Lucene search
K

45 matches found

NVD
NVD
added 2026/04/22 8:16 p.m.4 views

CVE-2026-6019

http.cookies.Morsel.jsoutput returns an inline snippet and only escapes " for JavaScript string context. It does not neutralize the HTML parser-sensitive sequence inside the generated script element. Mitigation base64-encodes the cookie value to disallow escaping using cookie value...

6.1CVSS0.00229EPSS
Exploits1References6
OSV
OSV
added 2026/02/26 12:0 a.m.6 views

ALSA-2026:3443 Important: valkey security update

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References6
NCSC
NCSC
added 2025/11/03 8:17 a.m.16 views

Vulnerabilities fixed in IBM QRadar SIEM

IBM has fixed vulnerabilities in IBM QRadar SIEM Specific to Version 7.5.0 Update Pack 13 Independent Fix 02. The vulnerabilities include a stored cross-site scripting XSS vulnerability that allows authenticated users to inject JavaScript into the Web interface. This can lead to compromise of use...

8.5CVSS6AI score0.00163EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/12 12:0 a.m.8 views

PT-2025-41727

Name of the Vulnerable Software and Affected Versions Tomofun Furbo 360 versions prior to FB0035 FW 036 Tomofun Furbo Mini versions prior to MC0020 FW 074 Description A security issue exists in Tomofun Furbo 360 and Furbo Mini related to insecure storage of sensitive information. The issue is...

4.8CVSS4AI score0.00211EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-0750

Malware in sbrugna...

6.1CVSS6.3AI score0.00797EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0833

Malware in sbrugna...

7.2CVSS6.8AI score0.00452EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-2050

Malware in sbrugna...

10CVSS9.2AI score0.01986EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-0789

Malware in sbrugna...

7.5CVSS6.4AI score0.01322EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-17792

Malware in sbrugna...

5.9CVSS6.5AI score0.0043EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-5951

Malware in sbrugna...

3.3CVSS4.2AI score0.00395EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-1064

Malware in sbrugna...

5CVSS6.2AI score0.03071EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2301

Malicious code in bioql PyPI...

6.8CVSS7AI score0.01567EPSS
Exploits0References11
NVD
NVD
added 2025/09/05 2:15 p.m.4 views

CVE-2025-58853

Cross-Site Request Forgery CSRF vulnerability in OTWthemes Popping Sidebars and Widgets Light popping-sidebars-and-widgets-light allows Reflected XSS.This issue affects Popping Sidebars and Widgets Light: from n/a through = 1.27...

7.1CVSS0.00118EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-22763

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a worker is shutdown, it was possible to cause script to run late in the lifecycle, at a point after where it should not be possible. This vulnerability...

8.8CVSS7AI score0.00564EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:23 p.m.5 views

CVE-2020-26567

An issue was discovered on D-Link DSR-250N before 3.17B devices. The CGI script upgradeStatusReboot.cgi can be accessed without authentication. Any access reboots the device, rendering it therefore unusable for several minutes...

5.5CVSS6.9AI score0.17176EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/22 5:45 a.m.4 views

CVE-2017-15733

In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery CSRF in admin/ajax.attachment.php and admin/att.main.php...

8.8CVSS8.8AI score0.0058EPSS
Exploits0References1
Citrix
Citrix
added 2025/05/06 12:0 a.m.16 views

WEM External task not working when "run script " selected

External task configured using below option for "run script" In the WEM logs we could see below error 12:14:13 PM Warning - VuemExternalTaskExecutor.ExecuteExternalTask : External Task - Create User Cache Folder Id:3 - Unable to validate target file existence... 12:14:13 PM Exception -...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.21 views

Linux Distros Unpatched Vulnerability : CVE-2012-1823

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sapi/cgi/cgimain.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script aka php- cgi, does not properly handle query strings that lack a...

9.8CVSS7.8AI score0.99998EPSS
Exploits42References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2013-4885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload arbitrarily named files...

6.8CVSS5.5AI score0.07217EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2007-2348

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mirror --script in lftp before 3.5.9 does not properly quote shell metacharacters, which might allow remote user-assisted attackers to execute shell commands vi...

6.8CVSS6.1AI score0.03175EPSS
Exploits0References2
Rows per page
Query Builder