Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2025/09/09 9:31 a.m.2 views

CVE-2025-48208 Apache HertzBeat (incubating): Jmx JNDI injection vulnerability

Improper Neutralization of Special Elements used in an LDAP Query 'LDAP Injection' vulnerability in Apache HertzBeat . The attacker needs to have an authenticated account with access, and the attack can only be triggered by crafting custom commands. A successful attack would result in arbitrary...

6.3AI score0.00589EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.7 views

PT-2024-26625 · Bestwebsoft · Contact Form To Db

Name of the Vulnerable Software and Affected Versions: Contact Form to DB by BestWebSoft versions 1.7.2 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation...

8.8CVSS7.8AI score0.00441EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/01/14 12:0 a.m.6 views

PT-2023-18522 · Nextcloud · Nextcloud Deck

Name of the Vulnerable Software and Affected Versions: Nextcloud Deck versions prior to 1.6.5 Nextcloud Deck versions prior to 1.7.3 Nextcloud Deck versions prior to 1.8.2 Description: Nextcloud Deck is a kanban style organization tool aimed at personal planning and project organization for teams...

6.5CVSS6.4AI score0.00663EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/10/21 12:0 a.m.4 views

PT-2021-23668

Name of the Vulnerable Software and Affected Versions shell-quote versions prior to 1.7.3 Description The issue allows command injection. An attacker can inject unescaped shell metacharacters through a regex designed to support Windows drive letters. If the output of this package is passed to a...

9.8CVSS7.3AI score0.0434EPSS
Exploits0References148
securityvulns
securityvulns
added 2002/07/09 12:0 a.m.20 views

Technical Details of BadBlue EXT.DLL Vulnerability

Several days ago, I reported a vulnerability in the EXT.DLL ISAPI of BadBlue. BadBlue 1.7.3 has now been released by the vendor Working Resources at http://www.badblue.com/down.htm for administrators to upgrade their systems. The vulnerability exists in how EXT.DLL sanitizes input for HTX/HTS...

0.2AI score
Exploits0
Rows per page
Query Builder