Lucene search
K

7 matches found

NVD
NVD
added 2025/10/23 12:15 p.m.9 views

CVE-2025-62393

A flaw was found in the course overview output function where user access permissions were not fully enforced. This could allow unauthorized users to view information about courses they should not have access to, potentially exposing limited course details...

4.3CVSS0.00223EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-2295

Malware in sbrugna...

3.6CVSS6.4AI score0.00631EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-38141

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00632EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/11 3:42 p.m.15 views

CVE-2025-53656

Jenkins ReadyAPI Functional Testing Plugin 1.11 and earlier stores SLM License Access Keys, client secrets, and passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file...

6.5CVSS7AI score0.00347EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/30 6:27 p.m.33 views

CVE-2025-46557 Any user with view access to the XWiki space can change the authenticator

XWiki is a generic wiki platform. In versions starting from 15.3-rc-1 to before 15.10.14, from 16.0.0-rc-1 to before 16.4.6, and from 16.5.0-rc-1 to before 16.10.0-rc-1, a user who can access pages located in the XWiki space by default, anyone can access the page XWiki.Authentication.Administrati...

8.4CVSS0.00499EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/01/11 8:33 a.m.4 views

CVE-2023-4960 WCFM Marketplace <= 3.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

The WCFM Marketplace plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'wcfmstores' shortcode in versions up to, and including, 3.6.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with...

6.4CVSS6.8AI score0.00443EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/06/06 12:0 a.m.26 views

RedHat Update for icedtea-web RHSA-2011:1100-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02497EPSS
Exploits0References2
Rows per page
Query Builder