Lucene search
K

144 matches found

F5 Networks
F5 Networks
added 2026/06/17 1:45 p.m.32 views

K000161616: NGINX ngx_http_v3_module vulnerability CVE-2026-42530

Security Advisory Description NGINX Open Source has a vulnerability in the ngxhttpv3module module. When NGINX Open Source is configured to use the HTTP/3 QUIC module, a remote unauthenticated attacker along with conditions beyond their control can use a specially crafted HTTP/3 session to reopen ...

9.2CVSS6.3AI score0.03299EPSS
Exploits3Affected Software4
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.6 views

OliveTin 安全漏洞

OliveTin is an open-source web application developed by OliveTin. Versions of OliveTin prior to 3.00.11.1 contained security vulnerabilities. These vulnerabilities were caused by authentication context confusion in the RestartAction, which could allow low-privilege verified users to perform...

5.3CVSS7.3AI score0.00414EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-19412

Malicious code in bioql PyPI...

10CVSS6.4AI score0.00457EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-33594

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00777EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.15 views

EUVD-2024-0648

Malicious code in bioql PyPI...

4.9CVSS5AI score0.00363EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-29622

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.01082EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-24453

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00489EPSS
Exploits1References2
OSV
OSV
added 2025/07/29 1:38 p.m.9 views

RLSA-2025:10074 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Content-Disposition header ignored when a file is included in an embed or object tag CVE-2025-6430 firefox: Use-after-free in FontFaceSet CVE-2025-6424 firefox:...

7.5CVSS6.7AI score0.03057EPSS
Exploits0References5
Fedora
Fedora
added 2025/07/24 1:10 a.m.6 views

[SECURITY] Fedora 41 Update: firefox-141.0-2.fc41

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

7.3AI score
Exploits0
Fedora
Fedora
added 2025/07/23 1:0 a.m.6 views

[SECURITY] Fedora 42 Update: firefox-141.0-2.fc42

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/18 5:58 p.m.9 views

CVE-2025-53937

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the /controle/control.php endpoint, specifically in the cargo parameter, of WeGIA prior to version 3.4.5. This vulnerability allows attackers to...

9.8CVSS7.9AI score0.00462EPSS
Exploits1References1
NVD
NVD
added 2025/07/18 4:15 p.m.4 views

CVE-2025-54077

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in versions prior to 3.4.6 in the personalizacao.php endpoint of the WeGIA application. This vulnerability allows attackers to...

6.5CVSS0.0024EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/07/18 3:50 p.m.4 views

CVE-2025-54076 WeGIA Reflected Cross-Site Scripting (XSS) vulnerability in endpoint 'pre_cadastro_atendido.php' parameter 'msg_e'

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in versions prior to 3.4.6 in the precadastroatendido.php endpoint of the WeGIA application. This vulnerability allows attacke...

6.5CVSS5.9AI score0.0024EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/07/17 2:33 p.m.4 views

CVE-2025-54062 WeGIA SQL Injection (Blind Time-Based) Vulnerability in id_dependente Parameter on profile_dependente.php Endpoint

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.4.6 in the /html/funcionario/profiledependente.php endpoint, specifically in the iddependente parameter. This vulnerability...

9.4CVSS8.6AI score0.00458EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/16 11:1 p.m.11 views

CVE-2025-53823

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. Versions prior to 3.4.5 have a SQL Injection vulnerability in the endpoint /WeGIA/html/socio/sistema/processadeletarsocio.php, in the idsocio parameter. This vulnerability allows the execution...

10CVSS8.1AI score0.00462EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/07/16 4:4 p.m.6 views

CVE-2025-53938 WeGIA vulnerable to Authentication Bypass due to Missing Session Validation in multiple endpoints

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. An Authentication Bypass vulnerability was identified in the /dao/verificarrecursoscargo.php endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows unauthenticated...

6.9CVSS0.00626EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/07/16 4:1 p.m.11 views

CVE-2025-53936 WeGIA vulnerable to Reflected Cross-Site Scripting via endpoint `personalizacao_selecao.php` parameter `nome_car`

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the personalizacaoselecao.php endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows attackers...

6.4CVSS0.00271EPSS
Exploits1References1
CVE
CVE
added 2025/07/16 4:0 p.m.23 views

CVE-2025-53935

WeGIA is an open‑source web manager for welfare organizations. A Reflected Cross‑Site Scripting (XSS) vulnerability exists in the personalizacao_selecao.php endpoint, exploitable via the id parameter, affecting versions prior to 3.4.5. Version 3.4.5 includes a fix. The issue is confirmed across m...

6.4CVSS5.5AI score0.00271EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/07/16 4:0 p.m.22 views

CVE-2025-53935 WeGIA vulnerable to Reflected Cross-Site Scripting via endpoint `personalizacao_selecao.php` parameter `id`

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting XSS vulnerability was identified in the personalizacaoselecao.php endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows attackers...

6.4CVSS0.00271EPSS
Exploits1References1
OSV
OSV
added 2025/07/16 3:56 p.m.3 views

CVE-2025-53933 WeGIA vulnerable to Stored Cross-Site Scripting via endpoint 'adicionar_enfermidade.php' parameter 'nome'

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site Scripting XSS vulnerability was identified in the adicionarenfermidade.php endpoint of the WeGIA application prior to version 3.4.5. This vulnerability allows attackers to...

6.4CVSS5.1AI score0.0025EPSS
Exploits1References3
Rows per page
Query Builder