Lucene search
K

3099 matches found

Cvelist
Cvelist
added 2025/12/08 9:51 p.m.22 views

CVE-2025-64650 IBM Storage Defender - Resiliency Service Information Disclosure

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user credentials in log files...

6.5CVSS0.00232EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/01 12:4 p.m.25 views

CVE-2025-40603

A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances may allow a remote, authenticated administrator, under certain conditions to view partial users credential data...

4.5CVSS6.2AI score0.00437EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/31 12:30 p.m.6 views

EUVD-2025-37343

A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances may allow a remote, authenticated administrator, under certain conditions to view partial users credential data...

4.5CVSS5.7AI score0.00437EPSS
Exploits0References2
NVD
NVD
added 2025/10/31 11:15 a.m.10 views

CVE-2025-40603

A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances may allow a remote, authenticated administrator, under certain conditions to view partial users credential data...

4.5CVSS0.00437EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/31 11:1 a.m.3 views

CVE-2025-40603

A potential exposure of sensitive information in log files in SonicWall SMA100 Series appliances may allow a remote, authenticated administrator, under certain conditions to view partial users credential data...

5.8AI score0.00437EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/31 12:0 a.m.10 views

SonicWall SMA100 Series 安全漏洞

SonicWall SMA100 Series is a security gateway appliance from SonicWall, Inc. A security vulnerability exists in the SonicWall SMA100 Series that stems from the potential exposure of sensitive information in log files, which could result in a remote authenticated administrator viewing some user...

4.5CVSS4.7AI score0.00437EPSS
Exploits0References1
Snyk
Snyk
added 2025/10/29 4:38 p.m.3 views

Malicious Package

Overview react-router-dom.js is a malicious package. This is a "typosquatting" package, which means the package name is based on existing repositories, namespaces, or components, it aims to trick users to download the package which contains a malicious code. Payload behavior The malicious payload...

9.8CVSS6.8AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/29 3:19 p.m.5 views

CVE-2025-34316

IPFire versions prior to 2.29 Core Update 198 contain a stored cross-site scripting XSS vulnerability that allows an authenticated attacker to inject arbitrary JavaScript code through the txtmailuser and txtmailpass parameters when updating the mail server settings. When a user updates the mail...

5.4CVSS6.2AI score0.00453EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/10/28 7:18 p.m.5 views

event-driven-ansible: Event Stream Test Mode Exposes Sensitive Headers in AAP EDA

A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible EDA Event Stream API. This vulnerability allows exposure of sensitive client credentials and internal infrastructure headers via the testheaders field when an event stream is in test mode. The possible outcome...

6.7CVSS5.8AI score0.00167EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/17 12:0 a.m.5 views

EUVD-2025-34933

The Restaurant Brands International RBI assistant platform through 2025-09-06 transmits passwords of user accounts in cleartext e-mail messages...

3.4CVSS6.4AI score0.00291EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/10/15 5:53 a.m.12 views

CVE-2025-31702

A vulnerability exists in certain Dahua embedded products. Third-party malicious attacker with obtained normal user credentials could exploit the vulnerability to access certain data which are restricted to admin privileges, such as system-sensitive files through specific HTTP request. This may...

6.8CVSS0.00275EPSS
Exploits1References1
NVD
NVD
added 2025/10/08 12:15 a.m.18 views

CVE-2025-61996

OPEXUS FOIAXpress before 11.13.3.0 allows an administrative user to inject JavaScript or other content within the Annual Report Template. Injected content is executed in the context of other users when they generate an Annual Report. Successful exploitation allows the administrative user to perfo...

4.8CVSS0.00225EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1196

Malware in sbrugna...

4.6CVSS6.4AI score0.00377EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7306

Malware in sbrugna...

9.8CVSS9.5AI score0.01936EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-25619

Malware in sbrugna...

7.8CVSS6.6AI score0.00288EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-15915

Malware in sbrugna...

7.5CVSS7.5AI score0.01169EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-9329

Malware in sbrugna...

7.5CVSS7.5AI score0.03065EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0883

Malware in sbrugna...

7.5CVSS6.4AI score0.01333EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-10325

Malware in sbrugna...

7.8CVSS7.7AI score0.00232EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-25375

Malware in sbrugna...

6.2CVSS6.3AI score0.00166EPSS
Exploits0References3
Rows per page
Query Builder