Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2025/10/24 12:0 a.m.5 views

PT-2025-43671

Name of the Vulnerable Software and Affected Versions Plane versions prior to 1.1.0 Description Plane is open-source project management software. A flaw exists in the ?next path query parameter that allows attackers to supply arbitrary schemes, such as javascript:, which are then directly passed ...

8.1CVSS5.9AI score0.00304EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.5 views

PT-2025-34709

Name of the Vulnerable Software and Affected Versions: TP-Link KP303 Smartplug versions prior to 1.1.0 Description: The TP-Link KP303 Smartplug is susceptible to unauthenticated protocol commands that can lead to an unintended power-off condition and potential information leak. Recommendations:...

8.8CVSS6.5AI score0.00296EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2024/10/20 12:0 a.m.4 views

PT-2024-33574 · Unknown · Social Link Groups

Name of the Vulnerable Software and Affected Versions: Social Link Groups versions prior to 1.1.0 Description: The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, which arises from the improper neutralization of special elements used in an SQL command. This...

8.8CVSS8.2AI score0.00432EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/05/23 12:0 a.m.6 views

PT-2023-21722 · Unknown · Cloudexplorer Lite

Name of the Vulnerable Software and Affected Versions: cloudexplorer-lite versions prior to 1.1.0 Description: The issue concerns a missing authorization in the cloudexplorer-lite GitHub repository. This allows for an authorization bypass through a user-controlled key. Recommendations: For versio...

7.2CVSS5.9AI score0.00676EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2017/03/28 12:0 a.m.3 views

PT-2017-9959 · Go · Go-Jose

Name of the Vulnerable Software and Affected Versions: go-jose versions prior to 1.1.0 go-jose versions prior to 1.0.4 Description: The go-jose library is affected by an issue related to multiple signatures exploitation. When validating a signed message, the API does not indicate which signature ...

7.5CVSS7.3AI score0.01967EPSS
Exploits0References13
Rows per page
Query Builder