Lucene search
K

8 matches found

OSV
OSV
added 2026/01/13 11:53 a.m.6 views

CVE-2025-59022 TYPO3 CMS Allows Broken Access Control in Recycler Module

Backend users who had access to the recycler module could delete arbitrary data from any database table defined in the TCA - regardless of whether they had permission to that particular table. This allowed attackers to purge and destroy critical site data, effectively rendering the website...

7.1CVSS6AI score0.0038EPSS
Exploits0References8
NVD
NVD
added 2025/12/01 10:15 p.m.4 views

CVE-2025-66305

Grav is a file-based Web platform. Prior to 1.8.0-beta.27, a Denial of Service DoS vulnerability was identified in the "Languages" submenu of the Grav admin configuration panel /admin/config/system. Specifically, the Supported parameter fails to properly validate user input. If a malformed value ...

6.9CVSS0.00337EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/01 9:43 p.m.7 views

CVE-2025-66305 Grav vulnerable to Denial of Service via Improper Input Handling in 'Supported' Parameter

Grav is a file-based Web platform. Prior to 1.8.0-beta.27, a Denial of Service DoS vulnerability was identified in the "Languages" submenu of the Grav admin configuration panel /admin/config/system. Specifically, the Supported parameter fails to properly validate user input. If a malformed value ...

6.9CVSS0.00337EPSS
Exploits1References2
OSV
OSV
added 2025/12/01 9:43 p.m.5 views

CVE-2025-66305 Grav vulnerable to Denial of Service via Improper Input Handling in 'Supported' Parameter

Grav is a file-based Web platform. Prior to 1.8.0-beta.27, a Denial of Service DoS vulnerability was identified in the "Languages" submenu of the Grav admin configuration panel /admin/config/system. Specifically, the Supported parameter fails to properly validate user input. If a malformed value ...

6.9CVSS6.1AI score0.00337EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/11 12:30 p.m.5 views

EUVD-2025-33851

The WooCommerce Designer Pro plugin for WordPress, used by the Pricom - Printing Company & Design Services WordPress theme, is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'wcdpsavecanvasdesignajax' function in all versions up to, and including, 1.9.26. Th...

9.8CVSS6.7AI score0.00753EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/07/18 12:0 a.m.4 views

ZTE ZXEN CG200 资源管理错误漏洞

The ZTE ZXEN CG200 is a government and enterprise gateway device from China's ZTE Corporation ZTE. A denial of service vulnerability exists in ZXEN CG200 V1.0.0P1N5M and previous versions, which stems from improper handling of a large number of message requests. An attacker can exploit the...

5.3CVSS5.6AI score0.00615EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/31 12:0 a.m.4 views

Sensio Labs Symfony Input Validation Error Vulnerability

Sensio Labs Symfony is a free French Sensio Labs , based on the MVC architecture of the PHP development framework . The framework provides commonly used functional components and tools , can be used to quickly create complex WEB program . A security vulnerability exists in Sensio Labs Symfony...

4.3CVSS6.8AI score0.01297EPSS
Exploits0
ThreatPost
ThreatPost
added 2013/06/20 9:42 a.m.9 views

LinkedIn Outage Tied to DNS Issue

A site outage and redirection on LinkedIn’s site Wednesday night blamed on a DNS problem has security experts and users worried that the networking site’s DNS records may have been compromised, along with those of several other sites. But it appears the issue may have been caused by a simple...

0.1AI score
Exploits0References2
Rows per page
Query Builder