Lucene search
+L

77 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-19169

Malware in sbrugna...

4.9CVSS5.5AI score0.00707EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-50095

Malicious code in bioql PyPI...

3.3CVSS4.5AI score0.00264EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.9 views

CVE-2023-45816

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...

3.3CVSS6.8AI score0.00264EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/20 6:3 p.m.47 views

CVE-2025-29923 go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when CLIENT SETINFO times out during connection establishment. This can happen when the client is configured to transmit its identity, there...

3.7CVSS0.00694EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2024/11/25 3:37 p.m.2 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 128.4.3 fixed: Folder corruption could cause Thunderbird to freeze and become unusable fixed: Message corruption could be propagated when reading mbox fixed: Folder compaction was not abandoned on shutdown fixed:...

9.8CVSS9.1AI score0.00809EPSS
Exploits0References26
OSV
OSV
added 2024/05/23 7:15 a.m.5 views

CVE-2024-5240

A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /view/unreadmsg.php. The manipulation of the argument myindex leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS5.8AI score0.00407EPSS
Exploits1References4
CVE
CVE
added 2024/05/23 6:31 a.m.88 views

CVE-2024-5240

The CVE-2024-5240 entry pertains to Campcodes Complete Web-Based School Management System v1.0, with a SQL injection in the /view/unread_msg.php file caused by manipulating the my_index argument. Multiple connected sources confirm remote exploitation and public disclosure of the exploit. Concrete...

6.5CVSS6.8AI score0.00407EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/23 12:0 a.m.9 views

PT-2024-35238 · Campcodes · Campcodes Complete Web-Based School Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Complete Web-Based School Management System version 1.0 Description: A critical issue affects the processing of the file /view/unread msg.php, where the manipulation of the my index argument leads to SQL injection. This issue can be...

6.5CVSS7.2AI score0.00407EPSS
Exploits1References6
OSV
OSV
added 2024/03/06 10:52 a.m.44 views

BIT-DISCOURSE-2023-45816 Unread bookmark reminder notifications that the user cannot access can be seen

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...

3.3CVSS4.1AI score0.00264EPSS
Exploits0References4
NVD
NVD
added 2024/01/10 9:15 a.m.29 views

CVE-2020-26627

A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries - Unread Query' tab...

4.9CVSS5.5AI score0.00707EPSS
Exploits3References1
OSV
OSV
added 2024/01/10 9:15 a.m.6 views

CVE-2020-26627

A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries - Unread Query' tab...

4.9CVSS5.8AI score0.00707EPSS
Exploits3References1
Prion
Prion
added 2024/01/10 9:15 a.m.19 views

Sql injection

A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a crafted payload entered into the 'Admin Remark' parameter under the 'Contact Us Queries - Unread Query' tab...

3.3CVSS7.9AI score0.00707EPSS
Exploits3References1Affected Software1
OpenVAS
OpenVAS
added 2023/11/14 12:0 a.m.41 views

Discourse < 3.1.3, 3.2.x < 3.2.0.beta3 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

9.8CVSS5.1AI score0.00999EPSS
Exploits1References5
Prion
Prion
added 2023/11/10 3:15 p.m.31 views

Design/Logic Flaw

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...

1.9CVSS7AI score0.00264EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/11/10 2:49 p.m.22 views

CVE-2023-45816 Unread bookmark reminder notifications that the user cannot access can be seen

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...

3.3CVSS4.7AI score0.00264EPSS
Exploits0References3
OSV
OSV
added 2023/11/10 2:49 p.m.22 views

CVE-2023-45816 Unread bookmark reminder notifications that the user cannot access can be seen

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...

3.3CVSS4.5AI score0.00264EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/10 12:0 a.m.7 views

PT-2023-29706 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions prior to 3.1.3 Discourse version 3.2.0.beta3 and earlier of the beta and tests-passed branches Description: Discourse is an open source platform for community discussion. There is an edge case where a bookmark reminder is...

3.3CVSS3.9AI score0.00264EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/03/17 12:0 a.m.9 views

Discourse 信息泄露漏洞

Discourse is an open source community discussion platform. The platform includes community, email, and chat room features. Discourse suffers from an information disclosure vulnerability that stems from the fact that the number of topics displayed by tabs counts only the unread regular topic limit...

4.3CVSS5AI score0.00534EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:23 a.m.4 views

SUSE CVE-2022-41721

A request smuggling attack is possible when using MaxBytesHandler. When using MaxBytesHandler, the body of an HTTP request is not fully consumed. When the server attempts to read HTTP2 frames from the connection, it will instead be reading the body of the HTTP request, which could be...

7.5CVSS7.1AI score0.01814EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:23 a.m.4 views

SUSE CVE-2022-42313

Xenstore: guests can let run xenstored out of memory This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Malicious guests can cause xenstored to allocate vast amounts of memory, eventually resulting in a Denial of Service...

6CVSS7.2AI score0.00245EPSS
Exploits0References19
Rows per page
Query Builder