Lucene search
K

58 matches found

NVD
NVD
added 2026/06/19 4:16 p.m.13 views

CVE-2026-12622

The GridTime 3000 GNSS Time Server has an open redirect vulnerability in the password change form submission. This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0...

5.4CVSS0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/06/19 4:16 p.m.15 views

CVE-2026-12621

Improper neutralization of input during web page generation XSS vulnerability in the GridTime 3000 password reset form allows XSS. This issue affects GridTime 3000: from 1.0r0.03 before 1.2r0.0...

5.4CVSS0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 3:59 p.m.32 views

CVE-2026-12620 Access Token Exposure in URL Parameters in GridTime™ 3000 GNSS Time Server

The GridTime 3000 GNSS Time Server leaks the access token in the URL parameters of some endpoints. This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0...

4.6CVSS0.00242EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 3:53 p.m.6 views

EUVD-2026-38040

Improper neutralization of input during web page generation XSS vulnerability in the GridTime 3000 password reset form allows XSS. This issue affects GridTime 3000: from 1.0r0.03 before 1.2r0.0...

5.3CVSS5.8AI score0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/19 3:40 p.m.32 views

CVE-2026-12619 GridTime™ 3000 GNSS Time Server CSRF to XSS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Microchip GridTime 3000 allows Cross-Site Scripting XSS. This issue affects GridTime 3000: from 1.0r0.03 through 1.1r0.0...

5.1CVSS0.0023EPSS
Exploits0References1
NVD
NVD
added 2026/05/20 5:16 p.m.13 views

CVE-2026-20171

A vulnerability in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, remote attacker to trigger BGP peer flaps, resulting in a denial of service DoS condition...

6.8CVSS0.00467EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.11 views

PT-2026-42190

Name of the Vulnerable Software and Affected Versions Cisco Nexus 3000 Series Switches versions prior to 10.61s Cisco Nexus 9000 Series Switches versions prior to 10.61s Description A flaw in the Border Gateway Protocol BGP enforce-first-as feature of Cisco Nexus 3000 and 9000 Series Switches in...

6.8CVSS5.8AI score0.00467EPSS
Exploits0References5
NVD
NVD
added 2026/05/18 3:16 p.m.47 views

CVE-2026-41949

Dify before version 1.14.2 contains an authorization bypass vulnerability in the file preview endpoint that allows any authenticated user to read up to 3,000 characters of any uploaded document across all tenants and workspaces using only the file's UUID. Attackers can access the...

8.2CVSS0.00435EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.14 views

PT-2026-40420

Name of the Vulnerable Software and Affected Versions WP Directory Kit versions prior to 1.5.1 Description An unauthenticated broken access control issue exists, which could expose customer databases. Approximately 3,000 WordPress sites are potentially affected worldwide. Recommendations Update t...

7.5CVSS5.2AI score0.00306EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/06 9:1 p.m.5 views

CVE-2026-30223

OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1, when JWT authentication is configured using either "authJwtPubKeyPath" local RSA public key or "authJwtHmacSecret" HMAC secret, the configured audience value authJwtAud is not enforced during toke...

8.8CVSS5.8AI score0.00301EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2026/02/07 12:15 a.m.4 views

CVE-2020-37170

TapinRadio 2.12.3 contains a denial of service vulnerability in the application proxy address configuration that allows local attackers to crash the application. Attackers can overwrite the address field with 3000 bytes of arbitrary data to trigger an application crash and prevent normal program...

6.7CVSS0.00229EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/06 11:14 p.m.30 views

CVE-2020-37170 TapinRadio 2.12.3 - 'address' Denial of Service

TapinRadio 2.12.3 contains a denial of service vulnerability in the application proxy address configuration that allows local attackers to crash the application. Attackers can overwrite the address field with 3000 bytes of arbitrary data to trigger an application crash and prevent normal program...

6.7CVSS0.00229EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/06 11:14 p.m.3 views

CVE-2020-37170 TapinRadio 2.12.3 - 'address' Denial of Service

TapinRadio 2.12.3 contains a denial of service vulnerability in the application proxy address configuration that allows local attackers to crash the application. Attackers can overwrite the address field with 3000 bytes of arbitrary data to trigger an application crash and prevent normal program...

6.7CVSS5.8AI score0.00229EPSS
Exploits1References3
CVE
CVE
added 2026/02/06 11:14 p.m.11 views

CVE-2020-37170

TapinRadio 2.12.3 is affected by a local, denial-of-service vulnerability in the application proxy address configuration. The issue arises when an attacker overwrites the address field with 3000 bytes of arbitrary data, causing the application to crash and fail normal operation. Affected componen...

6.7CVSS5.5AI score0.00229EPSS
Exploits1References3Affected Software1
Circl
Circl
added 2026/01/25 3:21 p.m.7 views

CVE-2026-23000

creationtimestamp| type| source ---|---|--- 2026-01-25 15:21:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdaztjfncm2n 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/ 2026-06-01 18:00:00+00:00| seen|...

5.5CVSS6.6AI score0.0015EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/16 12:30 a.m.5 views

EUVD-2026-3032

EUVD-2026-3032...

9.3CVSS6.4AI score0.01987EPSS
Exploits1References4
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/12/15 12:0 a.m.6 views

Cyber Risk Management: Defenders Tell It Like It Is

Based on more than 3,000 responses from cybersecurity professionals in nearly 90 countries, our Trend Micro Defenders Survey Report 2025 shines a bright light on the current state of cyber risk management. From the impact of cloud and AI on IT environments to top technical and human challenges,...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2025/10/20 5:17 p.m.159 views

test-reflected-xss-nodejs

It is an offensive tool for web application security testing. Th...

6.5AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27688

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00126EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/09/25 5:53 p.m.188 views

server-sqli

This is a PoC exploit for CVE-YYYY-NNNN, an intentional SQL inje...

9.3AI score
Exploits0
Rows per page
Query Builder