Lucene search
K

795 matches found

Positive Technologies
Positive Technologies
added 6 days ago12 views

PT-2026-55609

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based affected versions not specified Description A spoofing issue exists in Microsoft Edge Chromium-based, which could allow an attacker to impersonate a trusted entity or website to deceive users. Recommendations At t...

6.5CVSS6AI score0.00475EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.10 views

PT-2026-54688

Name of the Vulnerable Software and Affected Versions Google Chrome on ChromeOS versions prior to 150.0.7871.46 Description An uninitialized use in Dawn allows a remote attacker to obtain potentially sensitive information from process memory by using a crafted HTML page. Recommendations Update...

9.6CVSS6AI score0.00413EPSS
Exploits0References440
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.10 views

PT-2026-53686

Content removed...

6.9CVSS5.8AI score0.00168EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/28 12:0 a.m.12 views

PT-2026-53224

Name of the Vulnerable Software and Affected Versions Edimax EW-7478APC version 1.04 Description A remote buffer overflow exists in the POST Request Handler component. The issue occurs within the formUSBFolder function located in the /goform/formUSBFolder endpoint when processing the ShareName or...

9CVSS7.6AI score0.00445EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.6 views

PT-2026-52578

Name of the Vulnerable Software and Affected Versions MSI NBFoundation Service version 2.0.2506.1201 Description Insecure permissions in the MSIAPService.exe component allow a remote attacker to obtain sensitive information. Recommendations At the moment, there is no information about a newer...

7.5CVSS5.8AI score0.00398EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.9 views

PT-2026-55840

Name of the Vulnerable Software and Affected Versions Protego versions prior to 0.6.2-1.1 Description Security issues were identified in the Protego package within the openSUSE Tumbleweed distribution. Recommendations Update to version 0.6.2-1.1...

5.9AI score
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/06/20 12:0 a.m.16 views

PT-2026-51195

Name of the Vulnerable Software and Affected Versions Apache NiFi versions 0.0.1 through 2.9.0 Description Apache NiFi allows the construction of qualified URLs using several HTTP request headers that serve as alternatives to the standard Host header without validating the provided values. While ...

6.3CVSS5.9AI score0.00268EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/20 12:0 a.m.20 views

PT-2026-51188

Name of the Vulnerable Software and Affected Versions AOMEI Partition Assistant versions prior to 10.10.2 Description Improper access controls exist within the Kernel Driver component, specifically affecting unknown code in the ampa10.sys library. This issue allows a local attacker to manipulate...

8.5CVSS7.2AI score0.00113EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.18 views

PT-2026-51033

Name of the Vulnerable Software and Affected Versions Microsoft Exchange Online affected versions not specified Description Missing authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network. There have been reports of elevated activities targeti...

9.6CVSS5.8AI score0.00389EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.9 views

PT-2026-52062

Name of the Vulnerable Software and Affected Versions Node.js versions 22.x through 26.3.0 Description A flaw in the TLS host verification process allows an attacker to bypass certification validation. Recommendations Update Node.js to version 26.3.1 or later...

7.5CVSS7.1AI score0.02806EPSS
Exploits0References144
Cvelist
Cvelist
added 2026/06/17 9:50 a.m.27 views

CVE-2025-60218 WordPress PT Luxa Addons Plugin <= 1.2.2 - Arbitrary File Upload Vulnerability

Subscriber Arbitrary File Upload in PT Luxa Addons = 1.2.2 versions...

9.9CVSS0.00447EPSS
Exploits0References1
CVE
CVE
added 2026/06/17 9:50 a.m.15 views

CVE-2025-60218

CVE-2025-60218 concerns the WordPress plugin “PT Luxa Addons” (versions

9.9CVSS5.2AI score0.00447EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.10 views

PT-2026-52180

Name of the Vulnerable Software and Affected Versions WeasyPrint affected versions not specified Description A CSS injection issue occurs when HTML presentational hints are enabled. Unescaped attribute values are embedded into CSS, allowing the injection of arbitrary CSS declarations. This...

6.5CVSS6.1AI score
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.16 views

PT-2026-49617

CVE ID :CVE-2026-54296 Published : June 15, 2026, 6:31 p.m. | 1 hour, 19 minutes ago Description :None Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

5.2AI score0.00032EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-48874

@0xmagic0 @Manifold ai sec CVE-2026-54052 assigned to this critical vulnerability...

5.3AI score0.00043EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.14 views

PT-2026-48356

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description No information provided regarding the nature of the issue. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

5.1CVSS5.1AI score0.00288EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.11 views

PT-2026-51160

Name of the Vulnerable Software and Affected Versions jq versions prior to 1.8.2 Description In assertion-disabled builds, the jq --rawfile command can lead to invalid-state reuse and a heap out-of-bounds write. This occurs when the jv load fileraw=1 function reads an attacker-controlled file and...

7.1CVSS5.8AI score0.00165EPSS
Exploits1References14
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.16 views

PT-2026-48265

Name of the Vulnerable Software and Affected Versions Focus for iOS versions prior to 151.3.1 Klar for iOS versions prior to 151.3.1 Description Universal Cross-Site Scripting UXSS exists in the Webkit navigation of Focus for iOS and Klar for iOS. UXSS is a security flaw that allows an attacker t...

7.5CVSS5.6AI score0.00216EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.6 views

PT-2026-48815

Unknown description...

5.4AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.5 views

PT-2026-48802

Unknown description...

5.4AI score
Exploits0References5
Rows per page
Query Builder