Lucene search
K

7 matches found

vulnersOsv
vulnersOsv
added 2026/03/27 5:57 p.m.9 views

1dr-twig-templating (=1.0.2), 433bf (=0.0.1) +953 more potentially affected by CVE-2026-33993 via locutus (>=2.0.10 <=2.0.39)

locutus NPM version =2.0.10, =0.0.1, =0.0.1, =1.0.2, =1.0.5, =0.0.1, =0.1.0, =1.0.0, =0.2.0, =0.9.0-rc.0 - @alchmy/generator-alchmy =0.0.206147191 and more Source cves: CVE-2026-33993 Source advisory: OSV:GHSA-4MPH-V827-F877...

9.8CVSS5.7AI score0.00583EPSS
Exploits1
Cvelist
Cvelist
added 2026/03/25 3:23 p.m.21 views

CVE-2026-3214 CAPTCHA - Moderately critical - Access bypass - SA-CONTRIB-2026-015

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal CAPTCHA allows Functionality Bypass.This issue affects CAPTCHA: from 0.0.0 before 1.17.0, from 2.0.0 before 2.0.10...

0.00268EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/18 12:0 a.m.3 views

PT-2024-32616 · Ae1021Pe +1 · Ae1021Pe +1

Name of the Vulnerable Software and Affected Versions: AE1021 versions 2.0.10 and earlier AE1021PE versions 2.0.10 and earlier Description: A weak authentication issue exists, allowing the authentication to be bypassed with an undocumented specific string if the vulnerability is exploited...

7.5CVSS7.4AI score0.00388EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.4 views

PT-2024-39161 · WordPress · Wp Simple Booking Calendar

Name of the Vulnerable Software and Affected Versions: WP Simple Booking Calendar plugin for WordPress versions up to, and including, 2.0.10 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg and remove query arg without appropriate escaping on the...

6.1CVSS6.5AI score0.00415EPSS
Exploits0References10
Github Security Blog
Github Security Blog
added 2022/03/13 12:0 a.m.30 views

Cross-site Scripting in Alist

Alist versions 2.0.10 through 2.1.0 were discovered to contain a cross-site scripting XSS vulnerability via /i/:data/ipa.plist. This issue was fixed in version 2.1.1...

6.1CVSS3.8AI score0.00705EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVE
added 2017/01/25 9:0 p.m.31 views

CVE-2017-5596

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow...

7.5CVSS7.6AI score0.029EPSS
Exploits0
seebug.org
seebug.org
added 2004/11/22 12:0 a.m.26 views

phpBB &lt;= 2.0.10 Remote Command Execution Exploit

No description provided by source. !/usr/bin/perl use IO::Socket; @@@@@@@ @@@ @@@ @@@@@@ @@@ @@@ @@! @@@ @@! @@@ !@@ @@! @@@ @!@!!@! @!@ !@! !@@!! @!@!@!@! !!: :!! !!: !!! !:! !!: !!! : : : :.:: : ::.: : : : : phpBB = 2.0.10 remote commands exec exploit based on...

7.1AI score
Exploits0
Rows per page
Query Builder