Lucene search
K

16 matches found

EUVD
EUVD
added 2026/05/15 7:46 a.m.19 views

EUVD-2026-30515

The Smartcat Translator for WPML plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'routeData' REST endpoint in all versions up to, and including, 3.1.77. This makes it possible for unauthenticated attackers to overwrite the plugin's...

6.5CVSS5.8AI score0.00262EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.8 views

WordPress plugin Smartcat Translator for WPML 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.5CVSS5.8AI score0.00262EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of aggregate values in the contpteptepsetaccessflags function when detecting no operation...

5.8AI score0.00114EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/08 2:20 a.m.10 views

SUSE CVE-2026-43161

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed through to userspace e.g., QEMU, DPDK can hard-lock the host when their link drops, either by surprise...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:27 a.m.9 views

CVE-2026-43130

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode Commit 4fc82cd907ac "iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected" relies on pcidevisdisconnected to skip ATS...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43161

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed through to userspace e.g., QEMU,...

5.5CVSS6.2AI score0.00122EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43130

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/vt-d: Flush dev-IOTLB only when PCIe device is accessible in scalable mode Commit 4fc82cd907ac iommu/vt-d: Don't issue ATS Invalidation request when devic...

5.5CVSS6.2AI score0.00123EPSS
Exploits0References3
NVD
NVD
added 2026/04/15 7:16 p.m.9 views

CVE-2026-34244

Weblate is a web based localization tool. In versions prior to 5.17, a user with the project.edit permission granted by the per-project "Administration" role can configure machine translation service URLs pointing to arbitrary internal network addresses. During configuration validation, Weblate...

5CVSS0.0024EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/15 6:22 p.m.24 views

CVE-2026-34244 Weblate: SSRF via Project-Level Machinery Configuration

Weblate is a web based localization tool. In versions prior to 5.17, a user with the project.edit permission granted by the per-project "Administration" role can configure machine translation service URLs pointing to arbitrary internal network addresses. During configuration validation, Weblate...

5CVSS0.0024EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.8 views

Weblate 安全漏洞

Weblate is an open-source, copyleft, web-based free software system for continuous localization. A security vulnerability existed in versions of Weblate prior to 5.17. This vulnerability stemmed from a machine translation service URL that could be configured by users with the project.edit...

5CVSS5.8AI score0.0024EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.4 views

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26891)

iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503550;...

5.5CVSS6.5AI score0.00231EPSS
Exploits0References2
Gitee
Gitee
added 2025/07/07 12:11 a.m.92 views

Exploit for Cleartext Transmission of Sensitive Information in Paloaltonetworks Cortex_Xdr_Agent

Nuclei2Snort 📖 项目介绍 Nuclei2Snort 是一个高效的自动化工具,用于将 Nuclei POC(Proof of Concept)模板批量转换为 Snort IDS/IPS 规则。该工具帮助安全研究人员和运维团队快速将 Nuclei 的漏洞检测模板转换为可部署的网络入侵检测规则。 ✨ 主要特性 - 🚀 批量转换: 支持单文件和目录批量转换 - 🌐 智能翻译: 集成腾讯云翻译API,自动将英文漏洞描述翻译为中文 - 🔧 自动分类: 智能识别漏洞类型并映射到相应的Snort分类 - ⚡ 并发处理: 支持多线程并发转换,提高处理效率 - 🛡️ 安全配置:...

6.7CVSS6.5AI score0.00206EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2024/04/19 2:18 a.m.2 views

SUSE CVE-2024-26891

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected For those endpoint devices connect to system via hotplug capable ports, users could request a hot reset to the device by flapping device's link through...

5.5CVSS6.2AI score0.00231EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2024/03/22 4:57 p.m.32 views

Cache Poisoning Vulnerability

Summary An attacker controlling the second variable of the translate function is able to perform a cache poisoning attack. They can change the outcome of translation requests made by subsequent users. Details The opt.id parameter allows the overwriting of the cache key. If an attacker sets the id...

5.3CVSS7AI score0.0065EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2012/02/16 8:55 p.m.2 views

UBUNTU-CVE-2011-3022

translate/translatemanager.cc in Google Chrome before 17.0.963.56 and 19.x before 19.0.1036.7 uses an HTTP session to exchange data for translation, which allows remote attackers to obtain sensitive information by sniffing the network...

5CVSS7.3AI score0.0077EPSS
Exploits0References2
Vulnerability Lab
Vulnerability Lab
added 2011/12/21 12:0 a.m.37 views

Yahoo Babelfish Service - Cross Site Scripting Vulnerability

Document Title: =============== Yahoo Babelfish Service - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=349 Release Date: ============= 2011-12-21 Vulnerability Laboratory ID VL-ID: ===================================...

7.1AI score
Exploits0
Rows per page
Query Builder