Lucene search
K

71 matches found

OSV
OSV
added 2026/05/11 6:17 a.m.6 views

MINI-C467-V69M-689H

Bulletin has no description...

7.5CVSS5.7AI score0.00231EPSS
Exploits0
OSV
OSV
added 2026/05/10 9:46 a.m.8 views

MINI-GFFJ-V69X-3MWH

Bulletin has no description...

6.1CVSS5.7AI score0.00314EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2026/05/08 11:4 a.m.11 views

Security update for the Linux Kernel (Live Patch 69 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise kernel 4.12.14-122.261 fixes various security issues The following security issues were fixed: CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. CVE-2026-23004: dst: fix races in rt6uncachedlistdel and...

7.8CVSS6.9AI score0.96267EPSS
Exploits229References16
OSV
OSV
added 2026/04/11 8:48 p.m.5 views

MINI-WGGC-FPWM-V62C

Bulletin has no description...

7.5CVSS5.7AI score0.00621EPSS
Exploits0
EUVD
EUVD
added 2026/04/06 7:1 p.m.7 views

EUVD-2026-19450

Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains remote code execution vulnerability in the timezone conversion flow, which processes attacker-controlled cookie values in an...

9.3CVSS6.5AI score0.00491EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.10 views

PT-2026-30669

Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains a reflected cross-site scripting vulnerability via the footerScripts parameter, which does not sanitize user-supplied input...

5.1CVSS5.8AI score0.00149EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/02/04 9:58 p.m.6 views

CVE-2026-25579

Navidrome is an open source web-based music collection server and streamer. Prior to version 0.60.0, authenticated users can crash the Navidrome server by supplying an excessively large size parameter to /rest/getCoverArt or to a shared-image URL /share/img/. When processing such requests, the...

9.2CVSS5.5AI score0.00455EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2026/01/20 12:27 a.m.9 views

SUSE CVE-2025-68616

WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery SSRF protection bypass exists in WeasyPrint's defaulturlfetcher. The vulnerability allows attackers to access internal network resources such as localhost services or cloud metadata...

7.5CVSS5.6AI score0.00501EPSS
Exploits2References3
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.6 views

WeasyPrint code-related vulnerabilities

WeasyPrint is an intelligent solution developed by Kozea. It helps web developers create PDF files. Versions of WeasyPrint prior to 68.0 contained code vulnerabilities. These vulnerabilities stemmed from a protection mechanism in the defaulturlfetcher that allowed server-side request forgery...

7.5CVSS5.9AI score0.00501EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2026/01/19 12:0 a.m.3 views

PT-2026-3446

Name of the Vulnerable Software and Affected Versions WeasyPrint versions prior to 68.0 Description WeasyPrint is a tool used by web developers to generate PDF documents. A server-side request forgery SSRF protection bypass exists in WeasyPrint’s default url fetcher for versions prior to 68.0. Th...

7.5CVSS5.3AI score0.00501EPSS
Exploits2References25
RedhatCVE
RedhatCVE
added 2026/01/09 10:35 a.m.6 views

CVE-2017-18457

cPanel before 62.0.17 allows arbitrary file-read operations via WHM /styled/ URLs SEC-218...

4.9CVSS7.1AI score0.00436EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.6 views

AB Document Reader: PDF, DOC, PPT 安全漏洞

AB Document Reader: PDF, DOC, PPT is a document reader from AB. A security vulnerability exists in AB Document Reader: PDF, DOC, PPT version 65.0, which stems from a lack of security checks during the file import process and can lead to directory traversal...

6.5CVSS6.7AI score0.00503EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-5108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type confusion in PDFium in Google Chrome prior to 60.0.3112.78 for Mac, Windows, Linux, and Android allowed a remote attacker to potentially maliciously modify...

8.8CVSS6.8AI score0.01476EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:5 a.m.6 views

CVE-2016-10773

cPanel before 60.0.25 allows format-string injection in exception-message handling SEC-171...

8.8CVSS7.3AI score0.01054EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/16 12:0 a.m.4 views

WordPress plugin WPGYM SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

9.3CVSS9.1AI score0.00384EPSS
Exploits0References3
OSV
OSV
added 2024/03/09 1:15 a.m.4 views

UBUNTU-CVE-2024-28184

WeasyPrint helps web developers to create PDF documents. Since version 61.0, there's a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if urlfetcher is configured to prevent access to files and URLs. This vulnerability has been patched in...

7.4CVSS5.9AI score0.00623EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.5 views

SUSE CVE-2018-6121

Insufficient validation of input in Blink in Google Chrome prior to 66.0.3359.170 allowed a remote attacker to perform privilege escalation via a crafted HTML page...

8.8CVSS8.8AI score0.00861EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.3 views

SUSE CVE-2018-12407

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially exploitable crash. This vulnerability affects Firefox 64...

7.5CVSS9.2AI score0.03261EPSS
Exploits0References5
OSV
OSV
added 2022/11/30 1:15 a.m.5 views

CVE-2022-40265

Improper Input Validation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-R Series RJ71EN71 Firmware version "65" and prior and Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120ENCPU Network Part Firmware version "65" and prior allows a remote unauthenticated attacker...

7.5CVSS5.8AI score0.00935EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/20 12:0 a.m.4 views

NETSAS Enigma NMS Cross-Site Scripting Vulnerability

NETSAS Enigma NMS is a suite of network management and monitoring tools from NETSAS Australia. A cross-site scripting vulnerability exists in NETSAS Enigma NMS version 65.0.0 and earlier. The vulnerability stems from a lack of proper validation of client-side data by the WEB application. An...

6.1CVSS6.4AI score0.00691EPSS
Exploits1References1
Rows per page
Query Builder