Lucene search
+L

16915 matches found

nuclei
nuclei
added 13 hours ago37 views

TOTOLINK CX-A3002RU - Remote Code Execution

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-N302RE V2.0.2-B20170511.1523 allows a remote...

6.8CVSS6.4AI score0.0379EPSS
Exploits0References4
nvd
nvd
added 2 days ago3 views

CVE-2026-48311

Bridge is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00148EPSS
Exploits0References1
cvelist
cvelist
added 2 days ago35 views

CVE-2026-56156 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS0.00343EPSS
Exploits0References1
cvelist
cvelist
added 2 days ago32 views

CVE-2026-55138 Microsoft Excel Information Disclosure Vulnerability

...

5.5CVSS0.00352EPSS
Exploits0References1
cve
cve
added 2 days ago7 views

CVE-2026-55045

CVE-2026-55045 is an Office remote code execution vulnerability described as an out-of-bounds read in Microsoft Office that could enable a local attacker to execute code. Connected sources tie this CVE to Microsoft Office components (Word/PowerPoint/SharePoint) with local-exploit prerequisites an...

8.4CVSS6.1AI score0.00301EPSS
Exploits0References1Affected Software7
cvelist
cvelist
added 2 days ago32 views

CVE-2026-55027 Microsoft Office Information Disclosure Vulnerability

...

5.5CVSS0.00506EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2 days ago5 views

CVE-2026-50348 Windows Runtime Elevation of Privilege Vulnerability

...

7CVSS6.1AI score0.00331EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2 days ago4 views

PT-2026-58443

Name of the Vulnerable Software and Affected Versions Microsoft Office affected versions not specified Description A use after free issue exists in Microsoft Office, which could allow an unauthorized attacker to execute code locally. This occurs when a user opens a specially crafted file locally ...

7.8CVSS6.2AI score0.00348EPSS
Exploits0References4
cvelist
cvelist
added 3 days ago27 views

CVE-2026-57410 WordPress MailerPress plugin <= 2.0.2 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in MailerPress Team MailerPress mailerpress allows Privilege Escalation.This issue affects MailerPress: from n/a through = 2.0.2...

8.8CVSS0.00286EPSS
Exploits0References1
nuclei
nuclei
added 3 days ago57 views

PRTG Network Monitor - Local File Inclusion

PRTG Network Monitor before 18.2.40.1683 allows remote unauthenticated attackers to create users with read-write privileges including administrator. A remote unauthenticated user can craft an HTTP request and override attributes of the 'include' directive in /public/login.htm and perform a Local...

9.8CVSS7.2AI score0.8646EPSS
Exploits0References2
nvd
nvd
added 6 days ago8 views

CVE-2026-6212

Authorization bypass through User-Controlled key vulnerability in Teracity Software Technologies Inc. TeraMIS allows Privilege Abuse. This issue affects TeraMIS: from V03.26.01.14 through 30.04.2026...

8.8CVSS0.00251EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/07/06 12:0 a.m.15 views

PT-2026-56020

Name of the Vulnerable Software and Affected Versions Coolify versions prior to 4.0.0-beta.471 Description An authenticated command injection exists in the GetLogs Livewire component. Users with team membership, including those with the lowest privilege role, can execute arbitrary commands as roo...

8.8CVSS6.1AI score0.01385EPSS
Exploits0References10
redhatcve
redhatcve
added 2026/07/03 7:26 a.m.14 views

CVE-2026-14544

A flaw was found in HPLIP HP Linux Imaging and Printing Software. This vulnerability, an incomplete fix for CVE-2026-8631, may allow a remote attacker to escalate privileges or achieve arbitrary code execution. This can occur through an integer overflow in the hpcups processing path when handling...

9.8CVSS6.2AI score0.00511EPSS
Exploits0References3
nvd
nvd
added 2026/07/02 12:17 p.m.7 views

CVE-2026-57746

Subscriber Broken Access Control in Booked = 3.0.0 versions...

7.1CVSS0.00235EPSS
Exploits0References1
osv
osv
added 2026/07/01 5:48 p.m.3 views

GHSA-8QXC-57HF-HC9J Open Babel has uninitialized pointer dereference in PQS pFormat

Summary A memory-safety vulnerability in Open Babel's PQS parser caused an uninitialized pointer dereference when reading a crafted input file. Details The flaw was in the pFormat handling of the PQS reader. A malformed input caused the parser to dereference a format pointer that had never been...

7.8CVSS5.7AI score0.00843EPSS
Exploits1References6
ptsecurity
ptsecurity
added 2026/07/01 12:0 a.m.12 views

PT-2026-54830

Name of the Vulnerable Software and Affected Versions MCO version 25.3.3.1 Description Account Denial of Service occurs due to the improper implementation of the password reset functionality. Each request to reset a password invalidates the current password and any previously issued temporary...

7.1CVSS5.8AI score0.00204EPSS
Exploits0References7
patchstack
patchstack
added 2026/06/30 1:24 p.m.6 views

WordPress Automotive Car Dealership Business theme <= 13.3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme Automotive Car Dealership Business versions = 13.3.3...

7.1CVSS5.8AI score0.00191EPSS
Exploits0Affected Software1
patchstack
patchstack
added 2026/06/26 12:30 p.m.5 views

WordPress MasterStudy LMS plugin <= 3.7.30 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by lagi bljr in WordPress Plugin MasterStudy LMS versions = 3.7.30...

4.3CVSS5.8AI score0.00243EPSS
Exploits0Affected Software1
ptsecurity
ptsecurity
added 2026/06/26 12:0 a.m.12 views

PT-2026-52890

Name of the Vulnerable Software and Affected Versions Envoy versions prior to 1.35.11 Envoy versions prior to 1.36.7 Envoy versions prior to 1.37.3 Envoy versions prior to 1.38.1 Description An issue exists in the UDP DNS filter when configured with local or remote resolution for names exactly 25...

7.5CVSS5.8AI score0.00405EPSS
Exploits0References19
debiancve
debiancve
added 2026/06/25 2:34 p.m.7 views

CVE-2026-57437

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source document alive for garbage collection. If an XPathContext outlived its document and the document was collected, evaluating an XPath expression...

6.3CVSS5.9AI score0.00312EPSS
Exploits0
Rows per page
Query Builder