Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38473

ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. Libmodsecurity is one component of the ModSecurity v3 project. A segmentation fault occurs when a rule using the t:hexDecode transformation inspects a query string parameter containing a...

8.2CVSS5.5AI score0.00435EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/05/05 6:46 p.m.37 views

CVE-2026-30923 libModSecurity3 denial of service via segfault when using t:hexDecode on single-character query strings

ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. Libmodsecurity is one component of the ModSecurity v3 project. A segmentation fault occurs when a rule using the t:hexDecode transformation inspects a query string parameter containing a...

8.2CVSS0.00435EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.9 views

Mozilla Firefox < 3.0.15

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 3.0.15. It is, therefore, affected by a vulnerability as referenced in the mfsa2009-55 advisory. - Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute...

9.3CVSS8.1AI score0.03985EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/01/28 12:0 a.m.6 views

WordPress plugin 跨站脚本漏洞

WordPress plugin is a WordPress application plugin. WordPress Ultimate Reviews plugin 3.0.15 and earlier versions contain a cross-site scripting vulnerability that stems from the lack of proper validation of client-side data by the WEB application. An attacker could exploit this vulnerability to...

4.8CVSS5.2AI score0.00565EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/10/27 11:35 p.m.6 views

Firefox crashes with evidence of memory corruption

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10CVSS7.3AI score0.05458EPSS
Exploits1References4
Rows per page
Query Builder