Lucene search
+L

9938 matches found

Cvelist
Cvelist
added 2026/02/19 12:2 p.m.33 views

CVE-2019-25425 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via smtpconfig

Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input to the VIRUSADMIN parameter. Attackers can send POST requests to the smtpconfig endpoint with script payloads to execute arbitrary...

6.1CVSS0.00344EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/19 12:2 p.m.6 views

CVE-2019-25425 Comodo Dome Firewall 2.7.0 Reflected Cross-Site Scripting via smtpconfig

Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input to the VIRUSADMIN parameter. Attackers can send POST requests to the smtpconfig endpoint with script payloads to execute arbitrary...

6.1CVSS5.6AI score0.00344EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.7 views

PT-2026-20828

Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input to the VIRUS ADMIN parameter. Attackers can send POST requests to the smtpconfig endpoint with script payloads to execute arbitrary...

6.1CVSS5.6AI score0.00344EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.11 views

Comodo Dome Firewall 跨站脚本漏洞

Comodo Dome Firewall is a unified threat management and next-generation firewall provided by the Chinese company Comodo. Version 2.7.0 of Comodo Dome Firewall contains a cross-site scripting vulnerability. This vulnerability stems from improper cleaning of the VIRUSADMIN parameter input in the...

6.1CVSS5.6AI score0.00344EPSS
Exploits1References4
NVD
NVD
added 2026/02/13 4:15 a.m.9 views

CVE-2026-25108

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command...

8.8CVSS0.04974EPSS
Exploits0References3
CVE
CVE
added 2026/02/13 3:39 a.m.38 views

CVE-2026-25108

Soliton Systems K.K. FileZen contains an OS command injection vulnerability (CVE-2026-25108) exploitable when the Antivirus Check Option is enabled. An authenticated user can issue a crafted HTTP request to execute arbitrary OS commands. Affected versions include FileZen 4.2.1–4.2.8 and 5.0.0–5.0...

8.8CVSS8.2AI score0.04974EPSS
In wildExploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/13 3:39 a.m.167 views

CVE-2026-25108

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command...

8.8CVSS0.04974EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/13 12:0 a.m.11 views

PT-2026-7963

Double AsteriskName of the Vulnerable Software and Affected VersionsDouble Asterisk FileZen versions 4.2.1 through 4.2.8 FileZen versions 5.0.0 through 5.0.10 Double AsteriskDescriptionDouble Asterisk FileZen contains an OS command injection vulnerability. When the FileZen Antivirus Check Option ...

8.8CVSS7.5AI score0.04974EPSS
Exploits0References69
Packet Storm News
Packet Storm News
added 2026/02/11 12:0 a.m.4 views

SecureScan: An AI-Driven Multi-Layer Framework for Malware and Phishing Detection Using Logistic Regression and Threat Intelligence Integration

The growing sophistication of modern malware and phishing campaigns has diminished the effectiveness of traditional signature-based intrusion detection systems. This work presents SecureScan, an AI-driven, triple-layer detection framework that integrates logistic regression-based classification,...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/20 12:0 a.m.18 views

Enhanced Cyber Threat Intelligence by Network Forensic Analysis for Ransomware As a Service(RaaS) Malwares

In the current era of interconnected cyberspace, there is an adverse effect of ransomware on individuals, startups, and large companies. Cybercriminals hold digital assets till the demand for payment is made. The success of ransomware upsurged with the introduction of Ransomware as a ServiceRaaS...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 12:46 p.m.8 views

CVE-2005-1706

Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection...

7.5CVSS7.1AI score0.01435EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:45 p.m.12 views

CVE-2005-1711

Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected...

7.5CVSS7.2AI score0.01047EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:8 p.m.11 views

CVE-2018-6208

In Max Secure Anti Virus 19.0.3.019,, the driver file MaxProtector32.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x22000d...

7.8CVSS7.4AI score0.00399EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:7 p.m.9 views

CVE-2018-6206

In Max Secure Anti Virus 19.0.3.019,, the driver file MaxProtector32.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220011...

7.8CVSS7.4AI score0.00399EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:6 p.m.9 views

CVE-2018-6207

In Max Secure Anti Virus 19.0.3.019,, the driver file MaxProtector32.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220019...

7.8CVSS7.4AI score0.00399EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:5 p.m.8 views

CVE-2018-6209

In Max Secure Anti Virus 19.0.3.019,, the driver file MaxCryptMon.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220019...

7.8CVSS7.4AI score0.00399EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.9 views

CVE-2019-18644

The malware scan function in Total Defense Anti-virus 11.5.2.28 is vulnerable to a TOCTOU bug; consequently, symbolic link attacks allow privileged files to be deleted...

5.9CVSS6.8AI score0.00561EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.16 views

CVE-2020-10180

The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android, Smart TV Security,...

9.8CVSS6.9AI score0.01648EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.11 views

CVE-2020-10193

ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android...

7.5CVSS7AI score0.01355EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.8 views

CVE-2021-33598

A Denial-of-Service DoS vulnerability was discovered in all versions of F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service...

6.5CVSS6.9AI score0.00739EPSS
Exploits0References1
Rows per page
Query Builder