Lucene search
K

1381 matches found

NVD
NVD
added 2026/04/02 5:16 p.m.5 views

CVE-2026-34230

Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Utils.selectbestencoding processes Accept-Encoding values with quadratic time complexity when the header contains many wildcard entries. Because this method is used by Rack::Deflater to choose a respon...

7.5CVSS0.0043EPSS
Exploits0References1
OSV
OSV
added 2026/03/30 2:36 p.m.3 views

SUSE-SU-2026:20962-1 Security update for gnutls

This update for gnutls fixes the following issues: - CVE-2025-14831: Fixed DoS via excessive resource consumption during certificate verification. bsc1257960 - CVE-2025-9820: Fixed a buffer overflow in gnutlspkcs11tokeninit. bsc1254132 - Add the functionality to allow to specify the hash algorith...

5.3CVSS6.7AI score0.00638EPSS
Exploits1References6
Packet Storm News
Packet Storm News
added 2026/03/27 12:0 a.m.2 views

Stegano 2.4.1

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit LSB technique. It is possible to use a more advanced LSB method based on integers sets. The sets Sieve of...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 11:3 p.m.5 views

CVE-2026-33910

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

8.8CVSS5.8AI score0.00427EPSS
Exploits2References1
Microsoft CVE
Microsoft CVE
added 2026/03/26 8:7 a.m.3 views

net/sched: ets: fix divide by zero in the offload path

...

5.5CVSS5.8AI score0.00119EPSS
Exploits0
Packet Storm
Packet Storm
added 2026/03/26 12:0 a.m.112 views

📄 OpenEMR 8.0.0.2 SQL Injection

OpenEMR version 8.0.0.2 contains a remote SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the patient selection feature. CVE-2026-33910 - SQL Injection Vulnerability in...

8.8CVSS5.9AI score0.00427EPSS
Exploits2
NVD
NVD
added 2026/03/25 11:17 p.m.10 views

CVE-2026-33910

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

8.8CVSS0.00427EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/03/25 10:41 p.m.20 views

CVE-2026-33910 OpenEMR has a SQL Injection Vulnerability in patient selection

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

7.2CVSS0.00427EPSS
Exploits2References3
EUVD
EUVD
added 2026/03/25 10:41 p.m.5 views

EUVD-2026-16016

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

7.2CVSS5.8AI score0.00427EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:41 p.m.2 views

CVE-2026-33910

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

7.2CVSS5.8AI score0.00427EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2026/03/25 10:41 p.m.11 views

CVE-2026-33910

OpenEMR is affected by a SQL injection in the patient selection feature. The vulnerability exists in versions up to 8.0.0.2 due to insufficient input validation; authenticated attackers can exploit it. Version 8.0.0.3 contains a patch. Practical impact: high because it affects confidentiality, in...

8.8CVSS5.8AI score0.00427EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/25 10:41 p.m.8 views

CVE-2026-33910 OpenEMR has a SQL Injection Vulnerability in patient selection

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

7.2CVSS5.8AI score0.00427EPSS
Exploits2References3
OSV
OSV
added 2026/03/25 10:41 p.m.3 views

CVE-2026-33910 OpenEMR has a SQL Injection Vulnerability in patient selection

OpenEMR is a free and open source electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to...

7.2CVSS5.9AI score0.00427EPSS
Exploits2References5
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.7 views

CVE-2026-23379

In the Linux kernel, the following vulnerability has been resolved: net/sched: ets: fix divide by zero in the offload path Offloading ETS requires computing each class' WRR weight: this is done by averaging over the sums of quanta as 'qsum' and 'qpsum'. Using unsigned int, the same integer size a...

5.5CVSS5.8AI score0.00119EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.3 views

PT-2026-28140

Name of the Vulnerable Software and Affected Versions OpenEMR versions through 8.0.0.2 Description OpenEMR is an electronic health records and medical practice management application. Versions up to and including 8.0.0.2 contain a SQL injection issue in the patient selection feature. This is due ...

7.2CVSS5.8AI score0.00427EPSS
Exploits2References5
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.5 views

OpenEMR SQL注入漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. OpenEMR versions 8.0.0.2 and earlier have a SQL injection...

8.8CVSS5.9AI score0.00427EPSS
Exploits2References4
The Hacker News
The Hacker News
added 2026/03/24 12:1 p.m.7 views

The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills

Cybersecurity has changed fast. Roles are more specialized, and tooling is more advanced. On paper, this should make organizations more secure. But in practice, many teams struggle with the same basic problems they faced years ago: unclear risk priorities, misaligned tooling decisions, and...

6AI score
Exploits0
NVD
NVD
added 2026/03/22 2:16 p.m.5 views

CVE-2019-25602

GSearch 1.0.1.0 contains a denial of service vulnerability that allows local attackers to crash the application by inputting an excessively long string in the search bar. Attackers can paste a buffer of 2000 characters into the search field, click search, and select any result to trigger an...

6.8CVSS0.00113EPSS
Exploits0References3
Veracode
Veracode
added 2026/03/20 12:11 p.m.16 views

Denial Of Service (DoS)

github.com/free5gc/nssf is vulnerable to Denial of Service DoS. The vulnerability is due to improper handling of crafted POST requests to the NnssfNSSAIAvailability API, which allows an attacker to disrupt service availability...

7.5CVSS5.8AI score0.00303EPSS
Exploits1References4Affected Software1
Packet Storm News
Packet Storm News
added 2026/03/16 12:0 a.m.1 views

Stegano 2.3.0

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit LSB technique. It is possible to use a more advanced LSB method based on integers sets. The sets Sieve of...

5.8AI score
Exploits0
Rows per page
Query Builder