Lucene search
+L

1502 matches found

vulnersosv
vulnersosv
added 2026/04/15 10:16 a.m.11 views

app.cash.bittycity:outie (=0.0.1), app.cash.bittycity:outie-jooq-provider (=0.0.1) +1229 more potentially affected by CVE-2026-0636 via org.bouncycastle:bcprov-jdk15to18 (>=1.74 <=1.83)

org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.74, =0.0.2, =0.0.2.1, =0.1.0-M36, =0.1.0-M27, =1.0.1, =3.5.0.0, =3.5.5.3 - cn.lnkdoc.sdk:awesome-uia-alipay-sdk =3.0.0-RC1 - cn.lnkdoc.sdk:awesome-uia-alipay-sdk-solon-boot-2-starter =3.0.0-RC1 -...

6.9CVSS5.7AI score0.00527EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/04/15 10:13 a.m.7 views

cn.hyperchain.javasdk:hyperchainsdk (>=4.2.1 <=4.2.3), com.github.WHUTzju:blockchainsdk (=4.1.3) +79 more potentially affected by CVE-2026-5588 via org.bouncycastle:bcpkix-jdk14 (>=1.50 <=1.83)

org.bouncycastle:bcpkix-jdk14 MAVEN version =1.50, =4.2.1, =9.1.20, =2.0, =2.0, =2.0, =0.1.1, =1.0.1.0.20180504134220, =2.2, =2.0.1, =7.0, =1.5, =12.3, =1.2.0, =1.2.6 and more Source cves: CVE-2026-5588 Source advisory: SNYK:JAVA-ORGBOUNCYCASTLE-16075258...

7.5CVSS5.8AI score0.00392EPSS
Exploits0
nessus
nessus
added 2026/04/13 12:0 a.m.32 views

FreeBSD : Vaultwarden -- Multiple vulnerabilities (57f31f61-36a1-11f1-9839-8447094a420f)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 57f31f61-36a1-11f1-9839-8447094a420f advisory. The Vaultwarden project reports: GHSA-937x-3j8m-7w7p Unconfirmed Owner Can Purge Entire Organization...

5.9AI score
Exploits0References2
vulnersosv
vulnersosv
added 2026/04/10 10:9 p.m.10 views

@unhead/angular (>=3.0.0 <=3.0.0-rc.4), @unhead/react (>=3.0.0 <=3.0.0-rc.4) +4 more potentially affected by unknown CVE via unhead (>=3.0.0-beta.5 <=3.0.0)

unhead NPM version =3.0.0-beta.5, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0-rc.4 Source cves: unknown CVE Source advisory: SNYK:JS-UNHEAD-15989796...

5.8AI score
Exploits0
vulnersosv
vulnersosv
added 2026/04/02 3:31 p.m.7 views

ch.iterial.keycloak.plugins:keycloak-directus-plugin (>=0.1.0 <=0.7.0), com.charlyghislain.keycloak:keycloak-importexport (>=21.0.0 <=23.0.1) +160 more potentially affected by CVE-2026-4325 via org.keycloak:keycloak-services (>=1.0-alpha-1 <=26.5.6)

org.keycloak:keycloak-services MAVEN version =1.0-alpha-1, =0.1.0, =21.0.0, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.0.0, =1.2.0 and more Source cves: CVE-2026-4325 Source advisory: OSV:GHSA-RX66-HJ7G-28H7https://vulners.com/osv/OSV:GHSA-RX66-HJ7G-...

5.3CVSS5.4AI score0.0025EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/03/18 8:7 p.m.7 views

ca.uhn.hapi.fhir:hapi-fhir-base-test-jaxrsserver-kotlin (>=5.6.5 <=6.8.0), ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.3 <=8.8.1) +250 more potentially affected by CVE-2026-33180 via ca.uhn.hapi.fhir:org.hl7.fhir.dstu2016may (>=0.0.1 <=6.8.2)

ca.uhn.hapi.fhir:org.hl7.fhir.dstu2016may MAVEN version =0.0.1, =5.6.5, =4.0.3, =5.6.5, =4.1.0, =4.0.3, =4.1.0, =4.0.3, =4.0.0, =5.0.0, =4.0.3, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =8.8.1 and more Source cves: CVE-2026-33180 Source advisory: OSV:GHSA-P7M9-V2CM-2H7M...

8.2CVSS5.4AI score0.00264EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/03/18 8:7 p.m.9 views

ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=3.4.0 <=8.8.1), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.7.7 <=7.4.5) +208 more potentially affected by CVE-2026-33180 via ca.uhn.hapi.fhir:org.hl7.fhir.r4b (>=5.6.22 <=6.8.2)

ca.uhn.hapi.fhir:org.hl7.fhir.r4b MAVEN version =5.6.22, =3.4.0, =5.7.7, =5.7.0, =5.7.0, =5.7.0, =5.7.0, =5.7.0, =6.2.0, =6.8.0, =6.4.0, =5.7.0, =5.7.0, =5.7.0, =5.7.0, =5.7.7, =6.8.0 and more Source cves: CVE-2026-33180 Source advisory: OSV:GHSA-P7M9-V2CM-2H7M...

8.2CVSS5.4AI score0.00264EPSS
Exploits0
vulnersosv
vulnersosv
added 2026/03/05 9:13 p.m.8 views

org.glassfish.mq:mq-client (>=6.4.0 <=6.8.0), org.glassfish.mq:mq-cluster (>=6.4.0 <=6.8.0) +13 more potentially affected by CVE-2026-24457 via org.glassfish.mq:mqbroker-comm (>=6.4.0 <=6.8.0)

org.glassfish.mq:mqbroker-comm MAVEN version =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.4.0, =6.8.0 Source cves: CVE-2026-24457 Source advisory: SNYK:JAVA-ORGGLASSFISHMQ-15468292...

9.8CVSS5.8AI score0.00616EPSS
Exploits0
attackerkb
attackerkb
added 2026/03/02 11:16 a.m.8 views

CVE-2025-30062

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection...

8.8CVSS6AI score0.0019EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/03/02 11:16 a.m.6 views

CVE-2025-30062 SQL injection in CheckUnitCodeAndKey.pl

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection...

6.9CVSS5.9AI score0.0019EPSS
Exploits0References2
euvd
euvd
added 2026/03/02 11:16 a.m.6 views

EUVD-2025-208149

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection...

8.8CVSS6AI score0.0019EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/03/02 12:0 a.m.6 views

PT-2026-22576

In the "CheckUnitCodeAndKey.pl" service, the "validateOrgUnit" function is vulnerable to SQL injection...

8.8CVSS6AI score0.0019EPSS
Exploits0References3
veeam
veeam
added 2026/03/02 12:0 a.m.13 views

"4BDN: Connected Salesforce Org already exists"

Challenge When attempting to add a Salesforce sandbox to an on-premise installation of Veeam Backup for Salesforce , the following error occurs: 4BDN: Connected Salesforce Org already exists. Cause This occurs when the sandbox being added has the same name as a Salesforce sandbox that was...

6AI score
Exploits0
ptsecurity
ptsecurity
added 2026/02/06 12:0 a.m.11 views

PT-2026-6804

Name of the Vulnerable Software and Affected Versions ggml-org llama.cpp versions prior to 55abc39 Description A flaw exists in the GBNF Grammar Handler component of ggml-org llama.cpp. Specifically, the llama grammar advance stack function within the llama.cpp/src/llama-grammar.cpp file is...

4.8CVSS5.8AI score0.00124EPSS
Exploits0References9
osv
osv
added 2026/02/05 3:20 a.m.19 views

GO-2026-4414 Alist has Insecure TLS Config in github.com/alist-org/alist

Alist has Insecure TLS Config in github.com/alist-org/alist...

9.1CVSS5.3AI score0.00234EPSS
Exploits1References4
veracode
veracode
added 2026/02/04 6:55 a.m.8 views

Prototype Pollution

nocodb is vulnerable to prototype pollution. The vulnerability is due to improper handling of user-controlled input in the /api/v2/meta/connection/test endpoint, which allows an authenticated attacker with org-level-creator permissions to pollute object prototypes and cause application-wide...

4.9CVSS5.5AI score0.00348EPSS
Exploits1References4Affected Software1
redos
redos
added 2026/01/29 12:0 a.m.7 views

ROS-20260129-73-0078

Vulnerability in mongodb-org related to insufficient checking for unusual or exceptional states. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.9CVSS5.9AI score0.00357EPSS
Exploits0
cnnvd
cnnvd
added 2026/01/29 12:0 a.m.8 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...

5.3CVSS5.8AI score0.00295EPSS
Exploits1References6
osv
osv
added 2026/01/28 8:27 p.m.5 views

CVE-2026-24766 NocoDB Vulnerable to Prototype Pollution in Connection Test Endpoint, Leading to DoS

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.0, an authenticated user with org-level-creator permissions can exploit prototype pollution in the /api/v2/meta/connection/test endpoint, causing all database write operations to fail application-wide until server...

4.9CVSS5.9AI score0.00348EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2026/01/28 8:27 p.m.4 views

CVE-2026-24766 NocoDB Vulnerable to Prototype Pollution in Connection Test Endpoint, Leading to DoS

NocoDB is software for building databases as spreadsheets. Prior to version 0.301.0, an authenticated user with org-level-creator permissions can exploit prototype pollution in the /api/v2/meta/connection/test endpoint, causing all database write operations to fail application-wide until server...

4.9CVSS5.9AI score0.00348EPSS
Exploits1References1
Rows per page
Query Builder