Lucene search
K

4606 matches found

Positive Technologies
Positive Technologies
added 2023/01/03 12:0 a.m.5 views

PT-2023-9940 · Unknown · Ahmyi Rivettracker

Name of the Vulnerable Software and Affected Versions: ahmyi RivetTracker affected versions not specified Description: A problematic issue has been found in ahmyi RivetTracker, affecting some unknown processing. The manipulation of the argument $ SERVER'PHP SELF' leads to cross site scripting. Th...

6.1CVSS6.5AI score0.00568EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/01/02 12:0 a.m.3 views

PT-2023-13959 · WordPress · Superio

Name of the Vulnerable Software and Affected Versions: Superio WordPress theme affected versions not specified Description: The issue concerns the Superio WordPress theme, which does not properly sanitise and escape certain parameters. This could allow users with a role as low as a subscriber to...

5.4CVSS6.3AI score0.00484EPSS
Exploits2References8
Positive Technologies
Positive Technologies
added 2022/12/31 12:0 a.m.3 views

PT-2022-8021 · Unknown · Exciting Printer

Name of the Vulnerable Software and Affected Versions: Exciting Printer affected versions not specified Description: A critical issue affects the Argument Handler component, specifically the file lib/printer/jobs/prepare page.rb, where the manipulation of the URL argument leads to command...

9.8CVSS6.4AI score0.02059EPSS
Exploits0References9
OSV
OSV
added 2022/12/30 12:15 p.m.4 views

DEBIAN-CVE-2018-25060

A vulnerability was found in Macaron csrf and classified as problematic. Affected by this issue is some unknown functionality of the file csrf.go. The manipulation of the argument Generate leads to sensitive cookie without secure attribute. The attack may be launched remotely. The complexity of a...

7.5CVSS3.8AI score0.00515EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2022/12/27 5:56 p.m.18 views

CVE-2022-4127 affecting package kernel 5.10.155.1-1

CVE-2022-4127 affecting package kernel 5.10.155.1-1. A patched version of the package is available...

5.5CVSS7.4AI score0.00206EPSS
Exploits0
CBLMariner
CBLMariner
added 2022/12/27 5:56 p.m.19 views

CVE-2022-3910 affecting package kernel 5.10.155.1-1

CVE-2022-3910 affecting package kernel 5.10.155.1-1. A patched version of the package is available...

7.8CVSS7.4AI score0.01006EPSS
Exploits2
CBLMariner
CBLMariner
added 2022/12/27 5:56 p.m.22 views

CVE-2022-3115 affecting package kernel 5.10.155.1-1

CVE-2022-3115 affecting package kernel 5.10.155.1-1. A patched version of the package is available...

5.5CVSS9.7AI score0.00217EPSS
Exploits0
OSV
OSV
added 2022/12/27 3:30 p.m.22 views

GHSA-J593-H5V3-45X6 usememos/memos may leak user information to an authenticated user

usememos/memos 0.9.0 and prior has endpoint that leaks user information like names, email, role, and OpenID to an authenticated user. A patch is available at commit 05b41804e33a34102f1f75bb2d69195dda6a1210 on the main branch...

4.3CVSS5.7AI score0.00773EPSS
Exploits1References4
OSV
OSV
added 2022/12/27 3:30 p.m.15 views

GHSA-33M8-F4HW-WM3Q usememos/memos Denial of Service vulnerability

Denial of Service in GitHub repository usememos/memos 0.9.0 and prior. A patch is available on the main branch at commit number f888c628408501daf639de07b90a72ab443b0f4c...

7.5CVSS7.5AI score0.00678EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/12/27 12:0 a.m.13 views

PT-2022-8303 · Unknown · Nsupdate.Info

Name of the Vulnerable Software and Affected Versions: nsupdate.info affected versions not specified Description: A problematic vulnerability has been found in nsupdate.info, affecting the component CSRF Cookie Handler in the file src/nsupdate/settings/base.py. The manipulation of the argument CS...

5.3CVSS4.7AI score0.00612EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2022/12/27 12:0 a.m.5 views

PT-2022-8300 · Unknown · Ytti Oxidized Web

Name of the Vulnerable Software and Affected Versions: ytti Oxidized Web affected versions not specified Description: A vulnerability was found in ytti Oxidized Web, classified as problematic. The issue affects an unknown function of the file lib/oxidized/web/views/conf search.haml. The...

5.4CVSS4.3AI score0.00531EPSS
Exploits0References11
OSV
OSV
added 2022/12/26 7:15 a.m.2 views

UBUNTU-CVE-2019-25085

A vulnerability was found in GNOME gvdb. It has been classified as critical. This affects the function gvdbtablewritecontentsasync of the file gvdb-builder.c. The manipulation leads to use after free. It is possible to initiate the attack remotely. The name of the patch is...

8.8CVSS5.3AI score0.00753EPSS
Exploits0References5
OSV
OSV
added 2022/12/25 11:15 a.m.4 views

CVE-2021-4277

A vulnerability, which was classified as problematic, has been found in fredsmith utils. This issue affects some unknown processing of the file screenshotsync of the component Filename Handler. The manipulation leads to predictable from observable state. The name of the patch is...

5.3CVSS4.9AI score0.00452EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/23 2:0 p.m.5 views

CVE-2022-23547 Heap buffer overflow in pjproject when decoding STUN message

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability...

6.5CVSS7.2AI score0.00945EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/12/21 12:0 a.m.16 views

Fedora 36 : qpress (2022-e19ca639ef)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-e19ca639ef advisory. Security fix for CVE-2022-45866 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

5.3CVSS5.8AI score0.01299EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/12/21 12:0 a.m.4 views

PT-2022-11671 · Unknown · Studygolang

Name of the Vulnerable Software and Affected Versions: studygolang affected versions not specified Description: A problematic vulnerability was found in studygolang, affecting the Search function of the file http/controller/search.go. The manipulation of the argument q leads to cross-site...

6.1CVSS5.2AI score0.00532EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/12/21 12:0 a.m.7 views

CVE-2022-4631 WP-Ban ban-options.php cross site scripting

A vulnerability, which was classified as problematic, was found in WP-Ban. Affected is an unknown function of the file ban-options.php. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is 22b925449c84faa9b7496abe4f8f5661cb5eb3bf. ...

3.5CVSS6.1AI score0.00385EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/20 6:50 p.m.6 views

CVE-2022-23537 PJSIP vulnerable to heap buffer overflow when decoding STUN message

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects...

6.5CVSS9.4AI score0.01026EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/12/20 6:50 p.m.22 views

CVE-2022-23537 PJSIP vulnerable to heap buffer overflow when decoding STUN message

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects...

6.5CVSS9.6AI score0.01026EPSS
Exploits0References3
OSV
OSV
added 2022/12/19 2:15 p.m.4 views

DEBIAN-CVE-2021-4258

A vulnerability was found in whohas. It has been rated as problematic. This issue affects some unknown processing of the component Package Information Handler. The manipulation leads to cleartext transmission of sensitive information. The attack may be initiated remotely. The real existence of th...

7.5CVSS5.9AI score0.0038EPSS
Exploits0References1
Rows per page
Query Builder