Lucene search
K

2557 matches found

EUVD
EUVD
added 2026/01/22 4:52 p.m.4 views

EUVD-2026-3910

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in AncoraThemes DiveIt diveit allows PHP Local File Inclusion.This issue affects DiveIt: from n/a through = 1.4.3...

5.5AI score0.00512EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/22 4:52 p.m.3 views

EUVD-2026-3941

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in goalthemes Vango vango allows PHP Local File Inclusion.This issue affects Vango: from n/a through = 1.3.3...

5.5AI score0.00403EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/22 4:51 p.m.4 views

EUVD-2026-4032

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Dimitri Grassi Salon booking system salon-booking-system allows Retrieve Embedded Sensitive Data.This issue affects Salon booking system: from n/a through = 10.30.3...

5.4AI score0.00355EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/22 4:51 p.m.4 views

EUVD-2026-4065

Missing Authorization vulnerability in merkulove Uper for Elementor uper-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Uper for Elementor: from n/a through = 1.0.5...

5.4AI score0.0022EPSS
Exploits0References2
Wordfence Blog
Wordfence Blog
added 2026/01/22 2:50 p.m.25 views

Wordfence Intelligence Weekly WordPress Vulnerability Report (January 12, 2026 to January 18, 2026)

Did you know Wordfence runs aBug Bounty Program for all WordPress plugin and themes at no cost to vendors? Researchers can earn up to $31,200 per vulnerability , for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, and we...

10CVSS8.6AI score0.20631EPSS
Exploits16
Circl
Circl
added 2026/01/21 9:18 p.m.4 views

CVE-2026-21922

creationtimestamp| type| source ---|---|--- 2026-01-21 21:18:16+00:00| seen| https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875...

4.2CVSS5.8AI score0.00128EPSS
Exploits0References1
Circl
Circl
added 2026/01/21 9:18 p.m.5 views

CVE-2023-4091

creationtimestamp| type| source ---|---|--- 2026-01-21 21:18:16+00:00| seen| https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875...

6.5CVSS6.8AI score0.01174EPSS
Exploits0References1
Circl
Circl
added 2026/01/21 9:18 p.m.4 views

CVE-2026-21950

creationtimestamp| type| source ---|---|--- 2026-01-21 21:18:16+00:00| seen| https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875...

6.5CVSS5.8AI score0.00316EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/21 6:31 a.m.3 views

EUVD-2026-3693

Not used...

5.3AI score
Exploits0References1
EUVD
EUVD
added 2026/01/20 2:49 p.m.5 views

EUVD-2026-3384

A reflected cross-site scripting xss vulnerability exists in the modifyTranscript functionality of MedDream PACS Premium 7.3.6.870. A specially crafted malicious URL can lead to arbitrary javascript code execution. An attacker can provide a crafted URL to trigger this vulnerability...

6.1CVSS5.6AI score0.00317EPSS
Exploits1References3
EUVD
EUVD
added 2026/01/20 6:35 a.m.10 views

EUVD-2026-3462

PrismX MX100 AP controller developed by BROWAN COMMUNICATIONS has an Insufficiently Protected Credentials vulnerability, allowing privileged remote attackers to allowing authenticated remote attackers to obtain SMTP plaintext passwords through the web frontend...

6.9CVSS5.5AI score0.00363EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/20 6:30 a.m.3 views

EUVD-2026-3470

Not used...

5.3AI score
Exploits0References1
EUVD
EUVD
added 2026/01/20 12:30 a.m.4 views

EUVD-2026-3491

EUVD-2026-3491...

5.4CVSS5.3AI score0.00188EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/20 12:30 a.m.4 views

EUVD-2026-3495

EUVD-2026-3495...

7.5CVSS5.3AI score0.00352EPSS
Exploits0References5
CNVD
CNVD
added 2026/01/19 12:0 a.m.4 views

WordPress Sosh Share Buttons plugin cross-site request forgery vulnerability

WordPress Sosh Share Buttons plugin is a social media sharing plugin for WordPress websites. WordPress Sosh Share Buttons plugin suffers from a cross-site request forgery vulnerability that stems from a lack of random number validation in the adminpagecontent function, no details of the...

4.3CVSS5.8AI score0.0014EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/01/18 2:13 a.m.454 views

Exploit for Path Traversal in Openbsd Openssh

Bastion AI-Powered Penetration Testing Platform for macOS...

7.8CVSS7.5AI score0.58204EPSS
Exploits15
EUVD
EUVD
added 2026/01/18 1:32 a.m.9 views

EUVD-2026-3189

A security vulnerability has been detected in cijliu librtsp up to 2ec1a81ad65280568a0c7c16420d7c10fde13b04. The affected element is the function rtsprelydumps. The manipulation leads to buffer overflow. An attack has to be approached locally. This product is using a rolling release to provide...

5.3CVSS6.4AI score0.00219EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/16 1:2 p.m.6 views

EUVD-2026-2948

Incorrect Implementation of Authentication Algorithm vulnerability in ABB ABB Ability OPTIMAX.This issue affects ABB Ability OPTIMAX: 6.1, 6.2, from 6.3.0 before 6.3.1-251120, from 6.4.0 before 6.4.1-251120...

9.2CVSS6.5AI score0.0039EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/16 12:43 p.m.9 views

EUVD-2026-2947

Livewire Filemanager, commonly used in Laravel applications, contains LivewireFilemanagerComponent.php, which does not perform file type and MIME validation, allowing for RCE through upload of a malicious php file that can then be executed via the /storage/ URL if a commonly performed setup proce...

7.5CVSS6.6AI score0.00571EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/16 12:30 a.m.5 views

EUVD-2026-3016

EUVD-2026-3016...

8.5CVSS6.4AI score0.00213EPSS
Exploits1References4
Rows per page
Query Builder