Lucene search
K

8 matches found

EUVD
EUVD
added 2026/03/26 3:30 p.m.5 views

EUVD-2025-209075

HCL Aftermarket DPC is affected by Internal IP Disclosure vulnerability will give attackers a clearer map of the organization’s network layout...

5.3CVSS5.8AI score0.00202EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/07 9:36 a.m.8 views

CVE-2019-7899

Names of disabled downloadable products could be disclosed due to inadequate validation of user input in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2...

5.3CVSS6.7AI score0.00928EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/27 9:27 a.m.2 views

CVE-2025-12584 Quick View for WooCommerce <= 2.2.17 - Unauthenticated Private Product Disclosure

The Quick View for WooCommerce plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.2.17 via the 'wqvpopupcontent' AJAX endpoint due to insufficient restrictions on which products can be included. This makes it possible for unauthenticated attackers t...

5.3CVSS5.6AI score0.00223EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-1925

Malicious code in bioql PyPI...

5.3CVSS5.8AI score0.00928EPSS
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/03/25 9:6 a.m.4 views

Yomi-Search vulnerable to cross-site scripting

Overview Yomi-Search provided by WonderLink is a directory type search engine program. Yomi-Search contains a cross-site scripting vulnerability CWE-79. During the meeting of Committee for authorizing the disclosure of unresolved vulnerabilities held on January 22, 2021, it was judged that an...

6.1CVSS6.1AI score0.00756EPSS
Exploits0References4
Prion
Prion
added 2019/12/06 11:15 p.m.16 views

Input validation

In Blob::Blob of blob.cpp, there is a possible unencrypted master key due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10Android ID...

2.1CVSS4.3AI score0.00095EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/04 1:55 a.m.17 views

Security Bulletin: The product discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system.

Summary The product discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. Vulnerability Details CVEID: CVE-2018-1732 Description: IBM QRadar Advisor discloses sensitive information to unauthorized users. The information can be...

7.5CVSS1.8AI score0.01448EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2016/08/09 12:0 a.m.77 views

Multiple Vendors '/servlets/FetchFile' Multiple Vulnerabilities - Active Check

Multiple vulnerabilities affecting the remote device have been found, these vulnerabilities allows uploading of arbitrary files and their execution, arbitrary file download with directory traversal, use of a weak algorithm for storing passwords and session hijacking. SPDX-FileCopyrightText: 2016...

7.5CVSS9.1AI score0.97415EPSS
Exploits11References2
Rows per page
Query Builder