Lucene search
K

45 matches found

EUVD
EUVD
added 2026/06/10 10:15 p.m.13 views

EUVD-2026-36196

Yamcs is a mission control framework. Prior to versions 5.13.0 and 5.12.7, an LDAP injection vulnerability exists in org.yamcs.security.LdapAuthModule when constructing search filters. The username parameter is inserted directly into the LDAP filter without proper RFC 4515 escaping. Versions 5.13...

4.3CVSS5.4AI score0.01027EPSS
Exploits3References3
Debian CVE
Debian CVE
added 2026/05/14 3:10 a.m.7 views

CVE-2026-46445

SOGo before 5.12.7, when PostgreSQL is used, allows SQL injection...

7.1CVSS5.9AI score0.00239EPSS
Exploits0
OSV
OSV
added 2026/05/13 7:17 p.m.4 views

DEBIAN-CVE-2026-8496

A cross-site scripting XSS vulnerability exists in Alinto SOGo, version 5.12.7. A maliciously crafted ICS calendar invitation files allows arbitrary JavaScript execution within the authenticated SOGo webmail session. The issue occurs because SVG content embedded in the description field of an ICS...

6.1CVSS6AI score0.00283EPSS
Exploits0References1
Broadcom
Broadcom
added 2026/01/27 12:0 a.m.14 views

The allocate_structures function insufficiently checks bounds before arithmetic multiplication

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

7.8CVSS6AI score0.01096EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.5 views

CVE-2023-40416

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. Processing an image may result in disclosure of process memory...

6.5CVSS6.1AI score0.01281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/13 4:33 p.m.10 views

CVE-2025-10254

A vulnerability was found in Ascensio System SIA OnlyOffice up to 12.7.0. This issue affects some unknown processing of the file /Products/Projects/Messages.aspx of the component SVG Image Handler. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The...

5.1CVSS5.8AI score0.00246EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/11 4:2 p.m.8 views

CVE-2025-10255 Ascensio System SIA OnlyOffice Comment Messages.aspx cross site scripting

A vulnerability was determined in Ascensio System SIA OnlyOffice up to 12.7.0. Impacted is an unknown function of the file /Products/Projects/Messages.aspx of the component Comment Handler. Executing manipulation can lead to cross site scripting. The attack may be launched remotely. The exploit h...

5.1CVSS5.3AI score0.00293EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/11 3:32 p.m.10 views

CVE-2025-10254 Ascensio System SIA OnlyOffice SVG Image Messages.aspx cross site scripting

A vulnerability was found in Ascensio System SIA OnlyOffice up to 12.7.0. This issue affects some unknown processing of the file /Products/Projects/Messages.aspx of the component SVG Image Handler. Performing manipulation results in cross site scripting. The attack may be initiated remotely. The...

5.1CVSS0.00246EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/08 12:0 a.m.6 views

PT-2025-9012

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.7-770 2 Description A vulnerability in the Linux kernel has been identified, which can cause the system to crash when using touchscreen and framebuffer on certain devices, such as the Nokia 770. The issue is...

5.5CVSS7AI score0.00176EPSS
Exploits0
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.5 views

WatchGuard Authentication Gateway 安全漏洞

WatchGuard Authentication Gateway WatchGuard Single Sign-On Agent is an authentication gateway from WatchGuard USA. A security vulnerability exists in WatchGuard Authentication Gateway version 12.7 and earlier, which stems from an improperly handled exception condition that allows an attacker wit...

7.5CVSS6.7AI score0.00501EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/08/12 11:48 a.m.3 views

WordPress Indeed Ultimate Membership Pro plugin <= 12.7 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Ultimate Membership Pro versions = 12.7...

9.8CVSS7AI score0.00549EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2024/07/29 12:0 a.m.5 views

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed for Mac computers by Apple Inc. in the United States. A security vulnerability previously existed in Apple macOS Monterey version 12.7.6, which stems from an application that may be able to disclose sensitive user information...

5.5CVSS5.9AI score0.00278EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/07/29 12:0 a.m.4 views

PT-2024-29040 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.7.6 macOS versions prior to 13.6.8 macOS versions prior to 14.6 Description: The issue allows a local attacker to potentially elevate their privileges. It was addressed with improved checks. Recommendations: For mac...

8.4CVSS5.9AI score0.00239EPSS
Exploits0References11
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.1 views

libxml2 安全漏洞

libxml2 is an open source library for parsing XML documents. It is written in C and can be called by many languages, such as C, C++, XSH. A security vulnerability exists in libxml2 versions prior to 2.11.8, 2.12.x through 2.12.7, which stems from the use of the xmllint --htmlout formatting error...

7.5CVSS6.7AI score0.02298EPSS
Exploits1References5
Patchstack
Patchstack
added 2024/04/10 9:12 a.m.4 views

WordPress MihanPanel plugin < 12.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin MihanPanel versions 12.7...

5.4CVSS7AI score0.00197EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2024/03/19 12:0 a.m.9 views

PT-2024-22746 · Unknown · Relywp Coupon Affiliates

Name of the Vulnerable Software and Affected Versions: RelyWP Coupon Affiliates versions through 5.12.7 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For versions throu...

7.1CVSS9.3AI score0.00402EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.4 views

Apple macOS Monterey Security Vulnerability

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. A security vulnerability exists in Apple macOS Monterey versions prior to 12.7.4, which stems from an attacker's ability to access sensitive user data...

5.5CVSS6.3AI score0.00252EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.0 views

Apple macOS Monterey Security Vulnerability

Apple macOS Monterey is the 18th major version of Apple's US macOS for the Macintosh desktop operating system. A security vulnerability exists in Apple macOS Monterey version 12.7.4, which stems from an application that could result in a denial of service...

6.2CVSS6.4AI score0.00249EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2024/03/07 12:0 a.m.4 views

PT-2024-19769 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.7.4 macOS versions prior to 13.6.5 macOS versions prior to 14.4 Description: A race condition was addressed with additional validation. This issue may allow an app to access protected user data. Recommendations: For...

4.7CVSS8.1AI score0.00171EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.5 views

Apple macOS Monterey Security Vulnerability

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. A security vulnerability exists in Apple macOS Monterey version 12.7.4, which stems from an application that may be able to overwrite arbitrary files...

7.1CVSS6.6AI score0.00274EPSS
Exploits0References7
Rows per page
Query Builder