Lucene search
K

7 matches found

Hacker One
Hacker One
added 2026/05/18 8:49 a.m.26 views

Revive Adserver: PHP code injection via unexpected delivery limitation parameter

A vulnerability was reported in Revive Adserver 6.0.6 and earlier versions where user input was not properly validated when saving delivery limitations. This allowed a low-privileged user to inject malicious PHP code into the compiledlimitations field, which could then be executed during banner...

8.8CVSS5.9AI score0.0045EPSS
Exploits1
OSV
OSV
added 2026/05/05 7:13 a.m.7 views

SUSE-SU-2026:21547-1 Security update for strongswan

This update for strongswan fixes the following issues: Update to version 6.0.6 jscPED-16145. Security issued fixed: - CVE-2026-35328: infinite loop when handling supported versions TLS extension bsc1261712. - CVE-2026-35329: NULL pointer dereference when processing padding in PKCS7 bsc1261717. -...

5.9AI score
Exploits6References15
OSV
OSV
added 2026/01/22 10:16 p.m.5 views

UBUNTU-CVE-2026-23953

Incus is a system container and virtual machine manager. In versions 6.20.0 and below, a user with the ability to launch a container with a custom YAML configuration e.g a member of the ‘incus’ group can create an environment variable containing newlines, which can be used to add additional...

8.7CVSS7.5AI score0.00471EPSS
Exploits1References6
CVE
CVE
added 2025/10/29 11:14 p.m.17 views

CVE-2025-12466

The issue CVE-2025-12466 affects Drupal Simple OAuth (OAuth2) & OpenID Connect module, specifically versions 6.0.0 through 6.0.6 (before 6.0.7). Root cause is an authentication bypass via an alternate path or channel, enabling bypass of login/authentication. Impact is authenticated bypass risk as...

7.5CVSS6.6AI score0.00343EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.4 views

PT-2022-34957 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 6.0.6 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically with the ahci module. The actual impact and attack plausibility have not yet been proven...

7.3AI score
Exploits0References1
OSV
OSV
added 2020/11/19 4:15 p.m.4 views

CVE-2020-4718

IBM Jazz Reporting Service 6.0.6, 6.0.6.1, 7.0, and 7.0.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

5.4CVSS6.1AI score0.00554EPSS
Exploits0References2
CNVD
CNVD
added 2019/04/18 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Virtualization VM VirtualBox Component (CNVD-2019-36158)

Oracle Virtualization is a set of virtualization solutions from Oracle Corporation. The product is used to unify the management of the entire hardware and software system from applications to disks, enabling virtualization from the desktop to the data center.VM VirtualBox is one of the virtual...

8.8CVSS6.6AI score0.00534EPSS
Exploits0References1
Rows per page
Query Builder