Lucene search
K

8 matches found

EUVD
EUVD
added 2026/04/16 3:31 p.m.5 views

EUVD-2026-22910

Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...

4.3CVSS5.8AI score0.00141EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/30 9:37 p.m.6 views

CVE-2020-36867 Nagios XI < 5.7.3 Command Injection in Report PDF Download

Nagios XI versions prior to 5.7.3 contain a command injection vulnerability in the report PDF download/export functionality. User-supplied values used in the PDF generation pipeline or the wrapper that invokes offline/pdf helper utilities were insufficiently validated or improperly escaped,...

8.7CVSS0.02648EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.6 views

PT-2025-44470

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 5.7.3 Description Nagios XI versions prior to 5.7.3 contain a command injection issue in the report PDF download/export functionality. Insufficient validation or improper escaping of user-supplied values used in the...

8.8CVSS7.2AI score0.02648EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/03 11:17 a.m.11 views

CVE-2025-7721 JoomSport <= 5.7.3 - Unauthenticated Directory Traversal to Local File Inclusion

The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.7.3 via the task parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary .php files on the...

9.8CVSS0.00621EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/12/11 7:33 p.m.6 views

WordPress Revi.io plugin <= 5.7.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Revi.io versions = 5.7.3...

7.1CVSS6.1AI score0.0041EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.3 views

ZOOM Client 代码问题漏洞

Zoom Client is a multi-platform video conferencing client application from Zoom, Inc. A server-side request forgery vulnerability exists in Zoom Client for Meetings prior to version 5.7.3, which stems from the product's failure to properly validate user input and could be exploited by attackers t...

6.1CVSS5.6AI score0.00932EPSS
Exploits0References1
CNVD
CNVD
added 2020/10/22 12:0 a.m.3 views

Nagios XI Cross-Site Request Forgery Vulnerability

Nagios XI is a suite of IT infrastructure monitoring solutions from the US-based Nagios. The solution supports monitoring and alerting of applications, services, operating systems and more. Nagios XI version 5.7.3 suffers from a cross-site request forgery vulnerability that can be exploited by...

6.5CVSS6.7AI score0.02227EPSS
Exploits1References1
OSV
OSV
added 2020/09/09 9:15 p.m.4 views

CVE-2020-15903

An issue was found in Nagios XI before 5.7.3. There is a privilege escalation vulnerability in backend scripts that ran as root where some included files were editable by nagios user. This issue was fixed in version 5.7.3...

9.8CVSS7.3AI score0.04751EPSS
Exploits0References1
Rows per page
Query Builder