Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

690 matches found

RedhatCVE
RedhatCVEadded 2026/06/05 7:51 p.m.7 views

CVE-2025-14545

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

6.5CVSS5.6AI score0.00266EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:34 p.m.7 views

CVE-2026-10549

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS5.5AI score0.00268EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 10:16 a.m.16 views

CVE-2026-10549

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS0.00268EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/06/02 8:27 a.m.7 views

CVE-2026-10549

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS5.8AI score0.00268EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/06/02 8:27 a.m.8 views

CVE-2026-10549 Privilege escalation in Yandex Database

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS5.8AI score0.00268EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/02 8:27 a.m.42 views

CVE-2026-10549 Privilege escalation in Yandex Database

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS0.00268EPSS
Exploits0References1
EUVD
EUVDadded 2026/06/02 8:27 a.m.9 views

EUVD-2026-33900

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS5.8AI score0.00268EPSS
Exploits0References1
CVE
CVEadded 2026/06/02 8:27 a.m.15 views

CVE-2026-10549

CVE-2026-10549 describes an LDAP filter injection in Yandex Database leading to bypass of group membership checks and unauthorized access for an attacker with valid LDAP credentials. Affected product: Yandex Database before version 25.3.1.25. Root cause: LDAP filter injection in the authenticatio...

5.3CVSS5.8AI score0.00268EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/06/02 12:0 a.m.4 views

Yandex Database 安全漏洞

Yandex Database is a distributed SQL database management system developed by the Russian company Yandex. Versions of Yandex Database prior to 25.3.1.25 contained security vulnerabilities. These vulnerabilities were caused by LDAP filter injection issues, which could allow remote attackers to bypa...

5.3CVSS5.6AI score0.00268EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/02 12:0 a.m.13 views

PT-2026-45722

LDAP filter injection vulnerability in Yandex Database prior to 25.3.1.25 allows a remote attacker with valid LDAP credentials to bypass group membership checks resulting in unauthorized access to the database...

5.3CVSS5.8AI score0.00268EPSS
Exploits0References2
Fedora
Fedoraadded 2026/05/11 1:2 a.m.10 views

[SECURITY] Fedora 43 Update: rclone-1.74.0-2.fc43

"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Driv e, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files...

9.8CVSS5.8AI score0.34525EPSS
Exploits2
Fedora
Fedoraadded 2026/05/10 2:55 a.m.8 views

[SECURITY] Fedora 44 Update: rclone-1.74.0-2.fc44

"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Driv e, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files...

9.8CVSS5.8AI score0.34525EPSS
Exploits2
Patchstack
Patchstackadded 2026/04/13 10:39 a.m.6 views

WordPress YML for Yandex Market plugin < 5.0.26 - Shop Manager+ RCE via Feed Generation vulnerability

Shop Manager+ RCE via Feed Generation vulnerability discovered by Alex Tselevich nos3curity in WordPress Plugin YML for Yandex Market versions 5.0.26...

6.5CVSS5.8AI score0.00266EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2026/04/10 9:31 a.m.5 views

EUVD-2025-209399

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

6.5CVSS6AI score0.00266EPSS
Exploits0References2
NVD
NVDadded 2026/04/10 7:16 a.m.4 views

CVE-2025-14545

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

6.5CVSS0.00266EPSS
Exploits0References1
CVE
CVEadded 2026/04/10 6:0 a.m.10 views

CVE-2025-14545

CVE-2025-14545 concerns the WordPress plugin YML for Yandex Market, vulnerable before version 5.0.26 via the feed generation process, enabling Remote Code Execution. The vuln is documented with a CVSS3.1 base score of 6.5 (Network, Low attack complexity, No privileges, User interaction required)....

6.5CVSS6AI score0.00266EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/04/10 6:0 a.m.2 views

CVE-2025-14545

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

6AI score0.00266EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/04/10 6:0 a.m.27 views

CVE-2025-14545 YML for Yandex Market < 5.0.26 - Shop Manager+ RCE via Feed Generation

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

0.00266EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/04/10 6:0 a.m.2 views

CVE-2025-14545 YML for Yandex Market < 5.0.26 - Shop Manager+ RCE via Feed Generation

The YML for Yandex Market WordPress plugin before 5.0.26 is vulnerable to Remote Code Execution via the feed generation process...

5.9AI score0.00266EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/04/10 12:0 a.m.6 views

WordPress plugin YML for Yandex Market 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

6.5CVSS6.1AI score0.00266EPSS
Exploits0References1
Rows per page
Query Builder