Lucene search
+L

1982 matches found

nuclei
nuclei
added yesterday93 views

CyberPower < v2.8.3 - SQL Injection

A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to . id: CVE-2024-32736 info: name: CyberPower PDNU" tags: cve,cve2024,cyberpower,sqli,vkev,vuln http: - method: GET path: - "BaseURL/api/v1/confup?mode=&uid=1'%20UNION%20select%201,2,3,4,sqliteversion;--"...

7.5CVSS7AI score0.05408EPSS
Exploits0References3
nvd
nvd
added 2 days ago4 views

CVE-2026-52101

An issue in andreimarcu linux-server v.1.0 through v.2.3.8 allows a remote attacker to obtain sensitive information via the function uploadRemote function in upload.go...

9.1CVSS0.00234EPSS
Exploits0References2
euvd
euvd
added 2 days ago5 views

EUVD-2026-43616

A vulnerability was identified in nextlevelbuilder GoClaw up to 3.13.3-beta.3. This vulnerability affects the function handleNavigate of the file pkg/browser/tool.go. Such manipulation of the argument args.targetUrl leads to information disclosure. The attack may be performed from remote. The...

5.3CVSS5.9AI score0.00246EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2 days ago4 views

PT-2026-58558

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel affected versions not specified Description An out-of-bounds read issue exists that allows an unauthorized attacker to disclose information over a network. An out-of-bounds read occurs when the software reads data past t...

6.5CVSS6.1AI score0.00637EPSS
Exploits0References5
nuclei
nuclei
added 3 days ago18 views

Mitel MiCollab - Information Disclosure & Denial of Service

Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 contain a vulnerability in the TP-240 component caused by improper handling, letting remote attackers obtain sensitive information and cause denial of service, exploit requires remote access. id: CVE-2022-26143 info: name:...

9.8CVSS7.1AI score0.87565EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2026/07/02 12:0 a.m.10 views

PT-2026-55623

Name of the Vulnerable Software and Affected Versions Microsoft Edge Chromium-based affected versions not specified Description Improper link resolution before file access, also known as link following, allows an unauthorized attacker to disclose information over a network. Recommendations At the...

7.4CVSS5.8AI score0.00745EPSS
Exploits0References7
cvelist
cvelist
added 2026/07/01 3:14 a.m.37 views

CVE-2026-20460

In Modem, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for...

0.00174EPSS
Exploits0References1
cve
cve
added 2026/07/01 3:14 a.m.18 views

CVE-2026-20460

CVE-2026-20460 affects the Modem via information disclosure caused by improper input validation. The issue could enable remote information disclosure if a UE connects to a rogue base station controlled by an attacker, with no extra execution privileges and without user interaction. The available ...

5.3CVSS6AI score0.00174EPSS
Exploits0References1
euvd
euvd
added 2026/07/01 12:34 a.m.10 views

EUVD-2026-40637

Insufficient policy enforcement in Payments in Google Chrome on Android prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00238EPSS
Exploits0References3
nessus
nessus
added 2026/07/01 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-14069

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in WebNN in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to obtain potentially sensitive information from process memory via ...

6.5CVSS6.2AI score0.00229EPSS
Exploits0References2
nvd
nvd
added 2026/06/30 8:17 p.m.6 views

CVE-2026-11595

IBM WebSphere Application Server 9.0, and 8.5 could allow a remote attacker to obtain sensitive information from the administrative console's integrated help system...

7.5CVSS0.00474EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/30 12:0 a.m.12 views

PT-2026-53961

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server version 9.0 IBM WebSphere Application Server version 8.5 Description A remote attacker could obtain sensitive information from the integrated help system of the administrative console. Recommendations At the...

7.5CVSS6AI score0.00474EPSS
Exploits0References5
cvelist
cvelist
added 2026/06/26 3:15 p.m.34 views

CVE-2026-5757 There exists an unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine

Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server's heap memory, potentially leading to sensitive data exposure, further compromise, and stealthy persistence...

0.00551EPSS
Exploits1References2
nvd
nvd
added 2026/06/25 9:16 p.m.6 views

CVE-2026-37452

Insecure Permissions vulnerability in MSI NBFoundation Service v.2.0.2506.1201 allows a remote attacker to obtain sensitive information via the MSIAPService.exe component...

7.5CVSS0.00398EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/06/17 8:13 a.m.7 views

CVE-2026-27868 PUBLICATION OF SENSITIVE INFORMATION ON REGESTA SMART HD-PLC OF TELDAT

An attacker with access via network to the Regesta Smart HD-PLC of the provider Teldat in this case, NO registration action is required who has the vulnerable software could obtain privilege information by using the command Version via the path: /upgrade/query.php?cmd=p+3&3Bversion resulting in a...

6.9CVSS5.3AI score0.00394EPSS
Exploits0References5
euvd
euvd
added 2026/06/16 9:32 p.m.16 views

EUVD-2026-37191

In RtcpHeader::decodeRtcpHeader, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS5.6AI score0.00169EPSS
Exploits0References2
euvd
euvd
added 2026/06/16 9:32 p.m.11 views

EUVD-2026-37189

In ImsMediaBitReader::ReadByteBuffer, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS5.6AI score0.00169EPSS
Exploits0References2
euvd
euvd
added 2026/06/16 9:32 p.m.11 views

EUVD-2026-37174

In RtpPacket::decodePacket, there is a possible out-of-bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation...

4.3CVSS5.7AI score0.00178EPSS
Exploits0References2
euvd
euvd
added 2026/06/16 9:32 p.m.9 views

EUVD-2026-37175

In decodeAppPacket of RtcpAppPacket.cpp, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS5.6AI score0.002EPSS
Exploits0References2
nvd
nvd
added 2026/06/16 8:16 p.m.11 views

CVE-2026-0157

In RtcpHeader::decodeRtcpHeader, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

4.3CVSS0.00169EPSS
Exploits0References1
Rows per page
Query Builder