Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/28 3:44 a.m.13 views

CVE-2026-9794

A flaw was found in Keycloak. A remote, unauthenticated attacker can exploit this vulnerability by sending specially crafted SOAP requests to the SAML ECP Security Assertion Markup Language Enhanced Client or Proxy endpoint with varying client IDs. By observing distinct faultstrings in the...

5.3CVSS5.7AI score0.00331EPSS
Exploits0References7
NVD
NVD
added 2026/04/24 1:16 a.m.7 views

CVE-2026-40099

Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined for each role in the user blueprint site/blueprints/users/.... It is also possible to customize th...

6.5CVSS0.00275EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.1 views

SUSE CVE-2013-3567

Puppet 2.7.x before 2.7.22 and 3.2.x before 3.2.2, and Puppet Enterprise before 2.8.2, deserializes untrusted YAML, which allows remote attackers to instantiate arbitrary Ruby classes and execute arbitrary code via a crafted REST API call...

7.5CVSS7.9AI score0.03408EPSS
Exploits0References7
CNVD
CNVD
added 2021/02/18 12:0 a.m.8 views

Accellion FTA OS Command Injection Vulnerability (CNVD-2021-11053)

Accellion File Transfer Appliance FTA is a secure file transfer service that allows users to share and synchronize files online, all encrypted with AES 128/256. An OS command injection vulnerability exists in Accellion FTA 912411 and earlier versions. The vulnerability can be exploited to execute...

7.8CVSS7.5AI score0.03624EPSS
Exploits0References1
Rows per page
Query Builder