Lucene search
K

7 matches found

OSV
OSV
added 2026/01/26 10:16 a.m.4 views

CVE-2026-24656

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

3.7CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added 2026/01/26 9:41 a.m.36 views

CVE-2026-24656 Apache Karaf: Decanter log-socket collector has deserialization vulnerability

Deserialization of Untrusted Data vulnerability in Apache Karaf Decanter. The Decanter log socket collector exposes the port 4560, without authentication. If the collector exposes allowed classes property, this configuration can be bypassed. It means that the log socket collector is vulnerable to...

0.00655EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/16 9:44 a.m.6 views

WordPress bidorbuy Store Integrator plugin <= 2.12.0 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Skalucy in WordPress Plugin bidorbuy Store Integrator versions = 2.12.0...

7.1CVSS6.1AI score0.00175EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/28 12:36 p.m.1 views

CVE-2025-48100 WordPress bidorbuy Store Integrator plugin <= 2.12.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in extremeidea bidorbuy Store Integrator allows Remote Code Inclusion. This issue affects bidorbuy Store Integrator: from n/a through 2.12.0...

9.1CVSS7.6AI score0.00346EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/28 12:36 p.m.9 views

CVE-2025-48100 WordPress bidorbuy Store Integrator plugin <= 2.12.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in extremeidea bidorbuy Store Integrator bidorbuystoreintegrator allows Remote Code Inclusion.This issue affects bidorbuy Store Integrator: from n/a through = 2.12.0...

9.1CVSS0.00346EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/02 12:0 a.m.1 views

PT-2025-1450 · Storeapps · Putler Connector For Woocommerce

Name of the Vulnerable Software and Affected Versions: Putler Connector for WooCommerce versions n/a through 2.12.0 Description: A Missing Authorization issue is present in the Putler / Storeapps Putler Connector for WooCommerce. This issue allows for unauthorized access. Recommendations: For...

6.5CVSS9.2AI score0.0025EPSS
Exploits0References5
Snyk
Snyk
added 2022/11/20 9:8 a.m.3 views

Incorrect Calculation of Buffer Size

Overview Affected versions of this package are vulnerable to Incorrect Calculation of Buffer Size via tf.keras.losses.poisson which receives a ypred and ytrue that are passed through functor::mul in BinaryOp. If the resulting dimensions overflow an int32, TensorFlow will crash due to a size...

7.5CVSS7.2AI score0.0044EPSS
Exploits1References2
Rows per page
Query Builder