Lucene search
K

11 matches found

NVD
NVD
added 2026/06/22 2:17 p.m.8 views

CVE-2026-56424

MISP core contained multiple broken access-control flaws where authorization checks were performed against the wrong entity, or where ownership/editability checks were missing on write paths. In affected subsystems, a lower-privileged authenticated user with the relevant feature permission could...

8.8CVSS0.00361EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/22 12:0 a.m.13 views

PT-2026-51308

Name of the Vulnerable Software and Affected Versions MISP core affected versions not specified Description Broken access-control flaws exist where authorization checks are performed against incorrect entities or ownership and editability checks are missing on write paths. This allows a...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References11
NVD
NVD
added 2026/05/14 6:16 p.m.14 views

CVE-2026-41888

Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.1, tag deletion via the DELETE /v2//manifests/ endpoint bypasses the storage.delete.enabled: false configuration, allowing any API client to remove tags from repositories even when the operator has...

6.5CVSS0.00294EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0206

Malicious code in bioql PyPI...

7.7CVSS6.3AI score0.00472EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:48 a.m.7 views

CVE-2019-18369

In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the corresponding permission was possible...

5.3CVSS6.9AI score0.01145EPSS
Exploits0References1
NVD
NVD
added 2024/12/27 3:15 p.m.12 views

CVE-2024-56669

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Remove cache tags before disabling ATS The current implementation removes cache tags after disabling ATS, leading to potential memory leaks and kernel crashes. Specifically, CACHETAGDEVTLB type cache tags may still...

7.8CVSS0.00207EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/26 12:0 a.m.6 views

WordPress plugin PhotoGallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.2AI score0.00431EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/09/09 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco IoT Control Center allows a perpetrator to execute arbitrary code or access confidential information.

The vulnerability in the web interface of the Cisco IoT Control Center relates to the failure to remove scipt-related HTML tags from the website. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or gain access to confidential information through a specially crafted...

6.1CVSS6.8AI score0.00567EPSS
Exploits0References3
OSV
OSV
added 2019/10/31 4:15 p.m.3 views

CVE-2019-18369

In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the corresponding permission was possible...

5.3CVSS6.1AI score0.01145EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/10/31 3:25 p.m.22 views

CVE-2019-18369

In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the corresponding permission was possible...

6.4AI score0.01145EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/01/25 12:0 a.m.32 views

SuSE 11.2 Security Update : libwebkit (SAT Patch Number 7114)

Two issues in libwebkit have been fixed : - Webkit CSS Text Element Count remote code execution was fixed. CVE-2011-1290 - WebKit WBR Tag Removal remote code execution was fixed. CVE-2011-1344 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

10CVSS6.2AI score0.09754EPSS
Exploits0References6
Rows per page
Query Builder