CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Drupal•added 2024/02/28 12:0 a.m.•17 views

Private content - Moderately critical - Access bypass - SA-CONTRIB-2024-012

This module gives each node a 'private' checkbox. If it's set, the node can only be seen by the node author, or users with the 'access private content' permission. The module incorrectly grants access to private nodes under certain specific circumstances. This vulnerability is mitigated by the fa...

5.5CVSS6.9AI score0.00172EPSS

Exploits0References6

Cvelist•added 2023/09/20 1:34 p.m.•11 views

CVE-2022-1438 Keycloak: xss on impersonation under specific circumstances

A flaw was found in Keycloak. Under specific circumstances, HTML entities are not sanitized during user impersonation, resulting in a Cross-site scripting XSS vulnerability...

6.4CVSS6.2AI score0.00166EPSS

Exploits0References7

RedHat Linux•added 2023/03/01 9:58 p.m.•2 views

keycloak: XSS on impersonation under specific circumstances

A flaw was found in Keycloak. Under specific circumstances, HTML entities are not sanitized during user impersonation, resulting in a Cross-site scripting XSS vulnerability...

6.4CVSS6.3AI score0.00166EPSS

Exploits0References4

Cvelist•added 2019/02/28 4:0 p.m.•14 views

CVE-2019-3582 McAfee Endpoint Security updates fix a privilege escalation vulnerability

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security ENS 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances...

8.6CVSS8.3AI score0.0005EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by