Lucene search
+L

4 matches found

euvd
euvd
added 6 days ago8 views

EUVD-2026-42780

A vulnerability was found in MyEMS up to 6.4.0. The affected element is the function onpost of the file myems-api/core/svg.py of the component Admin Backend. The manipulation of the argument newvalues'data' results in cross site scripting. The attack can be launched remotely. The exploit has been...

4.8CVSS4.3AI score0.0022EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.21 views

PT-2026-44078

Name of the Vulnerable Software and Affected Versions MapServer versions 6.4.0 through 8.6.2 Description A NULL pointer dereference occurs when the msSLDParseUserStyle function calls SLDApplyRuleValuespsRule, psLayer, 1 for any containing an . The system assumes msSLDParseRule added one class;...

7.5CVSS5.8AI score0.0032EPSS
Exploits1References3
cvelist
cvelist
added 2026/02/27 10:20 p.m.26 views

CVE-2026-28425 Statamic vulnerable to remote code execution via Antlers-enabled control panel inputs

Statmatic is a Laravel and Git powered content management system CMS. Prior to versions 5.73.16 and 6.7.2, an authenticated control panel user with access to Antlers-enabled inputs may be able to achieve remote code execution in the application context. That can lead to full compromise of the...

8CVSS0.00428EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2025/04/05 12:0 a.m.6 views

PT-2025-15071 · Zammad · Zammad

Name of the Vulnerable Software and Affected Versions: Zammad versions 6.4.0 through 6.4.1 Description: The issue allows for Server-Side Request Forgery SSRF to occur. Authenticated admin users can enable webhooks, which are triggered as POST requests when certain conditions are met. If a webhook...

4.1CVSS6.2AI score0.00256EPSS
Exploits0References6
Rows per page
Query Builder