Lucene search
+L

10 matches found

CVE
CVE
added 2026/04/02 6:2 p.m.10 views

CVE-2026-34725

DbGate (multi-platform: web and Electron desktop) contains a stored XSS in the icon rendering path impacting versions 7.0.0–7.1.5. Attacker-controlled SVG icons stored as applicationIcon are rendered without sanitization, enabling script execution in another user’s browser (web UI) and, in Electr...

8.2CVSS6.2AI score0.00168EPSS
Exploits0References3
NVD
NVD
added 2025/10/03 7:15 p.m.26 views

CVE-2025-47213

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS0.00439EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/08 10:52 p.m.15 views

CVE-2025-58751 Vite middleware may serve files starting with the same name with the public directory

Vite is a frontend tooling framework for JavaScript. Prior to versions 7.1.5, 7.0.7, 6.3.6, and 5.4.20, files starting with the same name with the public directory were served bypassing the server.fs settings. Only apps that explicitly expose the Vite dev server to the network using --host or...

2.3CVSS0.0118EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.5 views

PT-2024-13136 · Couchbase · Couchbase Server

Name of the Vulnerable Software and Affected Versions: Couchbase Server versions 6.6.x through 7.2.0 Description: An issue was discovered in Couchbase Server where unauthenticated users may cause memcached to run out of memory via large commands. Recommendations: For Couchbase Server versions 6.6...

7.5CVSS7.3AI score0.00749EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/02/29 12:0 a.m.4 views

Couchbase Server Security Vulnerability

Couchbase Server is a distributed, open source NoSQL non-relational database from Couchbase, Inc. that supports data querying, full-text searching, and active global replication. A security vulnerability exists in Couchbase Server versions prior to 7.1.5 and prior to 7.2.1, which stems from the...

6.3CVSS6.8AI score0.00441EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/08 12:0 a.m.4 views

Couchbase Server Security Vulnerability

Couchbase Server is a distributed, open source NoSQL non-relational database from Couchbase, Inc. that supports data querying, full-text searching, and active global replication. A security vulnerability exists in Couchbase Server that stems from the presence of a directory traversal vulnerabilit...

7.5CVSS6.7AI score0.00998EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.5 views

SUSE CVE-2017-9224

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in matchat during regular expression searching. A logical error involving order of validation and access in matchat could result in an...

4CVSS7.1AI score0.0654EPSS
Exploits1References7
OSV
OSV
added 2023/02/01 6:15 p.m.3 views

CVE-2023-22283

On versions beginning in 7.1.5 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client for Windows. User interaction and administrative privileges are required to exploit this vulnerability because the victim user needs to run the executable on the system and the attacke...

6.5CVSS6.7AI score0.00197EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/13 12:0 a.m.4 views

PHP 'main/php_ini.c' Denial of Service Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A denial of service vulnerability exists in PHP version 7.1.5. An attacker can exploit the vulnerability to corrupt the affected application,...

6.5AI score
Exploits0References1
OSV
OSV
added 2017/05/24 3:29 p.m.4 views

ALPINE-CVE-2017-9227

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in mbcenclen during regular expression searching. Invalid handling of reg-dmin in forwardsearchrange could result in an invalid pointer...

9.8CVSS7AI score0.06265EPSS
Exploits1References1
Rows per page
Query Builder