Lucene search
K

14 matches found

EUVD
EUVD
added 2026/07/01 2:41 a.m.8 views

EUVD-2026-40869

An out-of-bounds heap write exists in the RAR5 recovery-volume .rev parser in WinRAR and UnRAR RecVolumes5::ReadHeader in recvol5.cpp. The RecItems vector is sized only when the first .rev file in a set is processed; subsequent .rev files supply an independent RecNum value that is validated again...

7.8CVSS7.4AI score0.1308EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:36 p.m.11 views

CVE-2026-41177

Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, the Squidex Restore API is vulnerable to Blind Server-Side Request Forgery SSRF. The application fails to validate the URI scheme of the user-supplied Url parameter, allowing the use ...

5.5CVSS5.4AI score0.00329EPSS
Exploits1References1
NVD
NVD
added 2026/04/22 10:16 p.m.9 views

CVE-2026-41172

Squidex is an open source headless content management system and content management hub. Prior to version 7.23.0, an SSRF vulnerability allows a user with asset upload permission to force the server to fetch arbitrary URLs, including localhost/private network targets, and persist the response as ...

8.6CVSS0.00215EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/22 12:0 a.m.24 views

PT-2026-26955

ZOC Terminal 7.23.4 contains a buffer overflow vulnerability in the Shell field of Program Settings that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a crafted payload into the Shell configuration field and trigger a crash when...

6.9CVSS6.1AI score0.00183EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/12/25 12:0 a.m.9 views

PT-2023-8450 · Ilias · Ilias

Name of the Vulnerable Software and Affected Versions: ILIAS versions prior to 7.23 ILIAS versions 8 prior to 8.3 Description: The issue is related to the incorrect implementation of the sequence of actions in the ILIAS learning management system. It allows a remote attacker to execute arbitrary...

9CVSS7.2AI score0.00855EPSS
Exploits0References13
VulnCheck KEV
VulnCheck KEV
added 2023/11/26 12:0 a.m.6 views

VulnCheck KEV: CVE-2018-11222

Local File Inclusion LFI in Artica Pandora FMS through version 7.23 allows an attacker to call any php file via the /pandoraconsole/ajax.php ajax endpoint...

7.5CVSS7.1AI score0.06714EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:33 a.m.4 views

SUSE CVE-2018-3161

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Partition. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.9CVSS7AI score0.03432EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:33 a.m.9 views

SUSE CVE-2018-3284

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serve...

4.4CVSS6.9AI score0.023EPSS
Exploits0References11
OSV
OSV
added 2022/08/16 8:15 a.m.3 views

CVE-2022-35239

The image file management page of SolarView Compact SV-CPT-MC310 Ver.7.23 and earlier, and SV-CPT-MC310F Ver.7.23 and earlier contains an insufficient verification vulnerability when uploading files. If this vulnerability is exploited, arbitrary PHP code may be executed if a remote authenticated...

8.8CVSS7.4AI score0.01218EPSS
Exploits0References3
CNVD
CNVD
added 2019/07/17 12:0 a.m.7 views

Oracle MySQL Server Component Access Control Error Vulnerability (CNVD-2019-26527)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A component access control error vulnerability exists in the Server: Replication subcomponent of the MySQL Server component in Oracle MySQL, version...

5.5CVSS6AI score0.01729EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2018/11/26 12:31 p.m.6 views

mysql: Server: Security: Audit unspecified vulnerability (CPU Oct 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Audit. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

5.9CVSS7.3AI score0.04445EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/11/26 12:31 p.m.7 views

mysql: Server: Parser unspecified vulnerability (CPU Oct 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Parser. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

7.7CVSS7.2AI score0.03683EPSS
Exploits0References5
CNVD
CNVD
added 2018/10/17 12:0 a.m.4 views

Oracle MySQL Server Unauthorized Operation Vulnerability (CNVD-2018-21487)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the MySQL Server component in Oracle MySQL, version 5.7.23 and earlier, and the Server: Partition subcomponent in...

5CVSS5.3AI score0.02086EPSS
Exploits0References1
CNVD
CNVD
added 2018/10/17 12:0 a.m.2 views

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2019-26721)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the MySQL Server component in Oracle MySQL, version 5.7.23 and earlier, and the Server: Optimizer subcomponent in...

5.5CVSS5.5AI score0.02817EPSS
Exploits0References1
Rows per page
Query Builder