Lucene search
K

12 matches found

Debian CVE
Debian CVE
added 2026/03/24 3:18 a.m.2 views

CVE-2026-4738

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal frmts/zlib/contrib/infback9 modules. This vulnerability is associated with program files inftree9.C‎. This issue affects gdal: before 3.11.0...

9.4CVSS5.3AI score0.00276EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/02/27 9:1 p.m.2 views

CVE-2026-28352 Indico missing access check in event series management API

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.11, the API endpoint used to manage event series is missing an access check, allowing unauthenticated/unauthorized access to this endpoint. The impact of this ...

6.5CVSS5.9AI score0.00264EPSS
Exploits0References2
CVE
CVE
added 2025/11/25 7:28 a.m.20 views

CVE-2025-13414

CVE-2025-13414 affects the Chamber Dashboard Business Directory plugin for WordPress. The vulnerability arises from a missing capability check on the export function (cdash_watch_for_export), enabling unauthenticated attackers to export sensitive business-directory data. All versions up to and in...

5.3CVSS5AI score0.0024EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/17 6:40 a.m.9 views

Security Bulletin: IBM Maximo Application Suite - Manage Component uses openjdk 17.0.14 and Python 3.11.11 which is vulnerable to CVEs listed in Summary.

Summary IBM Maximo Application Suite - Manage Component uses openjdk 17.0.14 which is vulnerable to CVE-2025-21587 ,CVE-2025-30698 , CVE-2025-2900 and Python 3.11.11 which is vulnerable to CVE-2025-4435,CVE- 2024-12718,CVE-2025-4330, CVE-2025-45. This bulletin contains information regarding the...

7.4CVSS6.5AI score0.0073EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2024-f247f05e2e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.01034EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 4:55 a.m.11 views

CVE-2023-24385

Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...

5.9CVSS5.6AI score0.00339EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:46 a.m.16 views

CVE-2023-3124

The Elementor Pro plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the updatepageoption function in versions up to, and including, 3.11.6. This makes it possible for authenticated attackers with subscriber-level capabilities to update...

8.8CVSS6.5AI score0.2272EPSS
Exploits2References1
OSV
OSV
added 2025/02/14 3:9 p.m.6 views

SUSE-SU-2025:0551-1 Security update for python311

This update for python311 fixes the following issues: - CVE-2025-0938: domain names containing square brackets are not identified as incorrect by urlparse. bsc1236705 Other fixes: - Update to version 3.11.11. - Remove -IVendor/ from python-config. bsc1231795...

6.3CVSS7.6AI score0.01499EPSS
Exploits0References5
OSV
OSV
added 2023/06/13 9:15 a.m.5 views

CVE-2023-30901

A vulnerability has been identified in SICAM P850 7KG8500-0AA00-0AA0 All versions V3.11, SICAM P850 7KG8500-0AA00-2AA0 All versions V3.11, SICAM P850 7KG8500-0AA10-0AA0 All versions V3.11, SICAM P850 7KG8500-0AA10-2AA0 All versions V3.11, SICAM P850 7KG8500-0AA30-0AA0 All versions V3.11, SICAM P8...

8.8CVSS5.8AI score0.00361EPSS
Exploits0References6
CNVD
CNVD
added 2018/12/04 12:0 a.m.2 views

Tarantella Enterprise Security Bypass Access Control Vulnerability

Tarantella Enterprise is a centralized data and application management tool that provides a Web management interface and runs on most Unix and Linux platforms. A security vulnerability exists in Tarantella Enterprise versions prior to 3.11. The vulnerability can be exploited to gain access to use...

8.8CVSS8.9AI score0.02621EPSS
Exploits3References1
CNVD
CNVD
added 2018/09/11 12:0 a.m.3 views

WESEEK GROWI Cross-Site Scripting Vulnerability

WESEEK GROWI is an open source team collaboration software developed by WESEEK Japan. The software features asset management, quick search and member management. A cross-site scripting vulnerability exists in WESEEK GROWI 3.1.11 and earlier versions, which can be exploited by remote attackers to...

4.8CVSS4.8AI score0.00667EPSS
Exploits0References1
OSV
OSV
added 2016/03/26 1:59 a.m.1 views

CVE-2016-1350

Cisco IOS 15.3 and 15.4, Cisco IOS XE 3.8 through 3.11, and Cisco Unified Communications Manager allow remote attackers to cause a denial of service device reload via malformed SIP messages, aka Bug ID CSCuj23293...

7.5CVSS5.8AI score0.03323EPSS
Exploits0References4
Rows per page
Query Builder