Lucene search
K

70 matches found

OSV
OSV
added 2026/07/01 3:17 p.m.3 views

DEBIAN-CVE-2026-14324

RAOP module accepts unbounded Content-Length values and does not check the pwarrayadd return...

6.5CVSS5.8AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2026/07/01 3:17 p.m.3 views

UBUNTU-CVE-2026-14324

RAOP module accepts unbounded Content-Length values and does not check the pwarrayadd return...

6.5CVSS5.8AI score0.00175EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/07/01 2:9 p.m.4 views

CVE-2026-14324

RAOP module accepts unbounded Content-Length values and does not check the pwarrayadd return...

6.5CVSS5.8AI score0.00175EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/07/01 2:9 p.m.7 views

CVE-2026-14324

RAOP module accepts unbounded Content-Length values and does not check the pwarrayadd return. Mitigation If AirPlay streaming is not required, unload or disable the module-raop-discover and module-raop-sink PipeWire modules...

6.5CVSS5.8AI score0.00175EPSS
Exploits0References3
OSV
OSV
added 2026/05/22 7:53 a.m.15 views

CLSA-2026-1779436377 cups: Fix of CVE-2026-27447

CVE-2026-27447: fix authorization bypass in cupsd by replacing case-insensitive username comparisons with byte-exact strcmp against pw-pwname; also include upstream follow-up commit 849fba7d "Fix unauthenticated print policies", Issue 1557 to restore behavior for CUPSDAUTHNONE policies with named...

6.3CVSS5.8AI score0.00317EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/23 3:30 p.m.12 views

EUVD-2026-14415

Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores administrative authentication material in the ecospw cookie using a reversible Base64-encoded format with a static suffix. An attacker who obtains or derives this cookie value can forge a valid administrative session and gain...

8.7CVSS5.8AI score0.00281EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13844

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00136EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-13402 Malicious code in @zalastax/nolb-pw (npm)

The package @zalastax/nolb-pw was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-pw (npm)

The package @zalastax/nolb-pw was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.5 views

Malicious code in @zalastax/nolb-react-pw (npm)

The package @zalastax/nolb-react-pw was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-13728 Malicious code in @zalastax/nolb-react-pw (npm)

The package @zalastax/nolb-react-pw was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/18 11:54 a.m.10 views

CVE-2025-49888

Missing Authorization vulnerability in pimwick PW WooCommerce On Sale! pw-woocommerce-on-sale allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PW WooCommerce On Sale!: from n/a through = 1.39...

7.1CVSS5.9AI score0.00233EPSS
Exploits0References1
NVD
NVD
added 2025/07/16 12:15 p.m.6 views

CVE-2025-49888

Missing Authorization vulnerability in pimwick PW WooCommerce On Sale! pw-woocommerce-on-sale allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PW WooCommerce On Sale!: from n/a through = 1.39...

7.1CVSS0.00233EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:18 a.m.4 views

CVE-2024-10621

The Simple Shortcode for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's pwmap shortcode in all versions up to, and including, 1.5.4 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5AI score0.00336EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/09 3:25 p.m.6 views

CVE-2025-47473

Cross-Site Request Forgery CSRF vulnerability in pimwick PW WooCommerce Bulk Edit pw-bulk-edit allows Cross Site Request Forgery.This issue affects PW WooCommerce Bulk Edit: from n/a through = 2.134...

5.4CVSS7.2AI score0.00136EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.7 views

CVE-2025-47473

Cross-Site Request Forgery CSRF vulnerability in pimwick PW WooCommerce Bulk Edit pw-bulk-edit allows Cross Site Request Forgery.This issue affects PW WooCommerce Bulk Edit: from n/a through = 2.134...

5.4CVSS0.00136EPSS
Exploits0References1
CVE
CVE
added 2025/05/07 2:19 p.m.45 views

CVE-2025-47473

CVE-2025-47473 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin PW WooCommerce Bulk Edit (PW WooCommerce Bulk Edit). Affected versions are up to 2.134 (from n/a through 2.134). The CVSS base score is 5.4 (Medium), with attack vector Network, attack complexity Lo...

5.4CVSS7.2AI score0.00136EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/07 2:19 p.m.9 views

CVE-2025-47473 WordPress PW WooCommerce Bulk Edit <= 2.134 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in pimwick PW WooCommerce Bulk Edit allows Cross Site Request Forgery. This issue affects PW WooCommerce Bulk Edit: from n/a through 2.134...

5.4CVSS5.5AI score0.00136EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/07 2:19 p.m.22 views

CVE-2025-47473 WordPress PW WooCommerce Bulk Edit plugin <= 2.134 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in pimwick PW WooCommerce Bulk Edit pw-bulk-edit allows Cross Site Request Forgery.This issue affects PW WooCommerce Bulk Edit: from n/a through = 2.134...

5.4CVSS0.00136EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/07 12:29 p.m.6 views

WordPress PW WooCommerce Bulk Edit plugin <= 2.134 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by domiee13 in WordPress Plugin PW WooCommerce Bulk Edit versions = 2.134...

5.4CVSS8AI score0.00136EPSS
Exploits0Affected Software1
Rows per page
Query Builder