Lucene search
K

40546 matches found

BDU FSTEC
BDU FSTEC
added 1 hour ago9 views

The vulnerability of the Kerberos protocol for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kerberos protocol for Windows operating systems is related to errors in the mechanism for handling relative pathnames to the directory. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

9CVSS6.1AI score0.02593EPSS
Exploits1References2
Nuclei
Nuclei
added 10 hours ago184 views

PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting

PKP Open Journal Systems 2.4.8 to 3.3 contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary code via the X-Forwarded-Host Header. id: CVE-2022-24181 info: name: PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting author: lucasljm2001,ekrause severit...

6.1CVSS6.7AI score0.0608EPSS
Exploits3References5
Nuclei
Nuclei
added 10 hours ago53 views

Kaseya Virtual System Administrator - Open Redirect

Kaseya Virtual System Administrator 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 are susceptible to an open redirect vulnerability. An attacker can redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. id: CVE-2015-286...

4.3CVSS6.1AI score0.10317EPSS
Exploits2References5
Nuclei
Nuclei
added yesterday61 views

Atlassian Crowd and Crowd Data Center - Unauthenticated Remote Code Execution

Atlassian Crowd and Crowd Data Center is susceptible to a remote code execution vulnerability because the pdkinstall development plugin is incorrectly enabled in release builds. Attackers who can send unauthenticated or authenticated requests to a Crowd or Crowd Data Center instance can exploit...

9.8CVSS8.1AI score0.95355EPSS
Exploits6References5
Debian CVE
Debian CVE
added 2 days ago5 views

CVE-2026-14647

A weakness has been identified in onnx up to 1.21.x. This vulnerability affects the function convPoolShapeInferenceopset19 of the file onnx/defs/nn/old.cc of the component onnxruntime. This manipulation causes out-of-bounds read. It is possible to initiate the attack remotely. The exploit has bee...

5.3CVSS5.5AI score0.00253EPSS
Exploits0
Debian CVE
Debian CVE
added 2 days ago4 views

CVE-2026-53362

In the Linux kernel, the following vulnerability has been resolved: ipv6: account for fraggap on the paged allocation path In ip6appenddata, when the paged-allocation branch is taken MSGMORE / NETIFFSG / large fraglen, alloclen and pagedlen are computed as alloclen = fragheaderlen + transhdrlen;...

5.8AI score0.00176EPSS
Exploits0
Nuclei
Nuclei
added 2 days ago15 views

QNAP HBS 3 - Broken Access Control

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 Hybrid Backup Sync. If exploited, the vulnerability allows remote attackers to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4.5.2; versions prior to...

10CVSS7.4AI score0.78395EPSS
Exploits0References4
Wolfi
Wolfi
added 2 days ago11 views

CVE-2026-49852 vulnerabilities

Vulnerabilities for packages: airflow...

5.9AI score
Exploits0
Chainguard
Chainguard
added 3 days ago10 views

GHSA-574F-3G2M-X479 vulnerabilities

Vulnerabilities for packages: sonarqube...

5.9AI score
Exploits0
Chainguard
Chainguard
added 3 days ago6 views

GHSA-52V5-JR5W-GJXR vulnerabilities

Vulnerabilities for packages: pulumi...

5.9AI score
Exploits0
Chainguard
Chainguard
added 3 days ago9 views

GHSA-RF99-F9J2-GV3F vulnerabilities

Vulnerabilities for packages: wildfly...

5.9AI score
Exploits0
Wolfi
Wolfi
added 3 days ago10 views

CVE-2026-40914 vulnerabilities

Vulnerabilities for packages: wildfly...

4.3CVSS5.9AI score0.00372EPSS
Exploits0
Debian CVE
Debian CVE
added 3 days ago4 views

CVE-2026-8927

When reusing a libcurl handle for sequential transfers driven by environment-variable proxy configuration, libcurl fails to clear the proxy authentication state between requests. Specifically, if the initial transfer authenticates against proxyA using Digest auth, a subsequent transfer routed...

5.9AI score0.0025EPSS
Exploits0
Debian CVE
Debian CVE
added 3 days ago4 views

CVE-2026-11856

Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...

6AI score0.0025EPSS
Exploits0
Debian CVE
Debian CVE
added 3 days ago5 views

CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

6AI score0.00206EPSS
Exploits0
Chainguard
Chainguard
added 4 days ago5 views

CVE-2025-66001 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips...

8.8CVSS7.2AI score0.00321EPSS
Exploits0
Chainguard
Chainguard
added 4 days ago11 views

CVE-2025-0312 vulnerabilities

Vulnerabilities for packages: mods...

7.5CVSS7.1AI score0.00648EPSS
Exploits1
Wolfi
Wolfi
added 4 days ago8 views

GHSA-7RP8-R62P-Q6WC vulnerabilities

Vulnerabilities for packages: wolfictl...

5.8AI score
Exploits0
Wolfi
Wolfi
added 4 days ago10 views

CVE-2026-29049 vulnerabilities

Vulnerabilities for packages: wolfictl...

4.3CVSS7.3AI score0.00177EPSS
Exploits0
Wolfi
Wolfi
added 4 days ago7 views

CVE-2024-23332 vulnerabilities

Vulnerabilities for packages: xeol...

6.8CVSS6.7AI score0.00288EPSS
Exploits0
Rows per page
Query Builder