Lucene search
K

136 matches found

Chainguard
Chainguard
added 2026/06/26 8:22 p.m.7 views

GHSA-45GG-VH54-H5M9 vulnerabilities

Vulnerabilities for packages: zarf, argo-workflows-fips, prometheus-operator, flux-source-controller, nerdctl, cloud-provider-aws, omnictl-multiarch, zitadel, trivy-operator-fips, knative-kafka-broker, opentofu-fips, rancher-agent, gitea-fips, kubescape-server-fips, tekton-pipelines, harbor, isti...

6.1AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/11 2:51 p.m.8 views

0lever-utils (>=0.0.2 <=0.0.7), 0xdegenmo-lighter-mcp (=0.1.1) +16097 more potentially affected by CVE-2026-44431 via urllib3 (>=1.23.0 <=2.6.3)

urllib3 PYPI version =1.23.0, =0.0.2, =0.3.0, =0.0.1a0, =1.1.2, =0.1.0, =0.1.0, =0.0.2, =0.0.5, =0.0.7 - a-mailx =0.1.0 - a-texam =1.1.0 and more Source cves: CVE-2026-44431 Source advisory: SNYK:PYTHON-URLLIB3-16642024...

8.2CVSS6AI score0.00527EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/25 11:47 p.m.9 views

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (>=0.8.3 <=0.9.5) +21 more potentially affected by CVE-2026-44999 via openclaw (>=0.0.1 <=2026.4.2)

openclaw NPM version =0.0.1, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 - @xmoxmo/bncr =0.0.8 - morpho-vault-manager =0.1.0 and more Source cves: CVE-2026-44999 Source advisory: OSV:GHSA-57R2-H2WJ-G887...

6.3CVSS5.4AI score0.00151EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/17 9:56 p.m.11 views

@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +23 more potentially affected by CVE-2026-43531 via openclaw (>=2026.3.22 <=2026.4.5)

openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-43531 Source advisory: SNYK:JS-OPENCLAW-16109726...

8.8CVSS5.7AI score0.00203EPSS
Exploits0
OpenVAS
OpenVAS
added 2026/04/16 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2026:1320-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00658EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2026/04/13 12:0 a.m.12 views

Fedora: Security Advisory (FEDORA-2026-c718defeb6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.2CVSS5.8AI score0.00588EPSS
Exploits0References8
Wolfi
Wolfi
added 2026/04/11 2:51 a.m.8 views

GHSA-GJVH-7JH8-7XHM vulnerabilities

Vulnerabilities for packages: kube-fluentd-operator, karpenter, amazon-cloudwatch-agent-operator, buf, git-sync, chezmoi, act, kube-vip, kafkaexporter, nri-couchbase, k8ssandra-client, splunk-otel-collector, kubernetes-ingress-defaultbackend, smarter-device-manager, crossplane-provider-azure-sql,...

6.1AI score
Exploits0
OpenVAS
OpenVAS
added 2026/04/09 12:0 a.m.8 views

Slackware: Security Advisory (SSA:2026-098-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.0035EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2026/04/09 12:0 a.m.17 views

openSUSE Security Advisory (SUSE-SU-2026:1203-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6AI score0.00475EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2026/04/06 12:0 a.m.11 views

Fedora: Security Advisory (FEDORA-2026-fe96f3532b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.00502EPSS
Exploits10References14
vulnersOsv
vulnersOsv
added 2026/04/01 12:19 a.m.8 views

08cms (=1.0.0), 0uth (>=1.0.5 <=1.2.1) +13070 more potentially affected by CVE-2026-34601 via xmldom (>=0.1.11 <=0.6.0)

xmldom NPM version =0.1.11, =1.0.5, =1.0.0, =1.0.0, =1.7.3, =0.1.0, =0.0.2, =0.0.1, =1.0.2, =1.0.3, =1.0.23, =1.0.1, =1.3.1 and more Source cves: CVE-2026-34601 Source advisory: OSV:GHSA-WH4C-J3R5-MJHP...

7.5CVSS5.7AI score0.00472EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/01 12:2 a.m.12 views

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by unknown CVE via openclaw (>=2026.3.22 <=2026.3.24)

openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: unknown CVE Source advisory: SNYK:JS-OPENCLAW-15864735...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/31 4:59 a.m.13 views

CVE-2026-30082

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6.1CVSS6AI score0.00189EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/30 3:32 p.m.7 views

EUVD-2026-17095

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6.1CVSS6AI score0.00189EPSS
Exploits0References4
NVD
NVD
added 2026/03/30 3:16 p.m.7 views

CVE-2026-30082

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6.1CVSS0.00189EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/30 12:0 a.m.4 views

CVE-2026-30082

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6AI score0.00189EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/30 12:0 a.m.3 views

CVE-2026-30082

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6.1CVSS6AI score0.00189EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.11 views

PT-2026-29029

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

6.1CVSS6AI score0.00189EPSS
Exploits0References4
CVE
CVE
added 2026/03/30 12:0 a.m.20 views

CVE-2026-30082

CVE-2026-30082 describes multiple stored cross-site scripting (XSS) vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 . The issue allows an attacker to inject crafted payloads via the About application, What’s new, or Release note parameters to exe...

6.1CVSS6AI score0.00189EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/30 12:0 a.m.23 views

CVE-2026-30082

Multiple stored cross-site scripting XSS vulnerabilities in the Edit feature of the Software Package List page of IngEstate Server v11.14.0 allow attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the About application, What's news, or Release note parameters...

0.00189EPSS
Exploits0References2
Rows per page
Query Builder