Lucene search
K

9 matches found

Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.8 views

PT-2026-22721

Name of the Vulnerable Software and Affected Versions Inno Setup versions prior to 6.2.1 Description A privilege escalation issue exists due to a dll hijacking weakness. This allows an attacker to execute arbitrary code with elevated privileges. Recommendations Update to a version newer than 6.2....

8.7CVSS6.1AI score0.00092EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/09 2:13 p.m.31 views

CVE-2025-66530 WordPress Webba Booking plugin <= 6.2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 6.2.1...

4.3CVSS0.00275EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:13 p.m.3 views

CVE-2025-66530 WordPress Webba Booking plugin <= 6.2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in Webba Appointment Booking Webba Booking webba-booking-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Webba Booking: from n/a through = 6.2.1...

4.3CVSS6.6AI score0.00275EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:38 a.m.5 views

CVE-2023-26913

EVOLUCARE ECSIMAGING aka ECS Imaging 6.21.5 is vulnerable to Cross Site Scripting XSS via newmovie. php...

6.1CVSS6AI score0.00492EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2022/01/14 9:28 a.m.3 views

@antora/cli (>=2.3.2 <=3.0.0-alpha.9), @antora/playbook-builder (>=2.3.2 <=3.0.0-alpha.9) +53 more potentially affected by CVE-2022-22143 via convict (>=6.0.0 <=6.2.1)

convict NPM version =6.0.0, =2.3.2, =2.3.2, =2.3.2, =1.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.7.0 and more Source cves: CVE-2022-22143 Source advisory: SNYK:JS-CONVICT-2340604...

9.8CVSS7.2AI score0.02027EPSS
Exploits1
CNVD
CNVD
added 2021/01/08 12:0 a.m.6 views

Gotenberg has an unspecified vulnerability

Gotenberg is a Docker-powered stateless API for converting HTML, Markdown and Office documents to PDF. Gotenberg 6.2.1 and earlier versions are vulnerable. An attacker can exploit this vulnerability to overwrite LibreOffice configuration files and execute arbitrary code via macros...

9.8CVSS7.7AI score0.0302EPSS
Exploits2References1
CNVD
CNVD
added 2019/11/19 12:0 a.m.5 views

Fortinet FortiClient Command Injection Vulnerability (CNVD-2019-42446)

Fortinet FortiClient is a mobile endpoint security solution from Fortinet. The solution provides IPsec and SSL encryption, WAN optimization, endpoint compliance and two-factor authentication when connected to a FortiGate firewall appliance. A command injection vulnerability exists in Fortinet...

7.8CVSS7.9AI score0.00521EPSS
Exploits1References1
OSV
OSV
added 2017/04/17 6:59 p.m.2 views

DEBIAN-CVE-2017-5659

Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding...

7.5CVSS7.5AI score0.02958EPSS
Exploits0References1
OSV
OSV
added 2017/02/22 2:59 a.m.9 views

CVE-2017-3847

A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web interface. More Information: CSCvc72741. Known Affected Releases: 6.2.1...

5.4CVSS5.7AI score0.00615EPSS
Exploits0References2
Rows per page
Query Builder