Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:44 a.m.10 views

CVE-2022-23720

PingID Windows Login prior to 2.8 does not alert or halt operation if it has been provisioned with the full permissions PingID properties file. An IT administrator could mistakenly deploy administrator privileged PingID API credentials, such as those typically used by PingFederate, into PingID...

8.2CVSS6.6AI score0.00242EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-37406

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00521EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/09/26 9:22 a.m.13 views

Fortra GoAnywhere CVSS 10 Flaw Exploited as 0-Day a Week Before Public Disclosure

Cybersecurity company watchTowr Labs has disclosed that it has "credible evidence" of active exploitation of the recently disclosed security flaw in Fortra GoAnywhere Managed File Transfer MFT software as early as September 10, 2025, a whole week before it was publicly disclosed. "This is not...

10CVSS9.1AI score0.99614EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/07/11 4:17 a.m.7 views

CVE-2025-7214

A vulnerability classified as problematic was found in FNKvision FNK-GU2 up to 40.1.7. Affected by this vulnerability is an unknown functionality of the file /etc/shadow of the component MD5. The manipulation leads to risky cryptographic algorithm. It is possible to launch the attack on the...

1.6CVSS3.7AI score0.00094EPSS
Exploits0References1
ICS
ICS
added 2025/05/29 6:0 a.m.12 views

Instantel Micromate (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could allow an unauthenticated attacker to access the device's configuration port and execute commands. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability,...

9.8CVSS10AI score0.00808EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.8 views

PT-2025-12883 · WordPress · Product Import Export For Woocommerce

Name of the Vulnerable Software and Affected Versions: Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress versions up to, and including, 2.5.0 Description: The issue allows authenticated attackers with Administrator-level access and above to make web...

7.6CVSS9.1AI score0.00353EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2011-3209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The divlonglongrem implementation in include/asm-x86/div64.h in the Linux kernel before 2.6.26 on the x86 platform allows local users to cause a denial of servi...

4.9CVSS7.2AI score0.00481EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 8:26 a.m.6 views

CVE-2024-47590

An unauthenticated attacker can create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious link, input data will be used by the web site page generation to create content which when executed in the victim's browser XXS or transmitted to...

8.8CVSS7.6AI score0.00769EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/17 12:0 a.m.6 views

PT-2023-16592 · WordPress · Themeflection Numbers

Name of the Vulnerable Software and Affected Versions: Themeflection Numbers WordPress plugin versions prior to 2.0.1 Description: The issue is related to a lack of authorisation and CSRF check in an AJAX action, which does not ensure that the options to be updated belong to the plugin. This coul...

6.5CVSS7AI score0.00301EPSS
Exploits2References7
securityvulns
securityvulns
added 2003/08/01 12:0 a.m.30 views

Novell GroupWise Internet Agent 6.5.1

Novacoast Security Advisory Novell GroupWise 6.5 Vulnerability Synopsis: Novacoast has discovered a vulnerability in the Novell GroupWise 6.5 Wireless Webaccess logging functionality. The software exposes all username and passwords within the log file in clear text. This information could be used...

6.9AI score
Exploits0
Exploit DB
Exploit DB
added 2003/02/25 12:0 a.m.49 views

CuteNews 0.88 - 'search.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/6935/info CuteNews is prone to an issue that may allow remote attackers to include files located on remote servers. Under some circumstances, it is possible for remote attackers to influence the include path for several include files to point to an extern...

7.4AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.5 views

CVE-2021-44782

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.14 views

CVE-2021-0025

...

Exploits0
Rows per page
Query Builder