABB ANC, ABB ANC-L, ABB ANC-mini.This issue affects ANC: through 1.1.4; ANC-L: through 1.1.4; ANC-mini: through 1.1.4...

8.5CVSS7.2AI score0.00229EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.8 views

PT-2025-18314 · Opencti · Opencti

Name of the Vulnerable Software and Affected Versions: OpenCTI versions 6.4.8 through 6.4.9 Description: The issue allows a user to bypass allow/deny lists and modify attributes that are intended to be unmodifiable. This includes toggling the external flag on/off, changing the own token value for...

6.3CVSS6.3AI score0.00202EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/04/30 12:0 a.m.4 views

PT-2025-18311 · Abb · Abb Anc-L +2

Name of the Vulnerable Software and Affected Versions: ABB ANC versions 1.1.4 and earlier ABB ANC-L versions 1.1.4 and earlier ABB ANC-mini versions 1.1.4 and earlier Description: The issue is related to the modification of assumed-immutable data, referred to as MAID. This problem affects various...

8.5CVSS6.3AI score0.00229EPSS
Exploits0References5
CNVD
CNVD
added 2025/04/11 12:0 a.m.12 views

Improper Access Control Vulnerability in Tenda FH1202 (CNVD-2025-07508)

The Tenda FH1202 is a wireless router from China's Tenda. An improper access control vulnerability exists in the Tenda FH1202. The vulnerability stems from an improper access control issue in the /goform/qossetting file, which could lead to unauthorized access or modification. An attacker could u...

6.9CVSS6.7AI score0.00597EPSS
Exploits1References1
CVE
CVE
added 2025/02/19 8:40 a.m.85 views

CVE-2025-1007

CVE-2025-1007 affects OpenVSX, specifically versions v0.9.0 through v0.20.0. The vulnerability arises in the /user/namespace/{namespace}/details API (and the related /user/namespace/{namespace}/details/logo) where a non-owner/non-contributor user can edit all namespace details (name, description,...

6.9CVSS6.3AI score0.00473EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/01/21 12:1 p.m.11 views

CVE-2024-57935 RDMA/hns: Fix accessing invalid dip_ctx during destroying QP

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dipctx during destroying QP If it fails to modify QP to RTR, dipctx will not be attached. And during detroying QP, the invalid dipctx pointer will be accessed...

5.5CVSS6.1AI score0.00172EPSS
Exploits0References5
OSV
OSV
added 2020/07/23 11:32 a.m.5 views

SUSE-SU-2020:2025-1 Security update for perl-YAML-LibYAML

This update for perl-YAML-LibYAML fixes the following issues: perl-YAML-LibYAML was updated to 0.69: bsc1173703 Security fix: Add $LoadBlessed option to turn on/off loading objects: Default is set to true. Note that, the behavior is unchanged. Clarify documentation about exported functions Dump w...

7.1AI score
Exploits0References2
Rows per page
Query Builder