Lucene search
K

5 matches found

GithubExploit
GithubExploit
added 2026/06/24 12:23 p.m.83 views

Exploit for CVE-2026-48908

CVE-2026-48908 — SP Page Builder Unauthenticated RCE SP Pag...

10CVSS6.2AI score0.01569EPSS
Exploits6
OSV
OSV
added 2026/03/12 9:47 p.m.4 views

CVE-2026-32612 Statamic: privilege escalation via stored cross-site scripting

Statamic is a Laravel and Git powered content management system CMS. Prior to 6.6.2, stored XSS in the control panel color mode preference allows authenticated users with control panel access to inject malicious JavaScript that executes when a higher-privileged user impersonates their account. Th...

5.4CVSS5.7AI score0.0023EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.13 views

PT-2026-25092

Statamic is a Laravel and Git powered content management system CMS. Prior to 6.6.2, stored XSS in the control panel color mode preference allows authenticated users with control panel access to inject malicious JavaScript that executes when a higher-privileged user impersonates their account. Th...

5.4CVSS5.7AI score0.0023EPSS
Exploits2References10
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.6 views

PT-2025-46220

PacsOne Server version 6.6.2 prior versions are likely affected contains a directory traversal vulnerability within the web-based DICOM viewer component. Successful exploitation allows a remote unauthenticated attacker to read arbitrary files via the 'nocache.php' endpoint with a crafted 'path'...

8.7CVSS6.9AI score0.00903EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/01/18 8:0 a.m.8 views

In Qt 6.5.4, 6.5.5, and 6.6.2, QNetworkReply header data might be accessed via a dangling pointer in Qt for WebAssembly (wasm). (Earlier and later versions are unaffected.)

...

6.5CVSS6.5AI score0.00452EPSS
Exploits0
Rows per page
Query Builder