Lucene search
K

14 matches found

Patchstack
Patchstack
added 2025/12/15 1:30 p.m.7 views

WordPress Simple Link Directory plugin <= 8.8.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by daroo in WordPress Plugin Simple Link Directory versions = 8.8.3...

8.8CVSS7AI score0.00107EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/09 2:13 p.m.2 views

CVE-2025-67465 WordPress Simple Link Directory plugin <= 8.8.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in QuantumCloud Simple Link Directory simple-link-directory allows Cross Site Request Forgery.This issue affects Simple Link Directory: from n/a through = 8.8.3...

4.3CVSS6.5AI score0.00107EPSS
Exploits0References1
NVD
NVD
added 2025/10/21 8:20 p.m.9 views

CVE-2025-62479

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Block Storage. The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...

2.7CVSS0.0026EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/21 12:0 a.m.4 views

Oracle ZFS Storage Appliance Kit 安全漏洞

Oracle ZFS Storage Appliance Kit is a storage appliance from Oracle Corporation that supports flash memory, petabytes of file storage and has a built-in Oracle database. A security vulnerability exists in Oracle Systems' Oracle ZFS Storage Appliance Kit version 8.8, which originates from an attac...

4.9CVSS7.3AI score0.00304EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.8 views

PT-2025-39673

Name of the Vulnerable Software and Affected Versions Notepad++ versions 8.8.3 and earlier Description Notepad++ version 8.8.3 contains a DLL hijacking flaw. This allows an attacker to replace original DLL files, such as NppExport.dll, with malicious versions, leading to arbitrary code execution...

8.4CVSS7.2AI score0.00269EPSS
Exploits0References45
OSV
OSV
added 2024/07/16 11:15 p.m.5 views

CVE-2024-21155

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: User Interface. The supported version that is affected is 8.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle ZFS Storage Appliance Kit...

4.7CVSS7.2AI score0.00384EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/03/17 7:59 p.m.186 views

Exploit for Path Traversal in Zimbra Collaboration

CVE-2022-41352 PoC How does this detection method work?...

9.8CVSS6.9AI score0.95478EPSS
Exploits7
ATTACKERKB
ATTACKERKB
added 2023/06/22 9:15 p.m.3 views

CVE-2023-28094

Pega platform clients who are using versions 7.4 through 8.8.x and have upgraded from a version prior to 8.x may be utilizing default credentials...

9.8CVSS7.2AI score0.0053EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/07/21 3:15 a.m.3 views

CVE-2021-1098

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it doesn't release some resources during driver unload requests from guests. This flaw allows a malicious guest to perform operations by reusing those resources, which may lead to information disclosure,...

7.8CVSS5.8AI score0.00251EPSS
Exploits0References1
OSV
OSV
added 2021/04/22 10:15 p.m.3 views

CVE-2021-2147

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Installation. The supported version that is affected is 8.8. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit execut...

1.8CVSS7.3AI score0.00322EPSS
Exploits0References1
OSV
OSV
added 2019/12/26 7:15 p.m.3 views

CVE-2019-19398

M5 lite 10 with versions of 8.0.0.182C00 have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to modify the memory of the device by doing a series of operations. Successful exploit may lead to malicious cod...

9.8CVSS7.4AI score0.01431EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/29 12:0 a.m.3 views

Zimbra Collaboration Suite mailboxd Component Cross-Site Scripting Vulnerability

Zimbra Collaboration Suite ZCS is an open source collaboration suite from the American company Zimbra. The product includes WebMail, calendar, address book , etc. mailboxd is one of the e-mail component . A cross-site scripting vulnerability exists in the mailboxd component in Zimbra ZCS versions...

6.1CVSS6.3AI score0.0098EPSS
Exploits0References1
OSV
OSV
added 2018/03/27 4:29 p.m.2 views

CVE-2018-6882

Cross-site scripting XSS vulnerability in the ZmMailMsgView.getAttachmentLinkHtml function in Zimbra Collaboration Suite ZCS before 8.7 Patch 1 and 8.8.x before 8.8.7 might allow remote attackers to inject arbitrary web script or HTML via a Content-Location header in an email attachment...

6.1CVSS5.9AI score0.23717EPSS
Exploits2References7
CNVD
CNVD
added 2017/04/27 12:0 a.m.4 views

McAfee VirusScan Enterprise Denial of Service Vulnerability

McAfee VirusScan Enterprise is a suite of antivirus software from the American company McAfee. The software provides a full range of security protection, scans memory for malicious code and optimizes updates for remote systems. A security vulnerability exists in Scriptscan COM Object in McAfee...

4.3CVSS6.9AI score0.01161EPSS
Exploits0References1
Rows per page
Query Builder