Lucene search
+L

91 matches found

NVD
NVD
added 2026/07/06 8:16 a.m.9 views

CVE-2026-14801

A security vulnerability has been detected in GPAC 26.03-DEV-rev342-g80071f700-master. The impacted element is the function txtinprobeduration of the file src/filters/loadtext.c of the component TeXML File Handler. Such manipulation of the argument txmltimescale leads to divide by zero. An attack...

4.8CVSS0.00112EPSS
Exploits0References7
OSV
OSV
added 2026/07/01 4:16 p.m.4 views

UBUNTU-CVE-2026-58032

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Api/index.Js. This issue affects MediaWiki: from before 1.46.0, 1.45.4, 1.44.6,...

6.1CVSS6.1AI score0.00299EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.6 views

Astra Linux – Vulnerability in PostgresSQL-15

Lack of validation for multibyte character lengths in PostgreSQL text manipulation allows a database user to execute crafted queries that lead to a buffer overflow. This enables the execution of arbitrary code as the operating system user running the database. Versions prior to PostgreSQL 18.2,...

8.8CVSS8AI score0.01079EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.12 views

CVE-2025-62345

HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability . A component contains a security weakness in its input handling implementation, increasing the risk of misconfiguration and operational errors...

2.7CVSS5.4AI score0.00218EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:49 a.m.10 views

CVE-2025-62345

HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability . A component contains a security weakness in its input handling implementation, increasing the risk of misconfiguration and operational errors...

2.7CVSS5.8AI score0.00218EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:49 a.m.36 views

CVE-2025-62345 HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability

HCL BigFix RunBookAI is affected by a Continued availability of Less-Secure “Input Text” Vulnerability . A component contains a security weakness in its input handling implementation, increasing the risk of misconfiguration and operational errors...

2.7CVSS0.00218EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/07 11:25 p.m.7 views

SUSE CVE-2026-34980

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, in a network-exposed cupsd with a shared target queue, an unauthorized client can send a Print-Job to that shared PostScript queue without authentication. The server...

6.4CVSS5.9AI score0.00502EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2026/03/12 11:7 p.m.7 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 3:30 p.m.4 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 3:13 p.m.5 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/05 2:46 p.m.4 views

postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References5
OSV
OSV
added 2026/02/12 2:16 p.m.13 views

AZL-77426 CVE-2026-2006 affecting package postgresql for versions less than 16.12-1

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References1
OSV
OSV
added 2026/02/12 2:16 p.m.4 views

ALPINE-CVE-2026-2006

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS6.5AI score0.01079EPSS
Exploits0References1
NVD
NVD
added 2026/02/12 2:16 p.m.11 views

CVE-2026-2006

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS0.01079EPSS
Exploits0References34
Snyk
Snyk
added 2026/02/12 1:57 p.m.4 views

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via improper validation of multibyte character length in text manipulation. An attacker can execute arbitrary code as the operating system user running the database by issuing specially crafted queries...

8.8CVSS6.3AI score0.01079EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/12 1:0 p.m.11 views

CVE-2026-2006

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...

8.8CVSS6.4AI score0.01079EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/17 3:22 p.m.5 views

CVE-2026-21624

Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla...

9.4CVSS6.2AI score0.00177EPSS
Exploits0References1
NVD
NVD
added 2026/01/16 3:15 p.m.6 views

CVE-2026-21624

Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla...

9.4CVSS0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.7 views

PT-2026-3255

Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of the Easy Discuss component for Joomla...

9.4CVSS6.2AI score0.00177EPSS
Exploits0References2
CVE
CVE
added 2025/11/11 3:30 a.m.21 views

CVE-2025-11859

CVE-2025-11859 affects the WordPress plugin Paypal Donation Shortcode (versions

6.4CVSS4.8AI score0.00176EPSS
Exploits0References2
Rows per page
Query Builder