Lucene search
K

418611 matches found

EUVD
EUVD
added 2026/06/15 9:30 p.m.6 views

EUVD-2025-210150

A heap buffer overflow in the gfisomvpconfignew function isomedia/avcext.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.5AI score0.00202EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.10 views

EUVD-2025-210145

A heap buffer overflow in the gfcencsetpssh function isomedia/drmsample.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.5AI score0.00235EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.9 views

EUVD-2025-210152

A heap buffer overflow in the Opus audio stream parser component of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.6AI score0.00202EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.10 views

EUVD-2025-210144

A heap use-after-free in the gfnodegettag function scenegraph/basescenegraph.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.3AI score0.00188EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.8 views

EUVD-2025-210148

A NULL pointer dereference in the gfmediamapesd function mediatools/isomtools.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.7 views

EUVD-2025-210147

A heap buffer overflow in the gfopusparsepacketheader function mediatools/avparsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.6AI score0.00235EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.14 views

EUVD-2025-210149

A heap use-after-free in the gfnodegettag function scenegraph/basescenegraph.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.2AI score0.00188EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.8 views

EUVD-2025-210154

A code injection vulnerability in the wxExecute function of OpenCPN v5.12.0 allows attackers to execute arbitrary code via embedding shell metacharacters...

7.8CVSS5.9AI score0.00165EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/15 9:30 p.m.7 views

EUVD-2025-210151

A stack overflow in the gfopusreadlength function mediatools/avparsers.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5CVSS5.3AI score0.00202EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/15 8:54 p.m.9 views

EUVD-2026-37007

DbGate is cross-platform database manager. In versions 7.1.8 and prior, the POST /runners/load-reader endpoint in DbGate accepts a functionName parameter that is directly interpolated into a JavaScript code template without any sanitization or validation. An authenticated user with basic access, ...

8.8CVSS5.9AI score0.0051EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/15 8:47 p.m.11 views

EUVD-2026-36076

aws-cdk-lib: OS Command Injection in NodejsFunction Bundling...

7.3CVSS5.3AI score0.00936EPSS
Exploits1References6
EUVD
EUVD
added 2026/06/15 8:46 p.m.9 views

EUVD-2026-36471

Netty susceptible to HTTP/2 Reset Attack with different on-the-wire signature...

6.9CVSS5.2AI score0.00302EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/15 8:46 p.m.10 views

EUVD-2026-36468

Netty: HttpObjectDecoder skips arbitrary initial control characters when only initial CRLF characters are permitted...

5.3CVSS5.3AI score0.00232EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/15 8:46 p.m.11 views

EUVD-2026-36467

Netty: Unbounded pre-allocation in RedisArrayAggregator from RESP array length...

7.5CVSS5.2AI score0.00371EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/15 8:45 p.m.10 views

EUVD-2026-36465

Netty: Wrapping plain trust manager silently disables hostname verification...

7.5CVSS5.1AI score0.00269EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/15 8:44 p.m.11 views

EUVD-2026-36462

Netty: QUIC stateless reset token material exposed through header-visible connection IDs...

4.8CVSS5.2AI score0.00204EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/15 8:43 p.m.13 views

EUVD-2026-36459

Netty HTTP/3 QPACK Blocked Streams Memory Exhaustion...

7.5CVSS5.2AI score0.00366EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-37004

Unauthenticated Path Traversal in FastDup = 2.7.2 versions...

9.6CVSS5.2AI score0.00436EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.10 views

EUVD-2026-36905

Subscriber SQL Injection in WCMultiShipping = 3.0.2 versions...

8.5CVSS5.7AI score0.0037EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.9 views

EUVD-2026-37003

Unauthenticated Cross Site Scripting XSS in SEO Redirection = 9.17 versions...

7.1CVSS5.1AI score0.00145EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.9 views

EUVD-2026-36904

Unauthenticated Insecure Direct Object References IDOR in VikRentCar = 1.4.5 versions...

7.5CVSS5.2AI score0.0023EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.12 views

EUVD-2026-36903

Subscriber SQL Injection in Taskbuilder = 5.0.7 versions...

8.5CVSS5.7AI score0.00339EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.12 views

EUVD-2026-36902

Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout = 1.8.2 versions...

7.5CVSS5.2AI score0.00243EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.9 views

EUVD-2026-36901

Unauthenticated Sensitive Data Exposure in Signature Add-On for WooCommerce = 2.0 versions...

7.5CVSS5.2AI score0.00238EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36900

Unauthenticated SQL Injection in eCommerce Product Catalog = 3.5.5 versions...

9.3CVSS5.7AI score0.00289EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36899

Unauthenticated Sensitive Data Exposure in Affiliates Manager = 2.9.50 versions...

7.5CVSS5.2AI score0.00238EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.10 views

EUVD-2026-36898

Unauthenticated PHP Object Injection in OttoKit = 1.1.27 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.9 views

EUVD-2026-36896

Unauthenticated SQL Injection in GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites = 2.32.6 versions...

9.3CVSS5.7AI score0.00289EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36897

Customer Privilege Escalation in Dokan = 5.0.2 versions...

8.8CVSS5.2AI score0.00283EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36895

Unauthenticated Broken Access Control in Welcart e-Commerce = 2.11.28 versions...

6.5CVSS5.1AI score0.00191EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36894

Subscriber Cross Site Scripting XSS in FV Flowplayer Video Player 7.5.51.7212 versions...

6.5CVSS5.1AI score0.00166EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.10 views

EUVD-2026-36893

Unauthenticated PHP Object Injection in WP Travel Engine = 6.7.12 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36892

Unauthenticated PHP Object Injection in wpForo Forum = 3.1.0 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.10 views

EUVD-2026-36891

Unauthenticated PHP Object Injection in Happyforms = 1.26.13 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36890

Subscriber Arbitrary File Deletion in WP User Manager = 2.9.16 versions...

9.9CVSS5.2AI score0.00506EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36889

Unauthenticated PHP Object Injection in Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms = 1.1.8 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.12 views

EUVD-2026-36888

Unauthenticated Broken Authentication in RegistrationMagic = 6.0.8.6 versions...

9.8CVSS5.2AI score0.004EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36887

Unauthenticated PHP Object Injection in Integration for Contact Form 7 HubSpot = 1.3.7 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.7 views

EUVD-2026-36885

Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce = 3.1.4 versions...

7.5CVSS5.2AI score0.00236EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.6 views

EUVD-2026-36886

Unauthenticated Path Traversal in Shared Files = 1.7.64 versions...

7.5CVSS5.2AI score0.00326EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.13 views

EUVD-2026-36884

Unauthenticated PHP Object Injection in Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms = 1.4.3 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.11 views

EUVD-2026-36882

Unauthenticated PHP Object Injection in WP Zendesk for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms = 1.1.4 versions...

9.8CVSS5.3AI score0.00476EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36883

Unauthenticated PHP Object Injection in Integration for Contact Form 7 and Constant Contact = 1.1.6 versions...

9.8CVSS5.3AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.9 views

EUVD-2026-36881

Unauthenticated PHP Object Injection in Integration for Keap/infusionsoft and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms = 1.2.1 versions...

9.8CVSS5.3AI score0.00476EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.10 views

EUVD-2026-36880

Unauthenticated PHP Object Injection in WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms = 1.1.4 versions...

9.8CVSS5.3AI score0.00476EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36879

Contributor Privilege Escalation in LatePoint = 5.5.1 versions...

7.5CVSS5.2AI score0.00287EPSS
Exploits2References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.7 views

EUVD-2026-36878

Subscriber Sensitive Data Exposure in Chatway Live Chat AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons = 1.4.8 versions...

7.4CVSS5.2AI score0.00264EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36877

Unauthenticated Other Vulnerability Type in WP Travel Engine = 6.7.10 versions...

7.5CVSS5.2AI score0.00252EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.7 views

EUVD-2026-36876

Unauthenticated Broken Access Control in Knit Pay = 9.4.0.0 versions...

7.5CVSS5.1AI score0.00238EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36875

Subscriber Sensitive Data Exposure in Coupon Affiliates = 7.8.1 versions...

7.5CVSS5.2AI score0.00386EPSS
Exploits0References1
Total number of security vulnerabilities418611