Lucene search
K

210 matches found

OSV
OSV
added 2026/06/26 9:2 p.m.3 views

GHSA-6Q7J-XR26-3H2C Scriban: ExpressionDepthLimit guard is non-enforcing — parser-recursion DoS in 6.6.0–7.2.0 (incomplete fix for GHSA-wgh7-7m3c-fx25 / GHSA-p6q4-fgr8-vx4p)

Summary The ExpressionDepthLimit parser guard in Scriban does not actually stop parsing — it only logs a non-fatal error and lets recursive descent continue. As a result, a template containing a deeply nested expression parentheses, array initializers, object initializers, or unary operators driv...

6.9CVSS6.1AI score
Exploits0References2
CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.12 views

CVE-2026-45840 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-45840 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00117EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.5 views

CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.5AI score0.00115EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.7 views

CVE-2026-45835 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-45835 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.5AI score0.00123EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.9 views

CVE-2026-46098 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-46098 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Squid

Squid is a caching proxy for the Web. Due to a bug related to expired pointer references, Squid versions prior to 6.6 were vulnerable to a Denial of Service attack targeting error responses from the Cache Manager. This vulnerability allowed a trusted client to cause a Denial of Service attack by...

6.5CVSS6.5AI score0.6005EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/06/15 8:17 p.m.26 views

CVE-2026-25440 WordPress Essential Addons for Elementor plugin < 6.6.0 - Broken Access Control vulnerability

Unauthenticated Broken Access Control in Essential Addons for Elementor 6.6.0 versions...

5.3CVSS0.00214EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2026/05/20 12:24 a.m.18 views

CVE-2024-38635 affecting package kernel for versions less than 6.6.139.1-1

CVE-2024-38635 affecting package kernel for versions less than 6.6.139.1-1. A patched version of the package is available...

7.1CVSS6.8AI score0.00234EPSS
Exploits0
EUVD
EUVD
added 2026/05/13 8:39 p.m.9 views

EUVD-2026-30157

CubeCart is an ecommerce software solution. Prior to 6.6.0, a Stored Cross-Site Scripting XSS vulnerability exists in CubeCart v6.x. An attacker with administrative privileges can inject malicious JavaScript payloads into multiple fields during the creation or modification of a product. These...

4.8CVSS5.8AI score0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/13 8:38 p.m.10 views

EUVD-2026-30156

CubeCart is an ecommerce software solution. Prior to 6.6.0, Authenticated Time-Based Blind SQL Injection vulnerabilities were identified in the sorting parameters sortprice, sortactivity, sortadmin, and sortcustomer of the Products and Logs endpoints in CubeCart v6.x. This allows an attacker to...

7.2CVSS6.2AI score0.00307EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.20 views

CVE-2026-30905

External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access...

7.8CVSS0.00118EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2026/05/09 3:31 a.m.7 views

CVE-2026-31721 affecting package kernel for versions less than 6.6.137.1-2

CVE-2026-31721 affecting package kernel for versions less than 6.6.137.1-2. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/09 3:31 a.m.8 views

CVE-2026-43228 affecting package kernel for versions less than 6.6.137.1-2

CVE-2026-43228 affecting package kernel for versions less than 6.6.137.1-2. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00112EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/09 3:31 a.m.10 views

CVE-2025-38531 affecting package kernel for versions less than 6.6.137.1-2

CVE-2025-38531 affecting package kernel for versions less than 6.6.137.1-2. A patched version of the package is available...

5.5CVSS6AI score0.00146EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.6 views

CVE-2026-31615 affecting package kernel for versions less than 6.6.137.1-1

CVE-2026-31615 affecting package kernel for versions less than 6.6.137.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00125EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.9 views

CVE-2026-31416 affecting package kernel for versions less than 6.6.134.1-2

CVE-2026-31416 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00115EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.7 views

CVE-2026-31458 affecting package kernel for versions less than 6.6.134.1-2

CVE-2026-31458 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00122EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.4 views

CVE-2026-31430 affecting package kernel for versions less than 6.6.137.1-1

CVE-2026-31430 affecting package kernel for versions less than 6.6.137.1-1. An upgraded version of the package is available that resolves this issue...

7.1CVSS5.8AI score0.00081EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.5 views

CVE-2026-31624 affecting package kernel for versions less than 6.6.137.1-1

CVE-2026-31624 affecting package kernel for versions less than 6.6.137.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00125EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/03 8:52 p.m.6 views

CVE-2026-31444 affecting package kernel for versions less than 6.6.134.1-2

CVE-2026-31444 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...

9.8CVSS5.8AI score0.0045EPSS
Exploits0
Rows per page
Query Builder