Lucene search
K

11 matches found

EUVD
EUVD
added 2026/06/15 9:30 p.m.12 views

EUVD-2026-36948

Unauthenticated Broken Access Control in Easy Digital Downloads = 3.6.5 versions...

7.5CVSS5.1AI score0.00246EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/04/20 9:54 a.m.6 views

WordPress Easy Digital Downloads plugin <= 3.6.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jakub Herman in WordPress Plugin Easy Digital Downloads versions = 3.6.5...

5.8AI score0.00246EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/04/01 6:16 p.m.6 views

UBUNTU-CVE-2026-25834

Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade...

6.5CVSS5.7AI score0.00135EPSS
Exploits0References2
OSV
OSV
added 2026/02/27 9:52 p.m.8 views

CVE-2026-28411 WeGIA Vulnerable to Authentication Bypass via `extract($_REQUEST)`

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the extract function on the $REQUEST superglobal allows an unauthenticated attacker to overwrite local variables in multiple PHP scripts. This vulnerability can be leveraged to completely bypass...

9.8CVSS6AI score0.00593EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-16954

Malware in sbrugna...

6.1CVSS6.2AI score0.00787EPSS
Exploits0References3
OSV
OSV
added 2023/12/20 2:15 p.m.4 views

CVE-2023-47507

Deserialization of Untrusted Data vulnerability in Master Slider Master Slider Pro.This issue affects Master Slider Pro: from n/a through 3.6.5...

9.8CVSS7.3AI score0.00388EPSS
Exploits0References1
Prion
Prion
added 2021/05/17 4:15 p.m.14 views

Design/Logic Flaw

A vulnerability was found in Moodle where javaScript injection was possible in some Mustache templates via recursive rendering from contexts. Mustache helper tags that were included in template contexts were not being escaped before that context was injected into another Mustache helper, which...

4.3CVSS6.2AI score0.00668EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/01/28 7:15 p.m.1 views

DEBIAN-CVE-2020-5211

In NetHack before 3.6.5, an invalid extended command in value for the AUTOCOMPLETE configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems...

9.8CVSS9.3AI score0.01068EPSS
Exploits0References1
OSV
OSV
added 2020/01/28 6:15 p.m.4 views

DEBIAN-CVE-2020-5210

In NetHack before 3.6.5, an invalid argument to the -w command line option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to influence...

7.8CVSS8.2AI score0.00802EPSS
Exploits0References1
OSV
OSV
added 2020/01/28 6:15 p.m.3 views

UBUNTU-CVE-2020-5213

In NetHack before 3.6.5, too long of a value for the SYMBOL configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to...

9.8CVSS6.4AI score0.01067EPSS
Exploits0References4
CNVD
CNVD
added 2017/04/27 12:0 a.m.4 views

Joomla! cross-site scripting vulnerability (CNVD-2017-06581)

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A cross-site scripting vulnerability exists in Joomla! versions 3.2.0 through 3.6.5. The vulnerability arises due to insufficient escaping of file a...

6.1CVSS7AI score0.00787EPSS
Exploits0References1
Rows per page
Query Builder