Lucene search
K

1241 matches found

Snyk
Snyk
added 2026/03/16 6:46 p.m.4 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization through the WebSocket session handling in kernel/util/websocket.go. An attacker can connect to the /ws endpoint and receive real-time document metadata and activity events by using the special id=auth WebSocket...

7.5CVSS5.8AI score0.00361EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/06 12:19 p.m.34 views

CVE-2018-25188 Webiness Inventory 2.3 SQL Injection via WsModelGrid.php

Webiness Inventory 2.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the order parameter. Attackers can send POST requests to the WsModelGrid.php endpoint with crafted SQL payloads to extract...

8.8CVSS0.00237EPSS
Exploits0References2
IBM AIX
IBM AIX
added 2026/02/05 3:13 p.m.11 views

AIX is vulnerable to denial of service and possible code execution due to Perl (WS-2025-0004)

IBM SECURITY ADVISORY First Issued: Thu Feb 5 15:13:54 CST 2026 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/perladvisory12.asc Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl...

7.5CVSS7.6AI score0.01569EPSS
Exploits0
Spring Security Advisories
Spring Security Advisories
added 2026/01/13 12:0 a.m.6 views

This Week in Spring - January 13th, 2026

Hi, Spring fans, and welcome to another installment of This Week in Spring! It's the 13th of January, 2026, and it's been quite the week indeed! Let's dive right into it! Nobody, and I mean nobody , asked. So I put together a video on how to use Spring WS to build SOAP-based services in 2026. Hey...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 9:26 a.m.6 views

CVE-2023-4963

The WS Facebook Like Box Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'ws-facebook-likebox' shortcode in versions up to, and including, 5.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS6.8AI score0.00355EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.6 views

Atlassian Confluence < 8.5.10 / 9.2.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101477)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-101477 advisory. - ws is an open source WebSocket client and server for Node.js. A request with a number of headers exceeding theserver.maxHeadersCount threshold...

7.5CVSS6.7AI score0.01357EPSS
Exploits0References2
NVD
NVD
added 2025/12/16 2:15 p.m.8 views

CVE-2025-68190

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/atom: Check kcalloc for WS buffer in amdgpuatomexecutetablelocked kcalloc may fail. When WS is non-zero and allocation fails, ectx.ws remains NULL while ectx.wssize is set, leading to a potential NULL pointer dereferen...

0.00166EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/16 2:15 p.m.6 views

CVE-2025-68190

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/atom: Check kcalloc for WS buffer in amdgpuatomexecutetablelocked kcalloc may fail. When WS is non-zero and allocation fails, ectx.ws remains NULL while ectx.wssize is set, leading to a potential NULL pointer dereferen...

5.8AI score0.00166EPSS
Exploits0References20
Cvelist
Cvelist
added 2025/12/16 1:43 p.m.29 views

CVE-2025-68190 drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/atom: Check kcalloc for WS buffer in amdgpuatomexecutetablelocked kcalloc may fail. When WS is non-zero and allocation fails, ectx.ws remains NULL while ectx.wssize is set, leading to a potential NULL pointer dereferen...

0.00166EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2025/12/15 12:30 p.m.7 views

ai.ylyue:yue-library-data-es (>=j8.2.2.0 <=j11.2.6.2), br.com.simpli:simpli-ws (>=1.2.1 <=2.2.0) +1034 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch (>=7.0.0-alpha1 <=8.19.7)

org.elasticsearch:elasticsearch MAVEN version =7.0.0-alpha1, =j8.2.2.0, =1.2.1, =0.0.1-alpha, =5.3.0, =5.6.5, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =6.2.0, =6.8.0, =6.4.0, =5.3.0, =5.3.0, =5.3.0, =5.4.0 and more Source cves: CVE-2025-37731 Source advisory: OSV:GHSA-M9GH-789G-Q5PV...

7.4CVSS5.4AI score0.0016EPSS
Exploits0
OSV
OSV
added 2025/11/24 1:53 p.m.3 views

MAL-2025-190719 Malicious code in @asyncapi/nodejs-ws-template (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 06529fc17471f54f2c0fc317bca64f4b01fa049862dd2ce5863b33db8445b7ed The package @asyncapi/nodejs-ws-template was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References4
NVD
NVD
added 2025/10/20 9:15 a.m.11 views

CVE-2025-41028

A SQL Injection vulnerability has been found in Epsilon RH by Grupo Castilla. This vulnerability allows an attacker to retrieve, create, update and delete database via sending a POST request using the parameter ‘sEstadoUsr’ in ‘/epsilonnetws/WSAvisos.asmx’...

9.3CVSS0.00429EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-3186

Malware in sbrugna...

10CVSS6.3AI score0.02605EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0709

Malware in sbrugna...

8.8CVSS8.8AI score0.01104EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-0496

Malware in sbrugna...

7.5CVSS7.6AI score0.04976EPSS
Exploits0References33
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-7098

Malware in sbrugna...

6.8CVSS6.4AI score0.00728EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-18035

Malware in sbrugna...

9.1CVSS9.1AI score0.03731EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-1890

Malware in sbrugna...

6.5CVSS7.1AI score0.02862EPSS
Exploits0References21
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2008-5324

Malware in sbrugna...

7.5CVSS8AI score0.03426EPSS
Exploits1References30
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-5822

Malware in sbrugna...

7.5CVSS8.5AI score0.02267EPSS
Exploits1References5
Rows per page
Query Builder