Lucene search
K

7 matches found

CVE
CVE
added 2026/02/03 7:23 p.m.22 views

CVE-2025-62603

Fast DDS (DDS security) CVE-2025-62603 arises from the CDR parser deserializing the entire DataHolderSeq in ParticipantGenericMessage, allowing an out-of-memory condition and remote termination. Affected versions prior to the patch (3.4.1, 3.3.1, 2.6.11) are addressed by the vendor, and remediati...

7.5CVSS5.5AI score0.00501EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:30 a.m.8 views

CVE-2023-43797

BigBlueButton is an open-source virtual classroom. Prior to versions 2.6.11 and 2.7.0-beta.3, Guest Lobby was vulnerable to cross-site scripting when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML. Text sanitizing was added for lobby...

6.3CVSS6.2AI score0.00418EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/27 12:0 a.m.3 views

PT-2025-8932 · WordPress · Jeg Elementor Kit

Name of the Vulnerable Software and Affected Versions: Jeg Elementor Kit plugin for WordPress versions up to, and including, 2.6.11 Description: The issue allows authenticated attackers with Contributor-level access and above to extract sensitive private, pending, scheduled, and draft template da...

4.3CVSS9.4AI score0.00352EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/06/08 12:0 a.m.3 views

PT-2024-26630 · Unknown · Otter Blocks Pro

Name of the Vulnerable Software and Affected Versions: Otter Blocks PRO versions 2.6.11 and earlier Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This affects the confidentiality of the data. There is no information provided about the estimat...

5.3CVSS6.4AI score0.00345EPSS
Exploits0References7
NVD
NVD
added 2023/10/30 11:15 p.m.31 views

CVE-2023-43797

BigBlueButton is an open-source virtual classroom. Prior to versions 2.6.11 and 2.7.0-beta.3, Guest Lobby was vulnerable to cross-site scripting when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML. Text sanitizing was added for lobby...

6.3CVSS6.1AI score0.00418EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/10/30 10:18 p.m.34 views

CVE-2023-43797 BigBlueButton Stored Cross-site Scripting vulnerability at Guest Lobby

BigBlueButton is an open-source virtual classroom. Prior to versions 2.6.11 and 2.7.0-beta.3, Guest Lobby was vulnerable to cross-site scripting when users wait to enter the meeting due to inserting unsanitized messages to the element using unsafe innerHTML. Text sanitizing was added for lobby...

6.3CVSS6.3AI score0.00418EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/12/18 12:1 p.m.2 views

ansible: Information disclosure in vvv+ mode with no_log on

ansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with nolog on that can lead to leakage of sensible data...

5.3CVSS7.3AI score0.02462EPSS
Exploits0References5
Rows per page
Query Builder