Lucene search
K

7 matches found

CVE
CVE
added 2026/04/08 8:30 a.m.17 views

CVE-2026-39526

WpStream WordPress plugin < 4.11.2 contains an Insecure Direct Object References (IDOR) vulnerability leading to an Authorization Bypass via a user-controlled key. Root cause: misconfigured access control allowing unauthorized access to resources. Affected product/version: WPStream plugin for ...

5.4CVSS5.9AI score0.00229EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.12 views

mppx 安全漏洞

MPPX is a blockchain-based payment protocol SDK developed by Wevm. Versions of MPPX prior to 0.4.11 contained security vulnerabilities. These vulnerabilities stemmed from improper closure of credential verification, which could lead to channels being closed for free or triggering attacks...

7.5CVSS5.8AI score0.00359EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001658)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001658 advisory. The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of...

10CVSS6.8AI score0.52841EPSS
Exploits0References36
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003417)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003417 advisory. The docheck function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allowptrleaks value available for restricting the output of the...

5.5CVSS6.3AI score0.01261EPSS
Exploits0References10
CVE
CVE
added 2025/10/22 8:45 p.m.17 views

CVE-2025-62612

The CVE-2025-62612 advisory concerns FastGPT prior to version 4.11.1, where the workflow file reading node does not verify the security of the network link, enabling potential SSRF attacks. Multiple connected sources corroborate the issue as a FastGPT SSRF in the workflow file reading node with u...

6.9CVSS6.5AI score0.00217EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/07/10 12:0 a.m.3 views

PT-2019-4891 · Xen +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions prior to 4.11.x Description: The issue is caused by synchronization errors when using a shared resource, allowing an attacker to cause a denial of service or gain privileges by leveraging a page-writability race condition during...

9.8CVSS7.8AI score0.16658EPSS
Exploits4References201
CNVD
CNVD
added 2016/12/16 12:0 a.m.3 views

JFrog Artifactory Arbitrary Code Execution Vulnerability

JFrog Artifactory is an open source, general-purpose Artifact repository manager from Israel's JFrog that supports clustering and high-availability Docker registries and provides an end-to-end automation solution for tracking artifacts from development to production. A security vulnerability exis...

9.8CVSS7.7AI score0.03849EPSS
Exploits0References1
Rows per page
Query Builder