Lucene search
K

8 matches found

attackerkb
attackerkb
added 2026/07/06 8:10 a.m.6 views

CVE-2026-49097

Improper Input Validation, Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Apache Camel IRC component. The camel-irc producer chooses the destination of an outgoing IRC message from the irc.sendTo Exchange header the constant...

6.1AI score0.00428EPSS
Exploits0References2Affected Software1
nessus
nessus
added 2026/06/06 12:0 a.m.13 views

EulerOS Virtualization 2.12.1 : libssh (EulerOS-SA-2026-2080)

According to the versions of the libssh package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A weakness has been identified in libssh up to 0.11.3. The impacted element is the function...

8.2CVSS5.9AI score0.00631EPSS
Exploits0References7
github
github
added 2026/04/03 2:47 a.m.9 views

OpenClaw: Workspace `.env` can override the bundled plugin trust root

Summary Workspace .env can override the bundled plugin trust root Current Maintainer Triage - Status: open - Normalized severity: high - Assessment: v2026.3.28 still lets workspace .env override OPENCLAWBUNDLEDPLUGINSDIR, but critical is too high because exploitation still depends on...

8.5CVSS5.9AI score0.00126EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29320

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00444EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0808

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.01338EPSS
Exploits0References9
redhat
redhat
added 2024/01/30 2:13 p.m.1 views

Mozilla: Bypass of Content Security Policy when directive unsafe-inline was set

The Mozilla Foundation Security Advisory describes this flaw as: When a parent page loaded a child in an iframe with unsafe-inline, the parent Content Security Policy could have overridden the child Content Security Policy...

6.5CVSS7.3AI score0.006EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2023/11/27 12:0 a.m.3 views

PT-2023-30649 · Unknown · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost affected versions not specified Description: The issue arises from Mattermost's failure to check if hardened mode is enabled when overriding the username and/or the icon when posting. If settings allow integrations to override the...

4.3CVSS4.3AI score0.00417EPSS
Exploits0References6
code423n4
code423n4
added 2023/10/30 12:0 a.m.14 views

It is possible to prematurely unlock assets that should still be locked up by setting the cooldown duration to 0.

Lines of code Vulnerability details Impact It undermines the security of the cooldown period. Specifically: • Users who have assets locked up in the cooldown period could immediately withdraw them if the admin sets the duration to 0. This violates the intent of having a cooldown period to begin...

7AI score
Exploits0
Rows per page
Query Builder