Lucene search
K

25 matches found

NVD
NVD
added 2026/06/24 7:16 a.m.9 views

CVE-2026-8705

The ClearSale Total plugin for WordPress is vulnerable to SQL Injection via the pagsegurometodo POST parameter of the clearsaletotalpush AJAX action in all versions up to, and including, 3.4.2. The handler is registered for unauthenticated users wpajaxnoprivclearsaletotalpush, and although a...

7.5CVSS0.00505EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.12 views

PT-2026-51686

Name of the Vulnerable Software and Affected Versions ClearSale Total versions prior to 3.4.3 Description An issue exists in the clearsale total push AJAX action where the pagsegurometodo POST parameter is not properly sanitized. The handler is accessible to unauthenticated users via wp ajax nopr...

7.5CVSS6AI score0.00505EPSS
Exploits0References11
CBLMariner
CBLMariner
added 2026/06/05 12:59 p.m.8 views

CVE-2026-6276 affecting package curl for versions less than 8.11.1-7

CVE-2026-6276 affecting package curl for versions less than 8.11.1-7. A patched version of the package is available...

7.5CVSS5.4AI score0.00291EPSS
Exploits1
CBLMariner
CBLMariner
added 2026/05/14 11:27 p.m.7 views

CVE-2026-25243 affecting package valkey for versions less than 8.0.9-1

CVE-2026-25243 affecting package valkey for versions less than 8.0.9-1. A patched version of the package is available...

8.8CVSS5.4AI score0.02995EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/04/27 9:30 p.m.6 views

CVE-2026-34303 affecting package mysql for versions less than 8.0.46-1

CVE-2026-34303 affecting package mysql for versions less than 8.0.46-1. An upgraded version of the package is available that resolves this issue...

6.5CVSS7.7AI score0.00303EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/04/27 9:30 p.m.7 views

CVE-2026-34267 affecting package mysql for versions less than 8.0.46-1

CVE-2026-34267 affecting package mysql for versions less than 8.0.46-1. An upgraded version of the package is available that resolves this issue...

4.9CVSS7.7AI score0.00323EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/03/10 10:56 p.m.4 views

CVE-2025-58190 affecting package cf-cli for versions less than 8.7.11-5

CVE-2025-58190 affecting package cf-cli for versions less than 8.7.11-5. A patched version of the package is available...

5.3CVSS5.8AI score0.00482EPSS
Exploits1
CBLMariner
CBLMariner
added 2026/03/09 2:32 p.m.2 views

CVE-2025-30204 affecting package cf-cli for versions less than 8.4.0-27

CVE-2025-30204 affecting package cf-cli for versions less than 8.4.0-27. A patched version of the package is available...

7.5CVSS7.3AI score0.00693EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.5 views

CVE-2026-21937 affecting package mysql for versions less than 8.0.45-1

CVE-2026-21937 affecting package mysql for versions less than 8.0.45-1. An upgraded version of the package is available that resolves this issue...

4.9CVSS7.3AI score0.00337EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/05 10:21 p.m.7 views

CVE-2026-21941 affecting package mysql for versions less than 8.0.45-1

CVE-2026-21941 affecting package mysql for versions less than 8.0.45-1. An upgraded version of the package is available that resolves this issue...

4.9CVSS5.3AI score0.00337EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/11/19 7:47 a.m.183 views

Exploit for Improperly Implemented Security Check for Standard in Fortinet Fortiproxy

watchTowr-vs-Fortiweb-AuthBypass Detection Artifact Generator...

4.3CVSS7.1AI score0.00402EPSS
Exploits1
OSV
OSV
added 2025/10/31 10:15 p.m.5 views

AZL-69631 CVE-2025-12464 affecting package qemu for versions less than 8.2.0-25

A stack-based buffer overflow was found in the QEMU e1000 network device. The code for padding short frames was dropped from individual network devices and moved to the net core code. The issue stems from the device's receive code still being able to process a short frame in loopback mode. This...

6.2CVSS6.2AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/10/21 8:20 p.m.8 views

AZL-68646 CVE-2025-53062 affecting package mysql for versions less than 8.0.44-2

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.43, 8.4.0-8.4.6 and 9.0.0-9.4.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5.7AI score0.00533EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-48727

Malicious code in bioql PyPI...

9.4CVSS8.5AI score0.01352EPSS
Exploits0References7
OSV
OSV
added 2025/02/11 8:15 a.m.6 views

AZL-56702 CVE-2025-1180 affecting package crash for versions less than 8.0.4-5

A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function bfdelfwritesectionehframe of the file bfd/elf-eh-frame.c of the component ld. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. The complexity of an...

3.1CVSS4.3AI score0.00644EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/11/14 11:15 a.m.4 views

CVE-2023-44374

A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU 6GK6108-4AM00-2BA2 All versions V8.0, RUGGEDCOM RM1224 LTE4G NAM 6GK6108-4AM00-2DA2 All versions V8.0, SCALANCE M804PB 6GK5804-0AP00-2AA2 All versions V8.0, SCALANCE M812-1 ADSL-Router 6GK5812-1AA00-2AA2 All versions V8.0, SCALANCE...

8.8CVSS5.7AI score0.00666EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2023/11/14 11:15 a.m.3 views

CVE-2023-44322

A vulnerability has been identified in RUGGEDCOM RM1224 LTE4G EU 6GK6108-4AM00-2BA2 All versions V8.0, RUGGEDCOM RM1224 LTE4G NAM 6GK6108-4AM00-2DA2 All versions V8.0, SCALANCE M804PB 6GK5804-0AP00-2AA2 All versions V8.0, SCALANCE M812-1 ADSL-Router 6GK5812-1AA00-2AA2 All versions V8.0, SCALANCE...

5.9CVSS5.8AI score0.00879EPSS
Exploits0References7
OSV
OSV
added 2023/10/17 10:15 p.m.5 views

AZL-31574 CVE-2023-22114 affecting package mysql for versions less than 8.0.35-1

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS6.4AI score0.00983EPSS
Exploits0References1
OSV
OSV
added 2023/03/30 8:15 p.m.3 views

ALPINE-CVE-2023-27535

An authentication bypass vulnerability exists in libcurl 8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However, certain...

5.9CVSS6.9AI score0.01607EPSS
Exploits1References1
OSV
OSV
added 2023/03/30 8:15 p.m.9 views

AZL-34611 CVE-2023-27535 affecting package cmake for versions less than 3.28.2-1

An authentication bypass vulnerability exists in libcurl 8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However, certain...

5.9CVSS6.7AI score0.01607EPSS
Exploits1References1
Rows per page
Query Builder