Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/05/13 8:38 p.m.7 views

CVE-2026-39358 CubeCart: Time-based Blind SQL Injection

CubeCart is an ecommerce software solution. Prior to 6.6.0, Authenticated Time-Based Blind SQL Injection vulnerabilities were identified in the sorting parameters sortprice, sortactivity, sortadmin, and sortcustomer of the Products and Logs endpoints in CubeCart v6.x. This allows an attacker to...

7.2CVSS6.2AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2026/04/07 4:16 p.m.10 views

CVE-2026-35521

FTLDNS pihole-FTL provides an interactive API and also generates statistics for Pi-hole's Web interface. From 6.0 to before 6.6, the Pi-hole FTL engine contains a Remote Code Execution RCE vulnerability in the DHCP hosts configuration parameter dhcp.hosts. This vulnerability allows an authenticat...

8.8CVSS0.00686EPSS
Exploits1References1
OSV
OSV
added 2025/01/31 12:15 p.m.3 views

AZL-56351 CVE-2025-21667 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: iomap: avoid avoid truncating 64-bit offset to 32 bits on 32-bit kernels, iomapwritedelallocscan was inadvertently using a 32-bit position due to folionextindex returning an unsigned long. This could lead to an infinite loop when...

5.5CVSS6.4AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2024/08/17 9:15 a.m.14 views

AZL-48048 CVE-2024-42302 affecting package kernel for versions less than 6.6.47.1-1

In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith reports a use-after-free when a DPC event occurs concurrently to hot-removal of the same portion of the hierarchy: The dpchandler awaits readiness of the seconda...

7.8CVSS6.3AI score0.00228EPSS
Exploits0References1
Rows per page
Query Builder