Lucene search
K

1754 matches found

Vulnrichment
Vulnrichment
added 2026/03/11 8:51 p.m.3 views

CVE-2026-32125 OpenEMR: Stored XSS in Track Anything Graphs via Unescaped Dygraph Titles/Labels

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 8.0.0.1, track/item names from the Track Anything feature are stored from user input POST and later rendered in Dygraph charts titles/labels using innerHTML or equivalent without...

5.4CVSS5.8AI score0.00162EPSS
Exploits1References1
OSV
OSV
added 2026/03/11 8:47 p.m.4 views

CVE-2026-32121 OpenEMR: Stored DOM XSS via `.html()` in Portal Signer Modal

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 8.0.0.1, Stored XSS in prescription CSS/HTML print view via patient demographics. That finding involves server-side rendering of patient names via raw PHP echo. This finding involves...

7.7CVSS5.8AI score0.00191EPSS
Exploits1References3
NVD
NVD
added 2026/03/11 8:16 p.m.5 views

CVE-2026-32234

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.10 and 8.6.36, an attacker with access to the master key can inject malicious SQL via crafted field names used in query constraints when Parse Server is configured with...

5.1CVSS0.00201EPSS
Exploits0References3
NVD
NVD
added 2026/03/10 9:16 p.m.3 views

CVE-2026-30967

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.5.2-alpha.9. and 8.6.22, the OAuth2 authentication adapter, when configured without the useridField option, only verifies that a token is active via the provider's token introspectio...

8.8CVSS0.00333EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.7 views

PT-2026-24424

Name of the Vulnerable Software and Affected Versions Parse Server versions prior to 9.5.2-alpha.2 Parse Server versions prior to 8.6.15 Description Parse Server, an open-source backend deployable on Node.js infrastructures, is susceptible to resource exhaustion. An unauthenticated attacker can...

8.7CVSS5.7AI score0.00562EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/03/06 8:26 p.m.14 views

CVE-2026-30229

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.6 and 9.5.0-alpha.4, the readOnlyMasterKey can call POST /loginAs to obtain a valid session token for any user. This allows a read-only credential to impersonate arbitrary...

8.5CVSS5.8AI score0.00388EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/06 7:33 p.m.3 views

CVE-2026-30844

Wekan is an open source kanban tool built with Meteor. Versions 8.32 and 8.33 are vulnerable to Server-Side Request Forgery SSRF via attachment URL loading. During board import in Wekan, attachment URLs from user-supplied JSON data are fetched directly by the server without any URL validation or...

9.3CVSS5.8AI score0.00235EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/06 7:33 p.m.1 views

CVE-2026-30844 Wekan Vulnerable to SSRF through Lack of Validation or Filtering in Attachment URL Loading

Wekan is an open source kanban tool built with Meteor. Versions 8.32 and 8.33 are vulnerable to Server-Side Request Forgery SSRF via attachment URL loading. During board import in Wekan, attachment URLs from user-supplied JSON data are fetched directly by the server without any URL validation or...

9.3CVSS5.8AI score0.00235EPSS
Exploits0References3
CVE
CVE
added 2026/03/06 7:30 p.m.10 views

CVE-2026-30843

Wekan versions 8.32 and 8.33 contain a critical Insecure Direct Object Reference (IDOR) in custom fields update endpoints, allowing cross-board modification of custom fields. The PUT /api/boards/:boardId/custom-fields/:customFieldId endpoint validates board access but uses the field’s _id as a fi...

9.3CVSS5.8AI score0.00218EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/03/06 6:31 p.m.4 views

EUVD-2025-208340

Snipe-IT versions prior to 8.3.7 contain sensitive user attributes related to account privileges that are insufficiently protected against mass assignment. An authenticated, low-privileged user can craft a malicious API request to modify restricted fields of another user account, including the...

8.8CVSS5.8AI score0.0046EPSS
Exploits1References4
OSV
OSV
added 2026/03/06 5:16 p.m.6 views

CVE-2025-15602

Snipe-IT versions prior to 8.3.7 contain sensitive user attributes related to account privileges that are insufficiently protected against mass assignment. An authenticated, low-privileged user can craft a malicious API request to modify restricted fields of another user account, including the...

8.8CVSS5.8AI score
Exploits0References3
NVD
NVD
added 2026/03/05 9:16 p.m.4 views

CVE-2025-70995

An issue in Aranda Service Desk Web Edition ASDK API 8.6 allows authenticated attackers to achieve remote code execution due to improper validation of uploaded files. An authenticated user can upload a crafted web.config file by sending a crafted POST request to /ASDKAPI/api/v8.6/item/addfile,...

8.8CVSS0.00612EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/05 1:57 a.m.7 views

CVE-2026-25146

OpenEMR is a free and open source electronic health records and medical practice management application. From 5.0.2 to before 8.0.0, there are at least two paths where the gatewayapikey secret value is rendered to the client in plaintext. These secret keys being leaked could result in arbitrary...

9.6CVSS6AI score0.00444EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/03 10:8 p.m.6 views

EUVD-2026-9329

OpenEMR is a free and open source electronic health records and medical practice management application. From 5.0.2 to before 8.0.0, there are at least two paths where the gatewayapikey secret value is rendered to the client in plaintext. These secret keys being leaked could result in arbitrary...

9.6CVSS6AI score0.00444EPSS
Exploits1References4
EUVD
EUVD
added 2026/03/03 2:4 p.m.5 views

EUVD-2026-9287

iBoysoft NTFS for Mac contains a local privilege escalation vulnerability in its privileged helper daemon ntfshelperd. The daemon exposes an NSConnection service that runs as root without implementing any authentication or authorization checks. This issue affects iBoysoft NTFS: 8.0.0...

8.5CVSS5.9AI score0.00167EPSS
Exploits1References2
CVE
CVE
added 2026/03/02 12:49 p.m.10 views

CVE-2025-12462

DobryCMS has a Blind SQL Injection vulnerability (CVE-2025-12462) exploitable by a remote unauthenticated attacker via the URL path. Root cause is input handling in the URL path leading to blind SQLi. Affected: DobryCMS; fixed in versions above 8.0. Practically, upgrading to the latest release (a...

9.3CVSS5.8AI score0.00448EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/01 12:0 a.m.7 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: php (UTSA-2026-005379)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005379 advisory. In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, a hostile MySQL server can cause the client to disclose the content of its heap containin...

5.8CVSS6AI score0.02286EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/28 7:45 p.m.9 views

CVE-2026-24488

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, an arbitrary file exfiltration vulnerability in the fax sending endpoint allows any authenticated user to read and transmit any file on the server...

6.5CVSS6AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2026/02/27 4:44 p.m.3 views

CVE-2026-25147 OpenEMR's Portal Payment Endpoint Trusts User-Controlled pid

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, in portal/portalpayment.php, the patient id used for the page is taken from the request $pid = $REQUEST'pid' ?? $pid and $pid = $REQUEST'hiddenpatientcode' ?? null 0 ?...

7.1CVSS5.9AI score0.0022EPSS
Exploits1References4
OSV
OSV
added 2026/02/27 11:53 a.m.4 views

SUSE-SU-2026:0685-1 Security update for valkey

This update for valkey fixes the following issues: Update to version 8.0.7. Security issues fixed: - CVE-2025-67733: data tampering and denial of service via improper null character handling in Lua scripts bsc1258746. - CVE-2026-21863: denial of service via invalid clusterbus packet bsc1258788...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References5
Rows per page
Query Builder