Lucene search
K

9 matches found

OSV
OSV
added 2025/08/11 1:52 p.m.7 views

BIT-LIBPHP-2020-7059 OOB read in php_strip_tags_ex

When using fgetss function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash...

9.1CVSS6.7AI score0.07116EPSS
Exploits1References15
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.6 views

Fortinet FortiADC 操作系统命令注入漏洞

Fortinet FortiADC is an application delivery controller from Fortinet, Inc. An operating system command injection vulnerability exists in Fortinet FortiADC, which stems from improper neutralization of special elements and could lead to OS command injection. The following versions are affected:...

7.2CVSS7.5AI score0.0123EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/28 12:0 a.m.6 views

Fortinet FortiOS 输入验证错误漏洞

Fortinet FortiOS is a set of security operating systems dedicated to the FortiGate network security platform from the U.S. company Fiat Fortinet. The system provides users with firewall, antivirus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. An input validation...

5.3CVSS6.7AI score0.00662EPSS
Exploits0References3
OSV
OSV
added 2025/01/06 10:15 p.m.5 views

ALPINE-CVE-2024-51741

Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The problem is fixed in Redis 7.2.7 and 7.4.2...

4.4CVSS6.7AI score0.00299EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/31 12:0 a.m.4 views

PT-2024-10147

Name of the Vulnerable Software and Affected Versions: Redis versions prior to 7.2.7 Redis versions prior to 7.4.2 Description: The issue is related to an open-source, in-memory database that persists on disk. An authenticated user with sufficient privileges can create a malformed ACL selector,...

9.8CVSS6.4AI score0.77422EPSS
Exploits10References136
CNNVD
CNNVD
added 2024/09/06 12:0 a.m.5 views

WordPress plugin Sirv 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS6.3AI score0.00852EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/05/06 12:0 a.m.9 views

PT-2024-21786 · Ibm · Vios +1

Name of the Vulnerable Software and Affected Versions: IBM AIX versions 7.2 through 7.3 VIOS versions 3.1 through 4.1 Description: The Unix domain datagram socket implementation in IBM AIX could potentially expose applications using Unix domain datagram sockets with the SO PEERID operation, which...

8.1CVSS6.8AI score0.00146EPSS
Exploits0References9
OSV
OSV
added 2023/10/03 12:15 p.m.5 views

CVE-2023-39923

Cross-Site Request Forgery CSRF vulnerability in RadiusTheme The Post Grid plugin = 7.2.7 versions...

8.8CVSS5.8AI score0.00208EPSS
Exploits0References1
OSV
OSV
added 2017/03/02 6:59 a.m.1 views

DEBIAN-CVE-2017-6384

Memory leak in the loginuser function in saslserv/main.c in saslserv/main.so in Atheme 7.2.7 allows a remote unauthenticated attacker to consume memory and cause a denial of service. This is fixed in 7.2.8...

7.5CVSS7AI score0.01959EPSS
Exploits0References1
Rows per page
Query Builder