Lucene search
K

13 matches found

vulnersOsv
vulnersOsv
added 2026/03/24 3:31 a.m.6 views

org.apereo.cas:cas-server-support-configuration-cloud-amqp (>=8.0.0-RC1 <=8.0.0-RC2), org.apereo.cas:cas-server-webapp-init-config-server (>=8.0.0-RC1 <=8.0.0-RC2) +3 more potentially affected by CVE-2026-22739 via org.springframework.cloud:spring-cloud-config-server (>=5.0.0-M1 <=5.0.1)

org.springframework.cloud:spring-cloud-config-server MAVEN version =5.0.0-M1, =8.0.0-RC1, =8.0.0-RC1, =5.0.0, =5.0.0, =5.0.1 Source cves: CVE-2026-22739 Source advisory: OSV:GHSA-3QWQ-Q9VM-5J42...

8.6CVSS5.8AI score0.0122EPSS
Exploits0
OSV
OSV
added 2025/12/18 6:15 p.m.5 views

CVE-2025-14738

Improper authentication vulnerability in TP-Link WA850RE httpd modules allows unauthenticated attackers to download the configuration file.This issue affects: ≤ WA850RE V2160527, ≤ WA850RE V3160922...

7.5CVSS5.8AI score0.00436EPSS
Exploits0References4
OSV
OSV
added 2025/11/17 7:11 p.m.7 views

GO-2025-4122 Mattermost Incorrect Authorization vulnerability in github.com/mattermost/mattermost

Mattermost Incorrect Authorization vulnerability in github.com/mattermost/mattermost...

4.3CVSS6.5AI score0.00177EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22742

Malicious code in bioql PyPI...

5.3CVSS6.7AI score0.00319EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/05/14 12:31 p.m.12 views

org.apache.iotdb:client-example (>=1.1.2 <=1.3.4-1), org.apache.iotdb:customize-mqtt-example (>=1.0.0 <=1.3.3) +17 more potentially affected by CVE-2024-24780 via org.apache.iotdb:node-commons (>=1.0.0 <=1.3.4-1)

org.apache.iotdb:node-commons MAVEN version =1.0.0, =1.1.2, =1.0.0, =1.2.2, =1.2.2, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.3.0, =1.0.0, =1.1.2 and more Source cves: CVE-2024-24780 Source advisory: SNYK:JAVA-ORGAPACHEIOTDB-10176116...

9.8CVSS5.8AI score0.01304EPSS
Exploits0
Prion
Prion
added 2024/02/29 6:15 a.m.29 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Honeywell MPA2 Access Panel Web server modules allows XSS Using Invalid Characters.This issue affects MPA2 Access Panel all version prior to R1.00.08.05. Honeywell released firmware update package...

5.8CVSS7.7AI score0.00372EPSS
Exploits0References2
NVD
NVD
added 2019/11/25 5:15 p.m.22 views

CVE-2019-19250

OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js...

9.8CVSS9.7AI score0.01034EPSS
Exploits0References1
OSV
OSV
added 2019/03/27 6:29 p.m.4 views

CVE-2018-19016

Rockwell Automation EtherNet/IP Web Server Modules 1756-EWEB includes 1756-EWEBK Version 5.001 and earlier, and CompactLogix 1768-EWEB Version 2.005 and earlier. A remote attacker could send a crafted UDP packet to the SNMP service causing a denial-of-service condition to occur until the affected...

7.5CVSS5.8AI score0.03185EPSS
Exploits0References1
CVE
CVE
added 2019/03/27 5:20 p.m.53 views

CVE-2018-19016

CVE-2018-19016 affects Rockwell Automation EtherNet/IP Web Server Modules: 1756-EWEB (incl. 1756-EWEBK) &lt;= v5.001 and CompactLogix 1768-EWEB

7.8CVSS7.4AI score0.03185EPSS
Exploits0References1Affected Software2
ICS
ICS
added 2019/02/05 12:0 a.m.113 views

Rockwell Automation EtherNet/IP Web Server Modules

1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: EtherNet/IP Web Server Modules Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker...

7.8CVSS7.7AI score0.03185EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/03/21 12:0 a.m.63 views

Apache HTTP Server 'mod_cluster' DoS Vulnerability - Linux

Apache HTTP Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.7AI score0.04692EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.8 views

Vulnerability of Cisco Nexus 5000 software, allowing attackers to access confidential information

The GNU Bash command shell, as of version 4.3 bash43-025, incorrectly handles lines that follow the declaration of a specially crafted function, which is exported as a variable. This allows a malicious actor to read and write arbitrary files, as well as perform other unconfirmed actions. Security...

10CVSS8.1AI score0.9994EPSS
Exploits18References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.4 views

HTTPD-User-Manage cross-site scripting vulnerability

Overview HTTPD-User-Manage is a set of Perl modules for managing user authentication information for web servers. It contains a cross-site scripting vulnerability in its CGI as it does not properly validate input strings. This problem does not occur when only the library for managing database is...

4.3CVSS6.1AI score
Exploits0References2
Rows per page
Query Builder