Lucene search
K

41225 matches found

Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.15 views

PT-2026-39755

A security vulnerability has been detected in jishenghua jshERP up to 3.6. This affects the function getUserByWeixinCode of the file jshERP-boot/src/main/java/com/jsh/erp/service/UserService.java of the component updatePlatformConfigByKey Endpoint. Such manipulation of the argument weixinUrl lead...

5.8CVSS5.5AI score0.00223EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

bettercap 数字错误漏洞

Bettercap is an open-source framework for network attacks and security testing developed by Bettercap. Versions of Bettercap 2.41.5 and earlier contain a numerical error vulnerability. This vulnerability stems from an unknown function in the modules/mysqlserver/mysqlserver.go file of the MySQL...

6.3CVSS5.6AI score0.00389EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39756

A vulnerability was detected in inkeep agents 0.58.14. This vulnerability affects the function createDevContext of the file agents-api/src/middleware/runAuth.ts of the component runAuth Middleware. Performing a manipulation results in authentication bypass using alternate channel. The attack is...

7.5CVSS6.8AI score0.00411EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.13 views

PT-2026-39871

Name of the Vulnerable Software and Affected Versions omec-project amf versions prior to 2.1.2 Description A flaw in the NGAP Message Handler component allows a remote attacker to cause memory corruption through manipulation. Recommendations Apply patch...

5.3CVSS5.8AI score0.00309EPSS
Exploits0References15
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.9 views

PT-2026-39576

A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysql server/mysql server.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requir...

6.3CVSS5AI score0.00389EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-5244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in Cesanta Mongoose up to 7.20. This affects the function mgtlsrecvcert of the file mongoose.c of the component TLS 1.3 Handler...

9.8CVSS6.9AI score0.00727EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-8275

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in bettercap up to 2.41.5. Affected by this vulnerability is the function ippReadChunkedBody of the file...

6.3CVSS4.9AI score0.00523EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-6985

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weakness has been identified in Cesanta Mongoose up to 7.20. This vulnerability affects the function handleopt of the file /src/netbuiltin.c of the component...

7.5CVSS5.6AI score0.00565EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017669)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017669 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.22 and prior. Easily...

6.8CVSS6.7AI score0.02157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-5246

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mgtlsverifycertsignature of the file mongoose.c of the component P-384...

8.1CVSS5.4AI score0.00622EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-8276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysqlserver/mysqlserver.go of the...

6.3CVSS4.6AI score0.00389EPSS
Exploits0References3
CVE
CVE
added 2026/05/10 11:45 p.m.26 views

CVE-2026-8254

Dev@ ERP Online (vulnerable up to 4.0.0) has a cross-site scripting flaw in the /inventory/sales_save endpoint. The issue arises from manipulation of that function, enabling remote exploitation with user interaction required for triggering. Public PoC/exploit appears to exist per sources; vendor ...

4.8CVSS4.2AI score0.00253EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/10 11:45 p.m.8 views

CVE-2026-8254 Devs Palace ERP Online sales_save cross site scripting

A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. Affected by this issue is some unknown functionality of the file /inventory/salessave. The manipulation results in cross site scripting. It is possible to launch the attack remotely. The exploit has been released to the...

4.8CVSS4.2AI score0.00253EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/10 11:30 p.m.30 views

EUVD-2026-29008

A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchasesave. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available a...

4.8CVSS4.2AI score0.00202EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/10 11:30 p.m.11 views

CVE-2026-8253

A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchasesave. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available a...

4.8CVSS4.2AI score0.00202EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/05/10 11:16 p.m.14 views

CVE-2026-8248

A vulnerability was detected in Open5GS up to 2.7.7. The affected element is the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. The manipulation results in denial of service. The attack may be launched remotely. The exploit is now public and may b...

6.5CVSS0.00471EPSS
Exploits1References5
NVD
NVD
added 2026/05/10 11:16 p.m.34 views

CVE-2026-8249

A flaw has been found in Open5GS up to 2.7.7. The impacted element is the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. This manipulation causes denial of service. Remote exploitation of the attack is possible. The exploit has been published and...

6.5CVSS0.00372EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/10 11:15 p.m.61 views

CVE-2026-8252 Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer dereference

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smfnsmfhandlecreatedatainhsmf of the component SMF. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized...

5.3CVSS0.00378EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/05/10 11:15 p.m.11 views

CVE-2026-8252 Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer dereference

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smfnsmfhandlecreatedatainhsmf of the component SMF. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized...

5.3CVSS5.4AI score0.00378EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/10 11:0 p.m.41 views

CVE-2026-8251 Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qos denial of service

A vulnerability was found in Open5GS up to 2.7.7. This impacts the function updateauthorizedpccruleandqos of the file /src/smf/npcf-handler.c of the component SMF. Performing a manipulation results in denial of service. The attack is possible to be carried out remotely. The exploit has been made...

5.3CVSS0.00461EPSS
Exploits1References5
Rows per page
Query Builder