Lucene search
K

1548 matches found

CVE
CVE
added 2026/05/02 11:16 a.m.13 views

CVE-2026-6817

The affected software is the WordPress plugin “Quiz Maker by AYS.” The vulnerability is a Stored Cross-Site Scripting in the rate_reason parameter present in all versions up to 6.7.1.29, caused by insufficient input sanitization and output escaping. This allows unauthenticated attackers to inject...

5.8CVSS6AI score0.00228EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/02 11:16 a.m.5 views

CVE-2026-6817 Quiz Maker by AYS <= 6.7.1.29 - Unauthenticated Stored Cross-Site Scripting via 'rate_reason'

The Quiz Maker by AYS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ratereason' parameter in all versions up to, and including, 6.7.1.29 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrar...

5.8CVSS6AI score0.00228EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/02 12:0 a.m.8 views

WordPress plugin Quiz Maker by AYS 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.8CVSS5.8AI score0.00228EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/02 12:0 a.m.16 views

PT-2026-36612

The Quiz Maker by AYS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rate reason' parameter in all versions up to, and including, 6.7.1.29 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitra...

5.8CVSS6AI score0.00228EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/02 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31771

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI...

8.1CVSS6AI score0.00205EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.7 views

CVE-2026-31771

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

8.1CVSS0.00205EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.37 views

CVE-2026-31771 Bluetooth: hci_event: move wake reason storage into validated event handlers

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

8.1CVSS0.00205EPSS
Exploits0References2
CVE
CVE
added 2026/05/01 2:14 p.m.20 views

CVE-2026-31771

CVE-2026-31771 affects the Linux kernel Bluetooth HCI event handling. The vulnerability arose because hci_store_wake_reason() could be invoked before per-event payload length checks, potentially allowing a short HCI event frame to reach bacpy() prior to validation. The fix restructures wake-addre...

8.1CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/05/01 2:14 p.m.13 views

EUVD-2026-26584

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

5.8AI score0.00205EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.9 views

CVE-2026-31771

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcievent: move wake reason storage into validated event handlers hcistorewakereason is called from hcieventpacket immediately after stripping the HCI event header but before hcieventfunc enforces the per-event minimum...

8.1CVSS5.7AI score0.00205EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.10 views

PT-2026-36406

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Bluetooth component where hci store wake reason is called within hci event packet before the per-event minimum payload length is enforced by hci event func. This...

8.1CVSS5.8AI score0.00205EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/30 4:30 p.m.5 views

CVE-2026-34995

DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.2AI score
Exploits0References1
OSV
OSV
added 2026/04/11 2:5 p.m.11 views

OESA-2026-1903 python-tornado security update

Tornado is an open source version of the scalable, non-blocking web server and tools. Security Fixes: Tornado is a Python web framework and asynchronous networking library. In versions 6.5.2 and below, the supplied reason phrase is used unescaped in HTTP headers where it could be used for header...

7.2CVSS6AI score0.00237EPSS
Exploits0References3
Mageia
Mageia
added 2026/04/10 5:11 p.m.6 views

Updated python-tornado packages fix security vulnerabilities

Tornado vulnerable to Header Injection and XSS via reason argument. CVE-2025-67724 Tornado is Vulnerable to Quadratic DoS via Repeated Header Coalescing. CVE-2025-67725 Tornado is Vulnerable to Quadratic DoS via Crafted Multipart Parameters. CVE-2025-67726...

7.5CVSS6.6AI score0.00396EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/08 3:31 p.m.7 views

EUVD-2026-20465

Rejected reason: Not used...

6.4CVSS5.9AI score0.00345EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2026/04/02 11:26 p.m.7 views

SUSE CVE-2026-34519

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. This issue has been patched in version 3.13.4...

3.7CVSS5.7AI score0.00292EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/01 10:51 p.m.5 views

CVE-2026-34519

A flaw was found in aiohttp, an asynchronous HTTP client/server framework for Python. A remote attacker could exploit this vulnerability by controlling the 'reason' parameter during the creation of an HTTP response. This could allow the attacker to inject additional HTTP headers, potentially...

6.9CVSS5.8AI score0.00292EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/01 9:48 p.m.11 views

HTTP Response Splitting

Overview Affected versions of this package are vulnerable to HTTP Response Splitting via the reason parameter in the HTTP response creation process. An attacker can inject unauthorized headers or manipulate the HTTP response by supplying specially crafted input containing carriage return...

6.9CVSS5.9AI score0.00292EPSS
Exploits0References2
OSV
OSV
added 2026/04/01 9:48 p.m.2 views

GHSA-MWH4-6H8G-PG8W AIOHTTP has HTTP response splitting via \r in reason phrase

Summary An attacker who controls the reason parameter when creating a Response may be able to inject extra headers or similar exploits. Impact In the unlikely situation that an application allows untrusted data to be used in the response's reason parameter, then an attacker could manipulate the...

6.9CVSS5.8AI score0.00292EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/01 9:48 p.m.4 views

EUVD-2026-18044

AIOHTTP has HTTP response splitting via \r in reason phrase...

6.9CVSS5.9AI score0.00292EPSS
Exploits0References4
Rows per page
Query Builder