Lucene search
K

7 matches found

attackerkb
attackerkb
added 2026/05/27 3:3 p.m.9 views

CVE-2026-44838

RabbitMQ is a messaging and streaming broker. From 4.2.0 to before 4.2.4, RabbitMQ's MQTT plugin allows for topic-level authorization using regular expressions with variable substitution. Administrators can create patterns such as ^clientid-sensors$ to restrict user access to topics that include...

5.3CVSS5.8AI score0.0025EPSS
Exploits0References2Affected Software1
vulnersosv
vulnersosv
added 2026/05/19 8:3 p.m.8 views

@bloggrify/bento (>=3.0.0 <=3.0.1), @bloggrify/core (>=3.0.0 <=3.1.2) +16 more potentially affected by CVE-2026-46342 via @nuxt/nitro-server (>=4.2.0 <=4.4.5)

@nuxt/nitro-server NPM version =4.2.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =4.2.2-depup.0, =10.0.2, =1.1.11, =1.0.8, =0.4.5, =3.0.0-dev.27, =4.2.0, =0.5.0, =0.4.0, =0.1.13, =0.2.2 and more Source cves: CVE-2026-46342 Source advisory: SNYK:JS-NUXTNITROSERVER-16770417...

5.4CVSS5.7AI score0.00091EPSS
Exploits0
susecve
susecve
added 2026/01/17 12:51 a.m.6 views

SUSE CVE-2017-18893

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. Display names allow XSS...

6.1CVSS7AI score0.00685EPSS
Exploits0References2
vulnersosv
vulnersosv
added 2025/10/16 3:30 p.m.7 views

ch.nexsol-tech.gateway:sample-gateway (>=0.0.1 <=1.1.0), ch.nexsol-tech.gateway:spring-cloud-gateway-database (>=0.0.1 <=1.1.0) +45 more potentially affected by CVE-2025-41253 via org.springframework.cloud:spring-cloud-gateway-server (>=4.2.0 <=4.2.5)

org.springframework.cloud:spring-cloud-gateway-server MAVEN version =4.2.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =15.13-RELEASE, =2.0.0, =1.0.0, =0.11.1, =0.11.1, =1.6.0, =3.4.5, =3.4.6 and more Source cves: CVE-2025-41253 Source advisory: OSV:GHSA-FWXX-WV44-7QFG...

7.5CVSS7.2AI score0.00446EPSS
Exploits0
osv
osv
added 2022/07/23 3:15 a.m.6 views

CVE-2022-36414

There is an elevation of privilege breakout vulnerability in the Windows EXE installer in Scooter Beyond Compare 4.2.0 through 4.4.2 before 4.4.3. Affected versions allow a logged-in user to run applications with elevated privileges via the Clipboard Compare tray app after installation...

6.7CVSS5.8AI score0.00195EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2022/05/13 1:2 a.m.8 views

am.ik.home:uaa-client (>=1.3.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.3.0 <=1.9.0) +1073 more potentially affected by CVE-2017-4995 via org.springframework.security:spring-security-core (>=4.2.0.RELEASE <=4.2.2.RELEASE)

org.springframework.security:spring-security-core MAVEN version =4.2.0.RELEASE, =1.3.0, =1.3.0, =1.3.0, =1.1.1, =0.2.0, =1.0.3, =3.0.3, =3.0.3, =3.0.3, =3.0.5, =A.1.1.1, =A.2.0.0, =A.1.1.1, =A.2.0.0, =A.2.0.0.RC1 and more Source cves: CVE-2017-4995 Source advisory: OSV:GHSA-VHRG-V3CV-P247...

8.1CVSS7.6AI score0.02547EPSS
Exploits1
redhat
redhat
added 2018/04/30 6:41 p.m.7 views

hoek: Prototype pollution in utilities function

hoek node module before 4.2.0 and 5.0.x before 5.0.3 suffers from a Modification of Assumed-Immutable Data MAID vulnerability via 'merge' and 'applyToDefaults' functions, which allows a malicious user to modify the prototype of "Object" via proto, causing the addition or modification of an existi...

8.8CVSS7.4AI score0.04307EPSS
Exploits1References4
Rows per page
Query Builder