Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-19479

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-setcos.c has an incorrect read operation during parsing of a SETC...

5.5CVSS6.3AI score0.00424EPSS
Exploits0References3
CVE
CVE
added 2025/02/24 3:0 a.m.63 views

CVE-2025-1614

CVE-2025-1614 affects FiberHome AN5506-01A ONU GPON RP2511, specifically the Port Forwarding Submenu’s /goform/portForwardingCfg.x file and pf_Description parameter, where cross-site scripting is triggered. The vulnerability is reported as exploitable remotely; multiple sources note that the expl...

4.8CVSS3.4AI score0.00713EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/04/12 1:15 p.m.17 views

CVE-2024-3685

A vulnerability, which was classified as critical, was found in DedeCMS 5.7.112-UTF8. Affected is an unknown function of the file stepselectmain.php. The manipulation of the argument ids leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

9.8CVSS6.8AI score0.00586EPSS
Exploits0References4
CVE
CVE
added 2024/03/27 8:31 p.m.68 views

CVE-2024-2997

CVE-2024-2997 affects the Bdtask Multi-Store Inventory Management System (up to 20240320). The vulnerability is a cross-site scripting flaw triggered by manipulating the arguments Category Name, Model Name, Brand Name, or Unit Name, allowing remote exploitation and arbitrary script execution with...

5.4CVSS3.2AI score0.01215EPSS
Exploits6References4Affected Software1
securityvulns
securityvulns
added 2006/05/17 12:0 a.m.27 views

[Full-disclosure] What's Up Professional Spoofing Authentication Bypass

What's Up Professional 2006 is vulnerable to a spoofing attack whereby the attacker can trick the application into thinking he/she is making a request from the console which is considered trusted. This attack will allow the attacker to bypass the authentication mechanism of the application and...

1AI score
Exploits0
Rows per page
Query Builder