Lucene search
K

15 matches found

CVE
CVE
added 3 days ago12 views

CVE-2026-12142

CVE-2026-12142 affects the NEX-Forms – Ultimate Forms Plugin for WordPress. The vulnerability is a Stored Cross-Site Scripting (XSS) via the internal parameter named '_name[]' , present in all versions up to and including 9.2.2 . Root cause: insufficient input sanitization and output escaping, co...

7.2CVSS5.9AI score0.00304EPSS
Exploits0References14
NVD
NVD
added 2026/06/17 10:54 a.m.11 views

CVE-2026-46905

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime Security. Supported versions that are affected are 9.2.0.0-9.2.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

9.8CVSS0.00483EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 2:19 p.m.4 views

CVE-2026-23514 Kiteworks Core before 9.2.2 is vulnerable to Improper Ownership Management

Kiteworks is a private data network PDN. Versions 9.2.0 and 9.2.1 of Kiteworks Core have an access control vulnerability that allows authenticated users to access unauthorized content. Upgrade Kiteworks Core to version 9.2.2 or later to receive a patch...

8.8CVSS5.8AI score0.0104EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 5:40 a.m.23 views

CVE-2025-58381 Directory transversal vulnerability in Brocade Fabric OS before 9.2.1c2 and 9.2.2 through 9.2.2a using various shell commands

A vulnerability in Brocade Fabric OS before 9.2.1c2 could allow an authenticated attacker with admin privileges using the shell commands “source, ping6, sleep, disown, wait to modify the path variables and move upwards in the directory structure or to traverse to different directories...

4.6CVSS0.00179EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 5:19 a.m.18 views

CVE-2025-9711

CVE-2025-9711 is a local privilege escalation flaw in Brocade Fabric OS prior to 9.2.1c3, enabling a local authenticated user to elevate privileges to root via the export option of the seccertmgmt and seccryptocfg commands. Connected sources confirm affected software versions and the root-cause i...

8.5CVSS5.3AI score0.00126EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28065

Malicious code in bioql PyPI...

4.8CVSS6.6AI score0.00181EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/19 12:0 a.m.5 views

Broadcom Brocade Fabric OS 安全漏洞

Broadcom Brocade Fabric OS FOS is a set of embedded operating systems used in devices such as switches and routers from Broadcom USA. A security vulnerability exists in Broadcom Brocade Fabric OS FOS versions 9.2.2 and earlier, which stems from path traversal and could lead to the disclosure of...

4.8CVSS6.4AI score0.00181EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/04/28 4:31 a.m.4 views

CVE-2025-4001

A vulnerability has been found in scipopt scip up to 9.2.1 and classified as problematic. Affected by this vulnerability is the function main of the file examples/LOP/src/genRandomLOPInstance.c of the component File Descriptor Handler. The manipulation of the argument File leads to uncontrolled...

4.8CVSS3.5AI score0.00154EPSS
Exploits0
OSV
OSV
added 2024/07/01 5:15 p.m.6 views

CVE-2024-36987

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200, an authenticated, low-privileged user who does not hold the admin or power Splunk roles could upload a file with an arbitrary extension using the indexing/preview REST endpoint...

6.5CVSS5.9AI score0.00291EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/17 12:0 a.m.4 views

PortlandLabs Concrete CMS Security Vulnerability

PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. A security vulnerability exists in PortlandLabs Concrete CMS prior to 8.5.13 and versions prior to 9.2.2, which stems from a File creation function that may grant too many permissions when...

9.8CVSS6.8AI score0.01233EPSS
Exploits0References4
Circl
Circl
added 2022/06/08 6:32 p.m.4 views

CVE-2022-30922

creationtimestamp| type| source ---|---|--- 2022-06-08 18:32:46+00:00| seen| https://t.me/cibsecurity/44040...

10CVSS8.7AI score0.01542EPSS
Exploits1References1
CNVD
CNVD
added 2020/05/12 12:0 a.m.2 views

Tobesoft Xplatform Resource Management Error Vulnerability

Tobesoft Xplatform is a set of Korean Tobesoft application development platform. The platform supports form and composite component inheritance, CSS autosetting, and multi-document interfaces. A resource management error vulnerability exists in Tobesoft Xplatform versions 9.1 through 9.2.2. An...

7.8CVSS7.4AI score0.01211EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/27 12:0 a.m.2 views

Artifex Ghostscript GhostXPS Heap Buffer Overflow Vulnerability

Artifex Ghostscript is an open source PostScript a page description language and programming language for the electronics industry and desktop publishing parser from Artifex Software. Artifex Ghostscript A security vulnerability exists in the 'xpsloadsfntname' function of the xps/xpsfont.c file i...

7.8CVSS7.8AI score0.01785EPSS
Exploits1References1
CNVD
CNVD
added 2016/07/28 12:0 a.m.1 views

Multiple Apple Products WebKit Homologation Policy Bypass Vulnerability

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

5.4CVSS5.3AI score0.01464EPSS
Exploits0References1
CNVD
CNVD
added 2016/07/28 12:0 a.m.2 views

Multiple Apple Products WebKit Denial of Service Vulnerability

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

7.1CVSS6.4AI score0.02231EPSS
Exploits0References1
Rows per page
Query Builder