Lucene search
K

419016 matches found

EUVD
EUVD
•added 2026/06/11 10:20 a.m.•12 views

EUVD-2026-36230

GitLab has remediated an issue in GitLab EE affecting all versions from 13.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with Security Manager-role permissions to manage project security configuration even whe...

4.3CVSS5.5AI score0.00182EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:20 a.m.•10 views

EUVD-2026-36229

GitLab has remediated an issue in GitLab EE affecting all versions from 15.5 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with group Owner role to take over another group member's GitLab account due to improper...

8.7CVSS5.5AI score0.00278EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:20 a.m.•11 views

EUVD-2026-36228

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to hide changes from merge request diff views due to...

3.7CVSS5.5AI score0.00158EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:20 a.m.•10 views

EUVD-2026-36227

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an unauthenticated user to cause denial of service due to improper input validation in the API request...

7.5CVSS5.5AI score0.0037EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:20 a.m.•10 views

EUVD-2026-36226

GitLab has remediated an issue in GitLab EE affecting all versions from 13.1.4 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to add unauthorized email addresses to a targeted user's account due to improper...

8.7CVSS5.5AI score0.00255EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:19 a.m.•12 views

EUVD-2026-36225

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.10 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user to read arbitrary files from the Gitaly server and access internal network resources...

6.5CVSS5.6AI score0.00247EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/11 10:19 a.m.•12 views

EUVD-2026-36224

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.9 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions, could have allowed an unauthenticated user to impersonate the GitLab Support Bot and inject arbitrary content via a specially...

4.3CVSS5.6AI score0.00211EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:19 a.m.•12 views

EUVD-2026-36223

GitLab has remediated an issue in GitLab EE affecting all versions from 17.1 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that under certain conditions could have allowed an authenticated user with developer-role permissions to execute arbitrary client-side code on behalf of a...

8.7CVSS6AI score0.00249EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 10:19 a.m.•12 views

EUVD-2026-36222

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.0.2 that could have allowed an authenticated user to cause denial of service on the CI/CD Catalog page due to improper sanitization...

4.3CVSS5.5AI score0.0022EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/11 10:13 a.m.•10 views

EUVD-2026-36221

A Missing Authorization vulnerability in the playbook import functionality in Dialogflow CX on Google Cloud Platform allows an authenticated user with specific roles to escalate privileges and potentially take over a GCP project using a maliciously crafted playbook import. This vulnerability was...

9.4CVSS5.5AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 10:3 a.m.•10 views

EUVD-2026-36220

Cerebrate before version 1.37 exposed credential material from self-registration requests. The self-registration workflow stored the registrant’s hashed password in the inbox message data payload. This payload was returned unredacted through inbox index and view responses, including HTML, JSON, a...

5.1CVSS5.4AI score0.00242EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 9:50 a.m.•11 views

EUVD-2022-56004

Cross-Site request forgery CSRF vulnerability in YITH YITH WooCommerce Product Slider Carousel allows Cross Site Request Forgery. This issue affects YITH WooCommerce Product Slider Carousel: from n/a through 1.16.0...

4.6CVSS5.4AI score0.00144EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 9:49 a.m.•11 views

EUVD-2026-36219

An integer underflow vulnerability was found in MIT krb5 in the berval2tldata function in plugins/kdb/ldap/libkdbldap/ldapprincipal2.c. The function performs an unsigned subtraction bvlen - 2 without a prior bounds check. When bvlen is 0 or 1, the subtraction wraps to a large value which is then...

5CVSS5.4AI score0.00261EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/11 9:47 a.m.•10 views

EUVD-2022-56003

Missing Authorization vulnerability in TemplateHouse Soledad allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Soledad: from n/a through 8.2.5...

5.4CVSS5.4AI score0.00177EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 9:41 a.m.•10 views

EUVD-2026-36218

Cerebrate before version 1.37 allowed the id primary key field to be supplied through request input during CRUD edit operations and certain custom entity patching flows. In affected entities that did not explicitly mark id as inaccessible, an authenticated attacker could submit a crafted edit...

6.3CVSS5.5AI score0.00207EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 9:7 a.m.•13 views

EUVD-2025-210109

Authentication bypass by primary weakness vulnerability in ABB Freelance. This issue affects Freelance: through 2013, 2013 SP1, 2016, 2016 SP1, 2019, 2019 SP1, 2019 SP1 FP1, 2024...

7.1CVSS5.4AI score0.00116EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 8:31 a.m.•11 views

EUVD-2026-36217

vLLM versions 0.8.0 and later are vulnerable to an Out-of-Memory OOM Denial of Service DoS attack due to unbounded frame count processing in the VideoMediaIO.loadbase64 method. When processing video/jpeg data URLs, the method splits the base64 data string on commas to extract individual JPEG fram...

7.5CVSS5.5AI score0.00543EPSS
Exploits1References2
EUVD
EUVD
•added 2026/06/11 7:31 a.m.•10 views

EUVD-2026-36216

Cerebrate before version 1.37 contains a mass-assignment vulnerability in the generic CRUD add path. The add handler attempted to remove an attacker-supplied id from $params before normalizing the request through massageInput. Because the normalized $input could still contain an id field, a user...

8.7CVSS5.5AI score0.00312EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 7:11 a.m.•13 views

EUVD-2023-60588

Authorization bypass through User-Controlled key vulnerability in Essential Plugin WP Logo Showcase Responsive Slider and Carousel allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WP Logo Showcase Responsive Slider and Carousel: from n/a through 3.6...

5.3CVSS5.5AI score0.00188EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 7:5 a.m.•10 views

EUVD-2024-55618

Cross-Site request forgery CSRF vulnerability in Magepeople inc. WpEvently allows Cross Site Request Forgery. This issue affects WpEvently: from n/a through 4.1.2...

4.3CVSS5.5AI score0.001EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 7:3 a.m.•10 views

EUVD-2023-60587

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in WPVibes WP Mail Log allows DOM-Based XSS. This issue affects WP Mail Log: from n/a through 1.0.2...

7.1CVSS5.4AI score0.00284EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:34 a.m.•16 views

EUVD-2026-36215

The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.26.4 via the UpdraftPlusRemoteCommunicationsV2::wploaded function. This is due to insufficient validation of the remote communications message format,...

8.1CVSS6.1AI score0.03578EPSS
Exploits3References4
EUVD
EUVD
•added 2026/06/11 5:5 a.m.•13 views

EUVD-2026-36214

The Spring GraphQL annotation detection mechanism for @Controller data fetchers may not correctly resolve annotations on methods within type hierarchies. This can be an issue if such annotations are used for authorization decisions. When all conditions are met, security annotations can be ignored...

7.5CVSS5.4AI score0.00352EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•11 views

EUVD-2026-36213

Spring for GraphQL applications that have enabled the WebSocket transport are vulnerable to Cross-Site WebSocket Hijacking. An attacker can trick an authenticated user into visiting a malicious page, allowing the attacker to execute arbitrary GraphQL operations with the victim's credentials...

8.1CVSS5.9AI score0.00182EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•14 views

EUVD-2026-36212

Spring for GraphQL applications are vulnerable to Unsafe Deserialization when processing paginated GraphQL queries. An attacker can craft a malicious GraphQL request that can lead to Remote Code Execution when the application exposes a paginated Connection field and the classpath contains specifi...

8.1CVSS5.7AI score0.0043EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•12 views

EUVD-2026-36211

Spring Boot's ArtemisEmbeddedConfigurationFactory uses a fixed, static path for the embedded Artemis message broker's data directory when no explicit path is configured. A local attacker on the same host can pre-create this predictable directory or place a symlink before the application starts...

5.3CVSS5.5AI score0.00094EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•11 views

EUVD-2026-36210

Wss4jSecurityInterceptor did not consistently wire Apache WSS4J ReplayCache instances into RequestData for validation-time checks. As a result, protections against replay of UsernameToken nonces and creation timestamps, Timestamp elements, and certain SAML one-time-use semantics could be...

3.7CVSS5.4AI score0.00223EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•12 views

EUVD-2026-36209

When WS-Addressing is used with non-anonymous ReplyTo or FaultTo addresses, Spring WS may initiate outbound connections through configured WebServiceMessageSender instances to destinations taken directly from request headers without verifying that those destinations are safe to connect to. Affect...

8.6CVSS5.4AI score0.00383EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•14 views

EUVD-2026-36208

Jaxp13XPathTemplate evaluated XPath expressions for StreamSource and SAXSource inputs using a code path that parsed attacker-controlled XML with the JDK's default DocumentBuilderFactory behavior instead of Spring's hardened parser configuration. Applications that evaluate XPath against untrusted...

8.2CVSS5.5AI score0.00352EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•12 views

EUVD-2026-36207

Several Spring WS integration paths with Spring Security could surface detailed account state for example locked or disabled user semantics to remote SOAP clients through exception messages or callback outcomes, instead of failing with generic authentication errors. That behavior assists remote...

5.3CVSS5.5AI score0.00366EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•11 views

EUVD-2026-36206

Wss4jSecurityInterceptor defaulted allowRSA15KeyTransportAlgorithm to true, overriding Apache WSS4J's safer default for validation RequestData. Inbound WS-Security decryption could therefore accept RSA PKCS1 v1.5 rsa-15 encrypted key material unless operators explicitly reconfigured the flag...

4.8CVSS5.4AI score0.00129EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:4 a.m.•10 views

EUVD-2026-36205

X509AuthenticationProvider could issue a fully authenticated X509AuthenticationToken when a presented certificate mapped to UserDetails, without applying Spring Security's standard account lifecycle checks disabled, locked, expired, or credentials-expired accounts. Affected versions: Spring Web...

5.4CVSS5.4AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:3 a.m.•11 views

EUVD-2026-36204

Wss4jSecurityInterceptor initialized its BSP WS-I Basic Security Profile compliance flag so that inbound validation disabled WSS4J BSP enforcement on RequestData. Services that validate WS-Security on the network could therefore accept messages that violate BSP rules, weakening protocol-level...

8.2CVSS5.5AI score0.00229EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:3 a.m.•13 views

EUVD-2026-36203

Spring Boot's Mail auto-configuration does not enable hostname verification. Applications that set the relevant JavaMail property, such as spring.mail.properties.mail.smtp.ssl.checkserveridentity=true, are not affected. Affected versions: Spring Boot 4.0.0 through 4.0.6; 3.5.0 through 3.5.14; 3.4...

5CVSS5.4AI score0.00123EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:3 a.m.•10 views

EUVD-2026-36202

A malicious or compromised FTP/SFTP/SMB server can write arbitrary files anywhere on the client filesystem outside the configured local-directory with attacker-controlled content. Affected versions: Spring Integration 7.0.0 through 7.0.4; 6.5.0 through 6.5.8; 6.4.0 through 6.4.11; 6.3.0 through...

7.1CVSS5.6AI score0.0021EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:3 a.m.•13 views

EUVD-2026-36201

Spring Web Flow's JavaScript RemotingHandler renders the body of an error response as HTML even when the response is not "text/html", which can result in a scripting attack in the user's browser if the error response from the server contains error details with input reflected from an attacker...

4.8CVSS5.3AI score0.00201EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 5:2 a.m.•18 views

EUVD-2026-36200

Applications that configure the WebFlowELExpressionParser are vulnerable to the use of malicious Unified EL expressions. Affected versions: Spring Web Flow 4.0.0; 3.0.0 through 3.0.1; 2.5.0 through 2.5.1...

6.4CVSS5.5AI score0.00225EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/11 2:25 a.m.•44 views

EUVD-2026-36199

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Updates Environment Management. Supported versions that are affected are 8.61 and 8.62. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

9.8CVSS5.5AI score0.9233EPSS
Exploits3References1
EUVD
EUVD
•added 2026/06/11 1:27 a.m.•12 views

EUVD-2026-36198

The Open User Map PRO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'oumlocationnotification' parameter in versions up to, and including, 1.4.31 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

4.7CVSS5.7AI score0.00188EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•16 views

EUVD-2026-36167

Improper Control of Generation of Code 'Code Injection' vulnerability in Apache OFBiz allows a low-privileged authenticated user with Content/DataResource editing privileges to perform template injection attacks that could lead to Remote Code Execution. This issue affects Apache OFBiz: before...

5.5AI score0.00657EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•11 views

EUVD-2024-55617

Improper input validation for DIMM serial presence detect SPD metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of Trust for BIOS update, to potentially overwrite guest memory resulting in loss of guest data integri...

5.3CVSS6.9AI score0.00222EPSS
Exploits0References2
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•11 views

EUVD-2026-36139

Copy & Delete Posts through 1.5.4 lets any plugin-enabled non-admin role invoke every operation in the cdpactionhandling AJAX handler. Attackers with an enabled role can delete posts or overwrite plugin settings via the f parameter, bypassing per-function capability checks...

8.1CVSS5.4AI score0.00248EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•12 views

EUVD-2026-36169

A privilege escalation vulnerability in Apache OFBiz allows a low-privileged authenticated user to obtain higher privileges This issue affects Apache OFBiz: before 24.09.07. Users are recommended to upgrade to version 24.09.07, which fixes the issue...

5.4AI score0.00407EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•11 views

EUVD-2026-36142

Simple Link Directory through 9.0.4 interpolates the sldnoresultsfound option into a JavaScript string literal without encoding. Because sanitizetextfield leaves quotes intact, a stored payload breaks out of the string and runs script for every page visitor...

5.4CVSS5.4AI score0.00141EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•13 views

EUVD-2026-36138

Juicer through 1.12.18 fails to escape remote feed API response fields before rendering them on the admin settings page. Attackers controlling the connected feed data can inject script that executes in an administrator's browser when the settings page loads...

6.1CVSS5.5AI score0.00158EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•12 views

EUVD-2026-36137

Easy Twitter Feeds before 1.2.13 contains a cross-site request forgery vulnerability in the duplicatepost action handler that lacks nonce verification. Attackers can trick an authenticated user into visiting a crafted link that duplicates any post regardless of post type...

5.1CVSS5.3AI score0.00104EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•10 views

EUVD-2026-36143

Simple Link Directory through 9.0.4 echoes embed shortcode attributes into HTML data attributes without escaping in the embedder template. Attackers with contributor access can craft a shortcode attribute that injects an event handler executing in a viewer's browser...

5.4CVSS5.5AI score0.00141EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•13 views

EUVD-2026-36141

Yoast Duplicate Post through 4.6 inserts an unescaped post title and permalink into the Classic Editor scheduled republish notice. Attackers can schedule a republish copy with a crafted title to execute script when an administrator views the resulting notice...

5.4CVSS5.6AI score0.00141EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•13 views

EUVD-2026-36140

Yoast Duplicate Post through 4.6 contains a cross-site request forgery vulnerability in the duplicatepostdismissnotice handler, which verifies no nonce or capability. Attackers can trick any authenticated user into sending a request that sets the duplicatepostshownotice site option, suppressing...

5.1CVSS5.2AI score0.00104EPSS
Exploits0References3
EUVD
EUVD
•added 2026/06/11 12:32 a.m.•10 views

EUVD-2026-36128

kafka-python prior to 2.3.2 contains a denial-of-service vulnerability in SCRAM authentication handling that allows a malicious or machine-in-the-middle broker to freeze the client event loop by supplying an excessively large iteration count. In scram.py, ScramClient.processserverfirstmessage...

8.7CVSS5.5AI score0.00517EPSS
Exploits0References5
Total number of security vulnerabilities419016