Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/03/11 7:21 p.m.3 views

CVE-2026-31954 Emlog asynchronous media file deletion missing CSRF protection

Emlog is an open source website building system. In 2.6.6 and earlier, the deleteasync action asynchronous delete lacks a call to LoginAuth::checkToken, enabling CSRF attacks...

5.8AI score0.0015EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:29 a.m.8 views

CVE-2023-36679

Server-Side Request Forgery SSRF vulnerability in Brainstorm Force Spectra.This issue affects Spectra: from n/a through 2.6.6...

7.1CVSS8AI score0.00331EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/19 12:0 a.m.5 views

PT-2024-12575 · Brainstorm Force · Spectra

Name of the Vulnerable Software and Affected Versions: Brainstorm Force Spectra versions n/a through 2.6.6 Description: The issue is related to a Missing Authorization vulnerability. This means that there is a lack of proper authorization checks, potentially allowing unauthorized access to certai...

8.8CVSS6.9AI score0.00459EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/01/08 12:43 a.m.38 views

Kylin can receive user input and load any class through Class.forName(...).

Kylin can receive user input and load any class through Class.forName.... This issue affects Apache Kylin 2 version 2.6.6 and prior versions; Apache Kylin 3 version 3.1.2 and prior versions; Apache Kylin 4 version 4.0.0 and prior versions...

9.8CVSS3.9AI score0.02902EPSS
Exploits0References6Affected Software1
UbuntuCve
UbuntuCve
added 2019/01/08 11:29 p.m.23 views

CVE-2019-5718

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a gett61string length check...

5.5CVSS6.4AI score0.01402EPSS
Exploits1References4
Rows per page
Query Builder