Lucene search
K

105 matches found

CNNVD
CNNVD
added 2025/02/27 12:0 a.m.4 views

编号撤回

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

5.2AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/05 2:32 a.m.8 views

CVE-2024-42346

Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon edit operation. All...

7.6CVSS6.9AI score0.00709EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 2:26 p.m.58 views

CVE-2024-56137

CVE-2024-56137 affects MaxKB (open source knowledge-base Q&A with LLM and RAG). Prior to version 1.9.0, a remote command execution vulnerability exists in the function library module, allowing privileged users to execute OS commands within custom scripts. The issue has been fixed in v1.9.0. Curre...

7.2CVSS7.5AI score0.00786EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/12/28 12:0 a.m.4 views

Ruifang-tech Rebuild 代码注入漏洞

Ruifang-tech Rebuild is a zero-code, open-source and free enterprise management system from China Ruifang Ruifang-tech. A code injection vulnerability exists in Ruifang-tech Rebuild version 3.8.6, which stems from a misuse of the parameter description that can lead to cross-site scripting...

5.3CVSS4.8AI score0.00413EPSS
Exploits0References4
CNVD
CNVD
added 2024/11/21 12:0 a.m.11 views

Unspecified vulnerability in Linux kernel (CNVD-2024-46419)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from faulty block size validation in the sctpsfootb function. No details of the vulnerability are provided at thi...

5.5CVSS6.6AI score0.00266EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.5 views

编号撤回

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

8.9AI score
Exploits0References6
CNNVD
CNNVD
added 2024/10/15 12:0 a.m.5 views

itsourcecode Online Tours and Travels Management System 安全漏洞

itsourcecode Online Tours and Travels Management System is itsourcecode open source an online travel management system . A security vulnerability exists in itsourcecode Online Tours and Travels Management System v1.0, which originates from a SQL injection vulnerability in the val-email parameter ...

9.8CVSS7.9AI score0.00516EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/09/20 6:56 p.m.15 views

CVE-2024-42351 Possible Data Tampering & Loss of Public Datasets in Galaxy

Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. An attacker can potentially replace the contents of public datasets resulting in data loss or tampering. All supported branches of Galaxy and...

6.5CVSS6.9AI score0.00454EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.5 views

Hertzbeat 安全漏洞

Hertzbeat is an open source real-time monitoring system from the dromara organization. A security vulnerability exists in Hertzbeat prior to version 1.6.0 that stems from an insecure deserialization issue in the /api/monitors/import location that could lead to remote code execution...

8.8CVSS7.9AI score0.0133EPSS
Exploits1References7
CNVD
CNVD
added 2024/08/15 12:0 a.m.15 views

Unspecified Vulnerability in ChurchCRM (CNVD-2024-35648)

ChurchCRM is an open source CRM system for churches. A security vulnerability exists in ChurchCRM version 5.5.0 that stems from a time-based SQL blind injection vulnerability in the CurrentFundraiser GET parameter of the FRCatalog.php page. No details of the vulnerability are provided at this tim...

9.8CVSS7.7AI score0.01554EPSS
Exploits2References1
CNNVD
CNNVD
added 2024/06/21 12:0 a.m.3 views

Number withdrawn

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

6.6AI score
Exploits0References10
CNVD
CNVD
added 2024/04/10 12:0 a.m.6 views

ECShop SQL Injection Vulnerability (CNVD-2024-26111)

ShopeX ECShop is an open source mall system of the Chinese business school ShopeX company . Support PC + H5 + APP + small program mall, source code free download experience, suitable for enterprise development and build mall. ECShop SQL injection vulnerability , the vulnerability stems from...

7.5CVSS7.7AI score0.00586EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/02 12:0 a.m.3 views

Number withdrawn

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

6.6AI score
Exploits0References5
CNNVD
CNNVD
added 2024/03/02 12:0 a.m.3 views

Number withdrawn

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux in the United States. This CVE number has been withdrawn...

6.3AI score
Exploits0References6
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.5 views

CRMEB Path Traversal Vulnerability

Zhongbang CRMEB is an open source e-commerce management system from Xi'an Zhongbang Networks Zhongbang. CRMEB 5.2.2 version of the path traversal vulnerability , the vulnerability stems from the file /adminapi/system/crud save/delete function has a path traversal vulnerability...

8.1CVSS6.9AI score0.00649EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/06/15 12:0 a.m.15 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a code issue vulnerability that can be exploited by an attacker to cause a local privilege escalation without the need for additional execute privileges...

7.8CVSS7.2AI score0.0009EPSS
Exploits0References2
CNVD
CNVD
added 2023/03/30 12:0 a.m.29 views

Apache Fineract Server Request Forgery Vulnerability

Apache Fineract is an open source system for platformizing core banking systems. A reliable, robust and affordable financial services solution for entrepreneurs, financial institutions and service providers. A server-side request forgery vulnerability exists in Apache Fineract versions 1.4 throug...

8.1CVSS8AI score0.00982EPSS
Exploits0References1
NVD
NVD
added 2023/03/06 7:15 p.m.14 views

CVE-2023-27472

quickentity-editor-next is an open source, system local, video game asset editor. In affected versions HTML tags in entity names are not sanitised XSS vulnerability. Allows arbitrary code execution within the browser sandbox, among other things, simply from loading a file containing a script tag ...

8.2CVSS8.4AI score0.00323EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/02/01 12:0 a.m.4 views

maccms10 代码问题漏洞

maccms10 is magicblack open source PHP+MYSQL environment using a set of perfect and powerful rapid site building system . maccms10 2021.1000.2000 version of the code problematic vulnerability , the vulnerability stems from its allows attackers to achieve server-side request forgery...

8.8CVSS7.6AI score0.00873EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/12/18 12:0 a.m.4 views

ctrlo lenio 安全漏洞

lenio is an open source facility management system from ctrlo. A security vulnerability exists in ctrlo lenio, which stems from some unknown functions in its views/contractor.tt file that operate on the parameter contractor.name allowing an attacker to implement cross-site scripting...

6.1CVSS5.6AI score0.00385EPSS
Exploits0References3
Rows per page
Query Builder