Lucene search
K

8 matches found

Packet Storm
Packet Storm
added 2026/06/08 12:0 a.m.112 views

📄 ProjeQtor 12.4.3 SQL Injection

This Metasploit auxiliary module targets an unauthenticated SQL injection vulnerability in ProjeQtor login functionality and is structured as a scanner-style module with multiple operational modes. Version 12.4.3 is affected...

9.8CVSS5.6AI score0.00558EPSS
Exploits2
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

AuthKit React Router Library 资源管理错误漏洞

AuthKit React Router Library is an open-source project by WorkOS, used in React Router 7. Versions 7.0.0 to 7.14.x of the library, along with @remix-run/server-runtime 2.10.0 to 2.17.4, have a resource management vulnerability. This vulnerability stems from unbounded path expansion at the manifes...

7.5CVSS5.4AI score0.00299EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/05 9:48 p.m.9 views

@a-la-fois/api (>=0.0.25 <=0.0.39), @a-la-fois/doc-client (>=0.0.1 <=0.0.39) +116 more potentially affected by CVE-2026-42334 via mongoose (>=7.0.0 <=7.8.8)

mongoose NPM version =7.0.0, =0.0.25, =0.0.1, =0.0.25, =0.0.1, =0.0.25, =3.12.0, =1.0.0, =1.0.6, =0.2.0, =0.2.0, =0.0.0, =1.0.2, =1.0.0, =7.6.10, =7.8.6 and more Source cves: CVE-2026-42334 Source advisory: OSV:GHSA-WPG9-53FQ-2R8H...

7.5CVSS5.7AI score0.00274EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/10 12:0 a.m.5 views

Liferay Portal和Liferay DXP 安全漏洞

Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...

6.5CVSS6.4AI score0.00238EPSS
Exploits0References1
OSV
OSV
added 2024/03/26 2:15 p.m.7 views

CVE-2023-47150

IBM Common Cryptographic Architecture CCA 7.0.0 through 7.5.36 could allow a remote user to cause a denial of service due to incorrect data handling for certain types of AES operations. IBM X-Force ID: 270602...

7.5CVSS5.8AI score0.00648EPSS
Exploits0References2
OSV
OSV
added 2023/02/01 6:15 p.m.3 views

CVE-2023-22283

On versions beginning in 7.1.5 to before 7.2.3.1, a DLL hijacking vulnerability exists in the BIG-IP Edge Client for Windows. User interaction and administrative privileges are required to exploit this vulnerability because the victim user needs to run the executable on the system and the attacke...

6.5CVSS6.7AI score0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.1 views

Apple watchOS 路径遍历漏洞

Apple watchOS is an operating system for smartwatches from Apple. A path traversal vulnerability exists in watchOS, which stems from insufficient validation of directory paths. The following products and versions are affected: watchOS: 7.0 18R382, 7.0.1 18R395, 7.0.2 18R402, 7.0.3 18R410, 7.1...

5.5CVSS5.7AI score0.00367EPSS
Exploits0References11
OSV
OSV
added 2020/06/10 1:15 p.m.5 views

CVE-2020-6246

SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXTTABLE, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting XSS vulnerability...

6.1CVSS5.8AI score0.00654EPSS
Exploits0References2
Rows per page
Query Builder