Lucene search
K

19 matches found

CVE
CVE
added 2026/04/03 11:57 p.m.15 views

CVE-2026-34777

CVE-2026-34777 affects Electron: prior to versions 38.8.6, 39.8.1, 40.8.1, and 41.0.0, the origin passed to session.setPermissionRequestHandler() for iframe-permission requests (fullscreen, pointerLock, keyboardLock, openExternal, or media) was the top‑level page origin instead of the requesting ...

5.4CVSS5.8AI score0.00122EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/09 3:37 a.m.5 views

CVE-2025-66594

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Detailed messages are displayed on the error page. This information could be exploited by an attacker for other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

6.9CVSS5.3AI score0.00204EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.7 views

PT-2026-7059

Name of the Vulnerable Software and Affected Versions FAST/TOOLS versions R9.01 through R10.04 Description The software displays detailed messages on error pages. This information could be used by attackers for further malicious activities. Recommendations Update to a version later than R10.04...

6.9CVSS5.8AI score0.00204EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/09/25 12:0 a.m.3 views

CVE-2025-29157

An issue in petstore v.1.0.7 allows a remote attacker to execute arbitrary code via accessing a non-existent endpoint/cart, the server returns a 404-error page exposing sensitive information including the Servlet name default and server version...

7.4AI score0.00495EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2025/09/04 12:32 a.m.5 views

RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers

...

5.5CVSS6.8AI score0.00176EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/25 6:34 p.m.3 views

Malicious code in @espace-client-axafr/page-details-contrat (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/bnxtre: Fixed the page details for the SRQs created by kernel consumers. When using the nvme target with usesrq, a kernel panic was observed. 549.698111 bnxten 0000:41:00.0 enp65s0np0: FEC autoneg off encoding: Clause 91...

5.5CVSS6.4AI score0.00176EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 10:22 a.m.8 views

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

6.1CVSS5.8AI score0.00397EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/03/28 3:0 a.m.2 views

SUSE CVE-2025-21885

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix the page details for the srq created by kernel consumers While using nvme target with usesrq on, below kernel panic is noticed. 549.698111 bnxten 0000:41:00.0 enp65s0np0: FEC autoneg off encoding: Clause 91...

5.5CVSS7.7AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2025/03/27 3:15 p.m.6 views

AZL-69015 CVE-2025-21885 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix the page details for the srq created by kernel consumers While using nvme target with usesrq on, below kernel panic is noticed. 549.698111 bnxten 0000:41:00.0 enp65s0np0: FEC autoneg off encoding: Clause 91...

5.5CVSS6.6AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/03/27 3:15 p.m.5 views

AZL-62687 CVE-2025-21885 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix the page details for the srq created by kernel consumers While using nvme target with usesrq on, below kernel panic is noticed. 549.698111 bnxten 0000:41:00.0 enp65s0np0: FEC autoneg off encoding: Clause 91...

5.5CVSS6.6AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/03/20 12:32 p.m.12 views

GHSA-38MG-WM59-G64X composio allows Server-Side Request Forgery (SSRF) in BROWSERTOOL

A Server-Side Request Forgery SSRF vulnerability exists in composiohq/composio version v0.4.4. This vulnerability allows an attacker to read the contents of any file in the system by exploiting the BROWSERTOOLGOTOPAGE and BROWSERTOOLGETPAGEDETAILS actions...

6.8CVSS5.9AI score0.00679EPSS
Exploits1References4
Snyk
Snyk
added 2025/03/20 12:32 p.m.2 views

Improper Neutralization of Data within XPath Expressions ('XPath Injection')

Overview composio-core is a Core package to act as a bridge between composio platform and other services. Affected versions of this package are vulnerable to Improper Neutralization of Data within XPath Expressions 'XPath Injection' via the BROWSERTOOLGOTOPAGE and BROWSERTOOLGETPAGEDETAILS action...

7.5CVSS6.8AI score0.00679EPSS
Exploits1References2
OSV
OSV
added 2024/08/20 1:15 p.m.2 views

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

6.1CVSS5.9AI score0.00397EPSS
Exploits1References1
NVD
NVD
added 2024/08/20 1:15 p.m.11 views

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

6.1CVSS0.00397EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/20 12:0 a.m.11 views

CVE-2024-42560

A cross-site scripting XSS vulnerability in the component updatepagedetails.php of Blood Bank And Donation Management System commit dc9e039 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Details parameter...

5.9AI score0.00397EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/08/20 12:0 a.m.5 views

Blood-Bank-&-Donation-Management-System 安全漏洞

Blood-Bank-&-Donation-Management-System is a blood bank and blood donation management system by Varun Sardana, an individual developer. A security vulnerability exists in Blood-Bank-&-Donation-Management-System that stems from a cross-site scripting vulnerability contained in the...

6.1CVSS6.2AI score0.00397EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2024/04/03 12:0 a.m.16 views

BEAR < 1.1.4.4 - Missing Authorization

Description The BEAR plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the woobeupdatepagefield function in versions up to, and including, 1.1.4.3. This makes it possible for unauthenticated attackers to update page details...

5.3CVSS6.8AI score0.00361EPSS
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2002/09/26 12:0 a.m.13 views

Zope 2.x - Incorrect XML-RPC Request Information Disclosure

Zope 2.x - Incorrect XML-RPC Request Information Disclosure source: https://www.securityfocus.com/bid/5806/info A vulnerability has been reported for Zope 2.5.1 and earlier. Reportedly, Zope does not handle XML-RPC requests properly. Specially crafted XML-RPC requests may cause Zope to respond to...

7.3AI score
Exploits0
Rows per page
Query Builder