Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.11 views

MiracleLinux 8 : perl:5.32 (AXSA:2026-487:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-487:01 advisory. perl: Perl threads have a working directory race condition where file operations may target unintended paths CVE-2025-40909 Tenable has extracted the precedin...

5.9CVSS5.6AI score0.0037EPSS
Exploits0References2
NVD
NVD
added 2026/03/27 3:16 p.m.8 views

CVE-2025-69986

A buffer overflow vulnerability exists in the ONVIF GetStreamUri function of LSC Indoor Camera V7.6.32. The application fails to validate the length of the Protocol parameter inside the Transport element. By sending a specially crafted SOAP request containing an oversized protocol string, an...

7.2CVSS0.00537EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/13 9:31 p.m.6 views

EUVD-2026-11916

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in David Lingren Media LIbrary Assistant media-library-assistant allows Blind SQL Injection.This issue affects Media LIbrary Assistant: from n/a through = 3.32...

8.5CVSS5.8AI score0.00228EPSS
Exploits0References2
CVE
CVE
added 2026/02/26 2:8 a.m.18 views

CVE-2026-27963

Audiobookshelf (web application) prior to version 2.32.0 is affected by a stored XSS vulnerability via malicious library metadata. Attackers with library modification privileges can inject JS code that runs in victims’ browsers, potentially enabling session hijacking and data exfiltration. A fix ...

4.8CVSS5.7AI score0.00226EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/12/30 12:17 p.m.2 views

OESA-2025-2889 python-requests security update

Requests is an HTTP library, written in Python, as an alternative to Python's builtin urllib2 which requires work even method overrides to perform basic tasks. Features of Requests: - GET, HEAD, POST, PUT, DELETE Requests: + HTTP Header Request Attachment. + Data/Params Request Attachment. +...

5.6CVSS8AI score0.0034EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/28 12:0 a.m.4 views

Fedora 43 : gdu (2025-709790fda7)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-709790fda7 advisory. Update to 5.32.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested f...

7.5CVSS7.2AI score0.00626EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

WordPress plugin Яндекс Доставка (Boxberry) 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security...

5.4CVSS6.6AI score0.00286EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: Memory corruption issue leading to arbitrary code execution

A memory corruption issue was found in WebKitGTK and WPE WebKit in versions prior to 2.32.0. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS6.9AI score0.02368EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2021/07/30 7:0 a.m.7 views

Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H).

...

7CVSS7.5AI score0.00423EPSS
Exploits0
OSV
OSV
added 2020/06/26 2:20 p.m.11 views

OPENSUSE-SU-2020:0870-1 Security update for mariadb

This update for mariadb to version 10.2.32 fixes the following issues: mariadb was updated to version 10.2.32 bsc1171550 - CVE-2020-2752: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-2812: Fixed an issue which could have resulted in...

8.8CVSS5.4AI score0.03014EPSS
Exploits0References7
OSV
OSV
added 2020/06/23 8:33 a.m.9 views

SUSE-SU-2020:1711-1 Security update for mariadb

This update for mariadb to version 10.2.32 fixes the following issues: mariadb was updated to version 10.2.32 bsc1171550 - CVE-2020-2752: Fixed an issue which could have resulted in unauthorized ability to cause denial of service. - CVE-2020-2812: Fixed an issue which could have resulted in...

8.8CVSS5.8AI score0.03014EPSS
Exploits0References7
CNVD
CNVD
added 2018/01/18 12:0 a.m.4 views

Oracle VM VirtualBox Elevation of Privilege Vulnerability (CNVD-2018-02061)

Oracle Virtualization is the American Oracle Oracle company's set of hardware and software virtualization management solutions. Oracle VM VirtualBox is one of the virtual machine components. A security vulnerability exists in the Oracle VM VirtualBox component of Oracle Virtualization, versions...

8.6CVSS6.7AI score0.00531EPSS
Exploits0References1
OSV
OSV
added 2015/01/14 12:0 a.m.3 views

UBUNTU-CVE-2014-8636

The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does not properly interact with a DOM object that has a named getter, which might allow remote attackers to execute arbitrary JavaScript code with chrome privileges via unspecified vectors...

7.5CVSS7.2AI score0.65657EPSS
Exploits4References4
Rows per page
Query Builder