Lucene search
+L

362 matches found

Positive Technologies
Positive Technologies
added 2023/11/22 12:0 a.m.4 views

PT-2023-22033 · Unknown · Veon Computer Service Tracking

Name of the Vulnerable Software and Affected Versions: Veon Computer Service Tracking Software versions prior to 2.0 Veon Computer Service Tracking Software versions through 20231122 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special...

9.8CVSS9.7AI score0.00714EPSS
Exploits0References4
OSV
OSV
added 2023/11/09 6:15 p.m.5 views

CVE-2023-31087

Cross-Site Request Forgery CSRF vulnerability in JoomSky JS Job Manager plugin = 2.0.0 versions...

8.8CVSS7.3AI score0.00315EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/08 6:29 p.m.5 views

CVE-2023-47223 WordPress Basic Interactive World Map Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in WP Map Plugins Basic Interactive World Map plugin = 2.0 versions...

5.9CVSS6.5AI score0.00397EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/20 12:0 a.m.8 views

QNAP Systems QUSBCam2 Operating System Command Injection Vulnerability

QNAP Systems QUSBCam2 is an application from QNAP Systems, Inc. allows the use of a USB webcam as a remotely manageable IP ONVIF camera for cheaper and easier deployment of surveillance systems in the home or small office. The QNAP Systems QUSBCam2 version 2.0.x vulnerability stems from the...

8.8CVSS7.5AI score0.01141EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.4 views

JTEKT ELECTRONICS OnSinView2 Buffer Error Vulnerability

JTEKT ELECTRONICS OnSinView2 is an application from JTEKT ELECTRONICS, Inc. A security vulnerability exists in JTEKT ELECTRONICS OnSinView2 version 2.0.1 and prior versions, which stems from an improperly restricted operation within a memory buffer. The vulnerability can be exploited by an attack...

7.8CVSS6.9AI score0.002EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/07/25 12:0 a.m.8 views

PT-2023-25220 · Iq Wifi 6 · Iq Wifi 6

Name of the Vulnerable Software and Affected Versions: IQ Wifi 6 versions prior to 2.0.2 Description: An unauthorized user could gain account access by conducting a brute force authentication attack. Recommendations: For IQ Wifi 6 versions prior to 2.0.2, update to version 2.0.2 or later to resol...

9.8CVSS9.5AI score0.00447EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/07/21 12:0 a.m.7 views

PT-2023-26247 · Unknown · Chengdu Flash Flood Disaster Monitoring/Warning System

Name of the Vulnerable Software and Affected Versions: Chengdu Flash Flood Disaster Monitoring and Warning System version 2.0 Description: A vulnerability was found in the Chengdu Flash Flood Disaster Monitoring and Warning System. It affects some unknown functionality of the file...

9.8CVSS5.7AI score0.00832EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2023/07/16 12:0 a.m.5 views

PT-2023-25719 · Livelyworks · Livelyworks Articart

Name of the Vulnerable Software and Affected Versions: LivelyWorks Articart version 2.0.1 Description: A vulnerability has been found in LivelyWorks Articart, affecting an unknown functionality of the file "/items/search". The manipulation of the search term argument leads to cross-site scripting...

5.4CVSS4.2AI score0.00357EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/06/27 12:0 a.m.6 views

WordPress plugin WP Brutal AI SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exists i...

9.8CVSS8.6AI score0.0176EPSS
Exploits2References3
CNNVD
CNNVD
added 2023/06/23 12:0 a.m.5 views

WordPress plugin Wp Ultimate Review 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS6.4AI score0.00369EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/23 12:0 a.m.3 views

POS Codekop 跨站脚本漏洞

POS Codekop is an application. A security vulnerability exists in POS Codekop version 2.0, which stems from the presence of a cross-site request forgery CSRF vulnerability. An attacker can exploit the vulnerability to elevate privileges...

8.8CVSS7.8AI score0.01049EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/06/20 12:0 a.m.5 views

PT-2023-11553 · Yzcms · Yzcms

Name of the Vulnerable Software and Affected Versions: yzCMS version 2.0 Description: A Cross Site Request Forgery issue allows a remote attacker to execute arbitrary code via the token check function. Recommendations: For yzCMS version 2.0, update to a version that fixes the token check function...

6.5CVSS8.4AI score0.00465EPSS
Exploits1References4
vulnersOsv
vulnersOsv
added 2023/06/14 9:30 a.m.6 views

be.objectify:objectify-struts2-tags (=1.0), br.net.woodstock.rockframework:rockframework-struts2 (>=2.0.0 <=2.0.8) +300 more potentially affected by CVE-2023-34149 via org.apache.struts:struts2-core (>=2.0.5 <=2.5.30)

org.apache.struts:struts2-core MAVEN version =2.0.5, =2.0.0, =1.2.1, =1.5.3, =1.5.3, =1.2.2, =1.2.2, =1.2.2, =1.2.2, =1.2, =1.0, =1.0, =1.0, =1.0.4 and more Source cves: CVE-2023-34149 Source advisory: OSV:GHSA-8F6X-V685-G2XC...

6.5CVSS6.5AI score0.05403EPSS
Exploits0
CNNVD
CNNVD
added 2023/06/09 12:0 a.m.6 views

Urbandroid Sleep 安全漏洞

Urbandroid Sleep is an app from Urbandroid Inc. which is used to track the sleep of customers. A security vulnerability exists in Urbandroid Sleep version v.20230303 that originates from an unauthorized application causing a persistent denial of service by manipulating the SharedPreference file...

5.5CVSS5.7AI score0.00329EPSS
Exploits1References2
OSV
OSV
added 2023/06/07 2:15 a.m.8 views

CVE-2019-25149

The Gallery Images Ape plugin for WordPress is vulnerable to Arbitrary Plugin Deactivation in versions up to, and including, 2.0.6. This allows authenticated attackers with any capability level to deactivate any plugin on the site, including plugins necessary to site functionality or security...

4.3CVSS5.6AI score0.00607EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/05/16 12:0 a.m.4 views

Jenkins Plugin SAML Single Sign On(SSO) 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.2AI score0.00425EPSS
Exploits0References4
OSV
OSV
added 2023/05/09 1:15 p.m.4 views

CVE-2023-29106

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The export endpoint is accessible via REST API without authentication. This could allow an unauthenticated remote attacker to download the files available via the endpoint...

7.5CVSS7AI score0.00718EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/24 12:0 a.m.5 views

PT-2023-9951 · WordPress · Kau-Boy Backend Localization Plugin

Name of the Vulnerable Software and Affected Versions: Kau-Boy Backend Localization Plugin version 2.0 Description: A problematic vulnerability has been found in the Kau-Boy Backend Localization Plugin on WordPress, affecting the function backend localization admin settings/backend localization...

6.1CVSS4.3AI score0.00559EPSS
Exploits0References7
OSV
OSV
added 2023/04/07 12:15 p.m.7 views

CVE-2023-25041

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Cththemes Monolit theme = 2.0.6 versions...

6.1CVSS6.8AI score0.00408EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/03/31 12:0 a.m.22 views

Generex UPS CS141 代码问题漏洞

The Generex UPS CS141 is a microcomputer from the German company Generex. A security vulnerability exists in the Generex UPS CS141 prior to version 2.06, which stems from a vulnerability that allows an attacker to upload a firmware file containing a webshell...

10CVSS8.4AI score0.0157EPSS
Exploits0References4
Rows per page
Query Builder