Lucene search
K

672 matches found

NVD
NVD
added 2026/05/18 6:17 p.m.23 views

CVE-2026-29963

HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without adequate normalization or restriction to a safe base directory. A remote attacker can exploit this...

7.5CVSS0.00595EPSS
Exploits1References3
NVD
NVD
added 2026/05/18 6:17 p.m.15 views

CVE-2026-29964

HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting XSS vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaScript syntax. The endpoint reflects unsanitized user input in HTTP responses without adequate output...

6.1CVSS0.00244EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/05/18 12:0 a.m.45 views

CVE-2026-29964

HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting XSS vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaScript syntax. The endpoint reflects unsanitized user input in HTTP responses without adequate output...

0.00244EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.15 views

PT-2026-41706

HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without adequate normalization or restriction to a safe base directory. A remote attacker can exploit this...

5.9AI score0.00595EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/05/18 12:0 a.m.6 views

CVE-2026-29963

HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without adequate normalization or restriction to a safe base directory. A remote attacker can exploit this...

5.9AI score0.00595EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/05/18 12:0 a.m.10 views

CVE-2026-29964

HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting XSS vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaScript syntax. The endpoint reflects unsanitized user input in HTTP responses without adequate output...

6.2AI score0.00244EPSS
Exploits1References3
CVE
CVE
added 2026/05/18 12:0 a.m.22 views

CVE-2026-29963

CVE-2026-29963 affects HSC MailInspector 5.3.3-7. The vulnerability is a Path Traversal in the /tap/dw.php endpoint where the text parameter is used to build file paths without proper normalization or safe base-directory restriction. This improper input validation can allow a remote attacker to a...

7.5CVSS5.9AI score0.00595EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/18 12:0 a.m.9 views

CVE-2026-29963

HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without adequate normalization or restriction to a safe base directory. A remote attacker can exploit this...

5.9AI score0.00595EPSS
Exploits1References3
EUVD
EUVD
added 2026/05/18 12:0 a.m.15 views

EUVD-2026-30783

HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter is used to construct file paths without adequate normalization or restriction to a safe base directory. A remote attacker can exploit this...

5.9AI score0.00595EPSS
Exploits1References3
CVE
CVE
added 2026/05/18 12:0 a.m.20 views

CVE-2026-29964

HSC MailInspector v5.3.3-7 is affected by a Cross-Site Scripting (XSS) vulnerability in the /tap/tap.php endpoint. The issue arises from improper neutralization of user-controlled input, with alternate or obfuscated JavaScript syntax reflected back in HTTP responses without adequate output encodi...

6.1CVSS6.2AI score0.00244EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.18 views

PT-2026-41707

HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting XSS vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaScript syntax. The endpoint reflects unsanitized user input in HTTP responses without adequate output...

6.2AI score0.00244EPSS
Exploits1References4
EUVD
EUVD
added 2026/05/18 12:0 a.m.13 views

EUVD-2026-30784

HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting XSS vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled input using alternate or obfuscated JavaScript syntax. The endpoint reflects unsanitized user input in HTTP responses without adequate output...

6.1CVSS6.2AI score0.00244EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.10 views

HSC MailInspector 跨站脚本漏洞

HSC MailInspector is a mail security analysis and filtering system developed by the Brazilian company HSC. Version 5.3.3-7 of HSC MailInspector contains a cross-site scripting vulnerability. This vulnerability arises from the use of alternative or obfuscated JavaScript syntax in user-controlled...

6.1CVSS5.6AI score0.00244EPSS
Exploits1References2
OSV
OSV
added 2026/05/14 10:5 a.m.24 views

RHSA-2026:17084 Red Hat Security Advisory: gvisor-tap-vsock security update

Bulletin has no description...

7.8CVSS6.9AI score0.01945EPSS
Exploits3References57
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.17 views

RHEL 10 : gvisor-tap-vsock (RHSA-2026:17084)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:17084 advisory. A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor. Compared to libslirp,...

10CVSS7.2AI score0.01945EPSS
Exploits3References16
RedHat Linux
RedHat Linux
added 2026/05/13 3:39 p.m.17 views

Important: Red Hat Security Advisory: gvisor-tap-vsock security update

An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.1AI score0.01945EPSS
Exploits3References8
OSV
OSV
added 2026/04/30 10:10 a.m.16 views

RHSA-2026:12033 Red Hat Security Advisory: gvisor-tap-vsock security update

Bulletin has no description...

7.5CVSS6.7AI score0.01945EPSS
Exploits3References35
RedHat Linux
RedHat Linux
added 2026/04/30 3:35 a.m.9 views

Important: Red Hat Security Advisory: gvisor-tap-vsock security update

An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.2AI score0.01945EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.23 views

RHEL 9 : gvisor-tap-vsock (RHSA-2026:12033)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:12033 advisory. A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor and is used to provide networking for...

10CVSS8.2AI score0.01945EPSS
Exploits3References10
OSV
OSV
added 2026/04/21 10:10 a.m.27 views

RHSA-2026:9108 Red Hat Security Advisory: gvisor-tap-vsock security update

Bulletin has no description...

7.5CVSS5.6AI score0.01945EPSS
Exploits3References35
Rows per page
Query Builder