Lucene search
K

16 matches found

NVD
NVD
added 2026/06/15 9:16 p.m.7 views

CVE-2026-39463

Unauthenticated Cross Site Scripting XSS in ManageWP Worker = 4.9.31 versions...

7.1CVSS0.0023EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/07 11:25 p.m.2 views

CVE-2026-4394 Gravity Forms <= 2.9.30 - Unauthenticated Stored Cross-Site Scripting via Credit Card 'Card Type' Sub-Field

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Credit Card field's 'Card Type' sub-field input.4 in all versions up to, and including, 2.9.30. This is due to the getvalueentrydetail method in the GFFieldCreditCard class outputting the card type value...

6.1CVSS6.1AI score0.00291EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/07 11:25 p.m.23 views

CVE-2026-4394 Gravity Forms <= 2.9.30 - Unauthenticated Stored Cross-Site Scripting via Credit Card 'Card Type' Sub-Field

The Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Credit Card field's 'Card Type' sub-field input.4 in all versions up to, and including, 2.9.30. This is due to the getvalueentrydetail method in the GFFieldCreditCard class outputting the card type value...

6.1CVSS0.00291EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001658)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001658 advisory. The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of...

10CVSS6.8AI score0.52189EPSS
Exploits0References36
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.5 views

10-Strike Network Inventory Explorer Pro has security vulnerabilities

10-Strike Network Inventory Explorer Pro is a network asset management and auditing tool provided by the US company 10-Strike. Version 9.31 of 10-Strike Network Inventory Explorer Pro contains a security vulnerability. This vulnerability stems from the srvInventoryWebServer service having a servi...

8.5CVSS5.8AI score0.00213EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/11/19 4:16 a.m.3 views

CVE-2025-64734

Missing Release of Resource after Effective Lifetime CWE-772 in the T21 Reader allows an attacker with physical access to the Reader to perform a denial-of-service attack against that specific reader, preventing cardholders from badging for entry. This issue affects Command Centre Server: 9.30...

2.4CVSS6.5AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/10/23 4:16 a.m.6 views

CVE-2025-48430

Uncaught Exception CWE-248 in the Command Centre Server allows an Authorized and Privileged Operator to crash the Command Centre Server at will. This issue affects Command Centre Server: 9.30 prior to vEL9.30.2482 MR2, 9.20 prior to vEL9.20.2819 MR4, 9.10 prior to vEL9.10.3672 MR7, 9.00 prior to...

5.5CVSS0.00114EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/25 12:0 a.m.6 views

PT-2023-13792 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel versions 8.x through 9.x before 9.32.0 Description: The authentication method was discovered to be vulnerable to user enumeration via timeless timing attacks with HTTP/2 multiplexing. This issue is caused by the early return inside th...

5.3CVSS7.5AI score0.00881EPSS
Exploits1References7
OSV
OSV
added 2020/09/09 7:15 p.m.5 views

CVE-2018-17772

Ingenico Telium 2 POS terminals allow arbitrary code execution via the TRACE protocol. This is fixed in Telium 2 SDK v9.32.03 patch N...

6.8CVSS6.2AI score0.00669EPSS
Exploits1References4
OSV
OSV
added 2020/09/09 7:15 p.m.5 views

CVE-2018-17771

Ingenico Telium 2 POS terminals have hardcoded FTP credentials. This is fixed in Telium 2 SDK v9.32.03 patch N...

6.6CVSS5.8AI score0.00477EPSS
Exploits1References4
CNVD
CNVD
added 2017/12/15 12:0 a.m.4 views

Micro Focus Project and Portfolio Management Center Cross-Site Request Forgery Vulnerability

Micro Focus Project and Portfolio Management Center is a suite of project portfolio management software from Micro Focus UK. The software manages hybrid projects by integrating agile tools such as ALM Octane, Agile Manager and CA Rally. A cross-site request forgery vulnerability exists in Micro...

7.3CVSS6.9AI score0.00497EPSS
Exploits0References1
OSV
OSV
added 2017/12/13 1:29 a.m.2 views

CVE-2017-14361

Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability could be exploited to allow a Man-in-the-middle attack...

7.4CVSS5.8AI score0.01036EPSS
Exploits0References2
OSV
OSV
added 2017/09/30 1:29 a.m.6 views

CVE-2017-14350

A potential security vulnerability has been identified in HPE Application Performance Management BSM Platform versions 9.26, 9.30, 9.40. The vulnerability could be remotely exploited to allow code execution...

9.8CVSS5.8AI score0.06958EPSS
Exploits0References3
CNVD
CNVD
added 2017/09/27 12:0 a.m.1 views

HPE Application Performance Management Platform Remote Code Execution Vulnerability

HPE Application Performance Management BSM Platform is a set of application performance management system of the American Hewlett Packard Enterprise HPE company's BSM platform. A security vulnerability exists in HPE BSM Platform versions 9.26, 9.30, and 9.40. A remote attacker could exploit the...

10CVSS7.1AI score0.06958EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/11 12:0 a.m.2 views

Hewlett Packard Enterprise Application Performance Management System Authentication Bypass Vulnerability

HPE BSM Platform Application Performance Management System Health is a suite of application performance management systems for the BSM platform from Hewlett Packard Enterprise HPE. A security vulnerability exists in HPE BSM Platform Application Performance Management System Health versions 9.26,...

10CVSS9.4AI score0.06062EPSS
Exploits0References1
CNVD
CNVD
added 2016/06/13 12:0 a.m.3 views

Multiple Vulnerabilities in HPE Project and Portfolio Management Center

HPE Project and Portfolio Management Center PPM is a suite of solutions from Hewlett Packard Enterprise HPE that provides project executives with the visibility and strategic operational needs to make decisions based on real-time visibility into the project lifecycle of the project portfolio. An...

8.8CVSS7.3AI score0.02326EPSS
Exploits0References1
Rows per page
Query Builder