Lucene search
K

4 matches found

CVE
CVE
added 2026/04/02 2:43 p.m.13 views

CVE-2026-32629

Summary: CVE-2026-32629 affects phpMyFAQ prior to 4.1.1, where an unauthenticated attacker can submit a guest FAQ with a syntactically valid but HTML-containing email address. PHP’s FILTER_VALIDATE_EMAIL accepts the quoted-local-part email, stores it without HTML sanitization, and later renders i...

6.4CVSS5.8AI score0.00262EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/01 12:0 a.m.7 views

PT-2024-29299 · Unknown · Openharmony

Name of the Vulnerable Software and Affected Versions: OpenHarmony versions prior to 4.1.0 Description: The issue allows a local attacker to upgrade common permissions to root and leak sensitive information through a use-after-free vulnerability. This could potentially lead to system compromise...

8.8CVSS6.7AI score0.00188EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2021/12/23 12:0 a.m.10 views

PT-2021-24242 · Unknown · Cve-Search

Name of the Vulnerable Software and Affected Versions: cve-search versions prior to 4.1.0 Description: The issue in cve-search allows regular expression injection, which can lead to ReDoS regular expression denial of service or other impacts. This occurs in the lib/DatabaseLayer.py file...

7.5CVSS7.4AI score0.01874EPSS
Exploits1References5
CNVD
CNVD
added 2019/07/05 12:0 a.m.3 views

Subrion CMS Cross-Site Scripting Vulnerability (CNVD-2019-21429)

Subrion CMS is a PHP-based content management system CMS from the Subrion team. The system can be integrated into a website and supports a variety of extensions plugins and more. A cross-site scripting vulnerability exists in Subrion CMS versions prior to 4.1.4, which stems from a lack of proper...

6.1CVSS6.3AI score0.00905EPSS
Exploits0References1
Rows per page
Query Builder