Lucene search
+L

106 matches found

CNNVD
CNNVD
added 2025/10/16 12:0 a.m.5 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in Mattermost version 5.13.0 and earlier, which stems from improper modal window management, and could allow an attacker to deny users access to a desktop application by...

6.1CVSS6.6AI score0.00296EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/13 7:57 p.m.4 views

CVE-2025-58084 Mattermost Desktop App crashes when clicking on malformed external URL

Mattermost Desktop App versions = 5.13.0 fail to validate URLs external to the configured Mattermost servers, allowing an attacker on a server the user has configured to crash the user's application by sending the user a malformed URL...

3.5CVSS6.5AI score0.00276EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-26363

Malicious code in bioql PyPI...

5.1CVSS4.8AI score0.00328EPSS
Exploits1References8
NVD
NVD
added 2025/09/15 2:15 p.m.9 views

CVE-2023-53152

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix calltrace warning in amddrmbuddyfini The following call trace is observed when removing the amdgpu driver, which is caused by that BOs allocated for psp are not freed until removing. 61811.450562 RIP:...

5.5CVSS0.00143EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/09/08 2:43 p.m.6 views

WordPress Chakra Theme <= 1.13.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Chakra versions = 1.13.0...

8.1CVSS7AI score0.00649EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/09/08 1:29 p.m.6 views

WordPress Softic Theme <= 1.13.0 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Softic versions = 1.13.0...

8.1CVSS7AI score0.00649EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-13276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1 CVE-2020-13276...

7.4CVSS5.2AI score0.00674EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.6 views

Harbor 跨站脚本漏洞

Harbor is an open source registry from Harbor Open Source. Protects artifacts with policies and role-based access control, ensures images are scanned and free of vulnerabilities, and signs images as trusted. A cross-site scripting vulnerability exists in Harbor versions 2.11.2 and earlier,...

4.1CVSS5.3AI score0.00303EPSS
Exploits0References4
Amazon
Amazon
added 2025/06/23 12:0 a.m.3 views

Medium: aws-kinesis-agent

Issue Overview: Jackson-core contains core low-level incremental "streaming" parser and generator abstractions used by Jackson Data Processor. Starting in version 2.0.0 and prior to version 2.13.0, a flaw in jackson-core's JsonLocation.appendSourceDesc method allows up to 500 bytes of unintended...

4CVSS6.4AI score0.00316EPSS
Exploits0
OSV
OSV
added 2025/06/18 11:15 a.m.5 views

UBUNTU-CVE-2022-49971

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix a potential gpumetricstable memory leak Memory is allocated for gpumetricstable in smuv1304initsmctables, but not freed in smuv1304finismctables. This may cause memory leaks, fix it...

5.5CVSS6AI score0.00179EPSS
Exploits0References4
OSV
OSV
added 2025/05/21 4:15 p.m.6 views

CVE-2025-48206

The nsbackup extension through 13.0.0 for TYPO3 allows XSS...

6.1CVSS5.8AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.6 views

ChurchCRM 安全漏洞

ChurchCRM is an open source CRM system built for churches by ChurchCRM Open Source. A security vulnerability exists in ChurchCRM 5.13.0 and earlier versions, which stems from the EID parameter being directly connected to a SQL query without proper cleanup, which is susceptible to SQL injection...

9.3CVSS9.3AI score0.00608EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.6 views

ChurchCRM 安全漏洞

ChurchCRM is an open source CRM system built for churches by ChurchCRM Open Source. A security vulnerability exists in ChurchCRM version 5.13.0 that stems from vulnerability to a reflective cross-site scripting attack that allows session credentials to be stolen...

8.4CVSS5.9AI score0.0028EPSS
Exploits1References1
OSV
OSV
added 2025/01/06 5:15 p.m.3 views

DEBIAN-CVE-2025-21613

go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only...

9.2CVSS7.1AI score0.01261EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/20 12:0 a.m.5 views

PT-2024-30052 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 13.0 Description: The issue is related to a remote code execution vulnerability. Although the admin editplayer.php file imposes restrictions on edited files, attackers can bypass these restrictions and write code. This allows...

6.7CVSS8.4AI score0.01223EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/04/16 12:0 a.m.4 views

PT-2024-28165 · Mattermost · Mattermost Mobile

Name of the Vulnerable Software and Affected Versions: Mattermost Mobile app versions 2.13.0 and earlier Description: The issue allows an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link, due to the use of a regular expression with polynomial complexi...

6.5CVSS7.2AI score0.00464EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.8 views

Elasticsearch 安全漏洞

Elasticsearch is a search engine based on the Lucene library. A security vulnerability exists in Elasticsearch versions prior to 7.17.19 and prior to 8.13.0, which stems from the fact that processing a document in a deeply nested pipeline on an ingest node may cause an Elasticsearch node to crash...

7.5CVSS6.2AI score0.00951EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/19 12:0 a.m.8 views

Atlassian Confluence Server Security Vulnerability

Atlassian Confluence Server is the server version of Atlassian Australia's suite of collaboration software with enterprise knowledge management capabilities and support for building enterprise WiKi. A security vulnerability exists in Atlassian Confluence Data Center and Server 6.13.0 that stems...

8.8CVSS6.9AI score0.00926EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.4 views

Atlassian Confluence Security Vulnerability

Atlassian Confluence is a suite of specialized enterprise knowledge management and collaboration software from Atlassian Australia that can also be used to build enterprise WiKi. A security vulnerability exists in Atlassian Confluence Data Center and Server that stems from the presence of a remot...

8.8CVSS8AI score0.01363EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.7 views

Archer Platform Security Vulnerability

Archer Platform is a modern integrated risk management solution from Archer, Inc. A security vulnerability exists in Archer Platform version 6.x prior to 6.13.0.2.2, which stems from the inclusion of a sensitive information disclosure vulnerability, where an authenticated attacker may be able to...

6.5CVSS6AI score0.00457EPSS
Exploits0References2
Rows per page
Query Builder