Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.15 views

PT-2026-39647

Name of the Vulnerable Software and Affected Versions Grav versions prior to 2.0.0-rc.2 Description The Twig sandbox allow-list permits any user with the admin.pages role to call the config.toArray function from within a page body. This action dumps the entire merged site configuration into the...

7.7CVSS5.8AI score0.00276EPSS
Exploits1References7
GithubExploit
GithubExploit
added 2026/02/09 9:9 p.m.151 views

neopythonlogger

chrome-privless-encryption A PoC demonstrating how to bypass...

5.5AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2026/01/29 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-61155

The GameDriverX64.sys kernel-mode anti-cheat driver v7.23.4.7 and earlier contains an access control vulnerability in one of its IOCTL handlers. A user-mode process can open a handle to the driver device and send specially crafted IOCTL requests. These requests are executed in kernel-mode context...

5.5CVSS5.9AI score0.00275EPSS
In wildExploits2References2
ATTACKERKB
ATTACKERKB
added 2026/01/27 3:23 p.m.4 views

CVE-2020-36948

VestaCP 0.9.8-26 contains a session token vulnerability in the LoginAs module that allows remote attackers to manipulate authentication tokens. Attackers can exploit insufficient token validation to access user accounts and perform unauthorized login requests without proper administrative...

9.8CVSS5.9AI score0.00561EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2021/03/29 8:15 p.m.4 views

CVE-2021-28669

Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 provide the ability to set configuration attributes without administrative rights...

7.5CVSS7.2AI score0.00791EPSS
Exploits0References1
Rows per page
Query Builder