Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/05/22 7:57 a.m.14 views

CVE-2026-48172

LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation possibly to root, as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpaneljsonapifunc=redisAble" /var/cpanel/logs /usr/local/cpanel/logs/ 2/dev/null in Bash. If you get no output,...

10CVSS5.8AI score0.18914EPSS
Exploits1References1
Snyk
Snyk
added 2024/10/10 12:31 p.m.4 views

Improper Input Validation

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Improper Input Validation through the PHP filter chain. An attacker with administrative privileges can read files from the system outside of the intended directories and...

7.6CVSS6.9AI score0.00852EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/04 12:0 a.m.7 views

PT-2024-30613 · Microchip · Timeprovider 4100

Name of the Vulnerable Software and Affected Versions: Microchip TimeProvider 4100 versions 1.0 through 2.4.7 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS attacks. The...

6.1CVSS6.1AI score0.11234EPSS
Exploits0References9
Snyk
Snyk
added 2024/08/14 12:35 p.m.1 views

Improper Authorization

Overview magento/community-edition is a modern cloud eCommerce platform. Affected versions of this package are vulnerable to Improper Authorization via improper authorization. An attacker can gain access to restricted information by bypassing security controls without requiring user interaction...

5.3CVSS6.5AI score0.00429EPSS
Exploits0References2
Rows per page
Query Builder