Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.6 views

Mozilla Firefox ESR < 115.36

The version of Firefox ESR installed on the remote Windows host is prior to 115.36. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-47 advisory. - Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3, Firefox ESR...

9.8CVSS6AI score0.0056EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/03/26 3:3 p.m.13 views

CVE-2026-29097

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Versions prior to 7.15.1 and 8.9.3 contain a Server-Side Request Forgery SSRF vulnerability combined with a Denial of Service DoS condition in the RSS Feed Dashlet component. Versions 7.15.1 an...

7.5CVSS5.8AI score0.00296EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 4:15 p.m.2 views

CVE-2026-32567

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in icopydoc YML for Yandex Market yml-for-yandex-market allows Path Traversal.This issue affects YML for Yandex Market: from n/a through 5.3.0...

6.8CVSS5.8AI score0.00329EPSS
Exploits0References2
Friends Of PHP
Friends Of PHP
added 2026/02/08 10:45 p.m.19 views

Denial of Service via "MadeYouReset" vulnerability

Versions of amphp/http-server prior to 3.4.4 for the 3.x release branch and prior to 2.1.10 for the 2.x release branch are vulnerable to the HTTP/2 "MadeYouReset" DoS attack described by CVE-2025-8671 and https://kb.cert.org/vuls/id/767506. In versions 3.4.4 and 2.1.10, stream reset protection ha...

7.5CVSS5.4AI score0.0351EPSS
Exploits3Affected Software1
OSV
OSV
added 2024/08/17 9:15 a.m.14 views

AZL-47841 CVE-2023-52889 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is observed when receiving ICMP packets with secmark set while an ICMP raw socket is being created. SKCTXsk-label is updated in...

5.5CVSS6.3AI score0.00231EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/02 12:0 a.m.3 views

Currency Switcher addon for WooCommerce security bypass vulnerability

Currency Switcher addon for WooCommerce is a currency switcher addon for use in the WooCommerce e-commerce platform. A security bypass vulnerability exists in Currency Switcher addon for WooCommerce versions prior to 2.11.2, which can be exploited by an attacker to purchase items at a low price...

6.5CVSS6.7AI score0.01813EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2012/09/15 12:0 a.m.4 views

PT-2012-2152 · Unknown · Banana Dance

Name of the Vulnerable Software and Affected Versions: Banana Dance versions prior to B.1.5 Description: The issue allows remote attackers to execute arbitrary SQL commands via the category parameter in the "search.php" file. Recommendations: For versions prior to B.1.5, update to a version that...

7.5CVSS8AI score0.01311EPSS
Exploits1References4
Rows per page
Query Builder