Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/06/12 8:23 p.m.7 views

CVE-2026-44783 Discourse: Replying to a whisper lets non-whisperers create staff-only whisper posts

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, a flaw in how replies to whisper posts are handled allows authenticated users outside the groups configured in...

5.4CVSS5.3AI score0.00148EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/12 8:23 p.m.30 views

CVE-2026-44783 Discourse: Replying to a whisper lets non-whisperers create staff-only whisper posts

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, a flaw in how replies to whisper posts are handled allows authenticated users outside the groups configured in...

5.4CVSS0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3022

Malware in sbrugna...

6.1CVSS6.3AI score0.00389EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/13 8:0 a.m.29 views

CVE-2022-32740 Information disclosure in the External Interface

A reply to a forwarded email article by a 3rd party could unintensionally expose the email content to the ticket customer under certain circumstances...

3.5CVSS5.5AI score0.00712EPSS
Exploits0References1
exploitpack
exploitpack
added 2019/12/02 12:29 p.m.62 views

null

A remote administration tool a RAT is a piece of software that allows a remote "operator" to control a system as if he has physical access to that system. While desktop sharing and remote administration have many legal uses, "RAT" software is usually associated with criminal or malicious activity...

0.5AI score
Exploits0
Hacker One
Hacker One
added 2018/09/12 3:1 p.m.19 views

Mail.ru: Stored XSS

XSS in "Undo" functionality of message editing on replying to malformed message...

1.6AI score
Exploits0
Mozilla
Mozilla
added 2010/03/16 12:0 a.m.30 views

Scriptable plugin execution in SeaMonkey mail — Mozilla

Security researcher Georgi Guninski reported that scriptable plugin content, such as Flash objects, could be loaded and executed in SeaMonkey mail messages by embedding the content in an iframe inside the message. If a user were to reply to or forward such a message, malicious JavaScript embedded...

7.1CVSS1.4AI score0.0277EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder