Lucene search
K
PtsecurityMost viewed

184728 matches found

Positive Technologies
Positive Technologies
•added 2026/05/13 12:0 a.m.•22 views

PT-2026-40700

aria2c accepts a server certificate with incorrect Extended Key Usage EKU. If the attackers compromise a certificate with the associated private key issued for a different purpose, they may be able to reuse it for TLS server authentication...

4.8CVSS5.8AI score0.0011EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-39951

The Next Date plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'default' shortcode attribute in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attacker...

6.4CVSS6AI score0.00187EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40071

Name of the Vulnerable Software and Affected Versions Apache Tomcat versions 11.0.0-M1 through 11.0.21 Apache Tomcat versions 10.1.0-M1 through 10.1.54 Apache Tomcat versions 9.0.0.M1 through 9.0.117 Apache Tomcat versions 8.5.0 through 8.5.100 Apache Tomcat versions prior to 7.0.0 Description An...

10CVSS5.8AI score0.01339EPSS
Exploits2References79
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40440

Name of the Vulnerable Software and Affected Versions cPanel & WHM affected versions not specified Description Improper sanitization of the status query parameter in the '/unprotected/nova error' endpoint allows an unauthenticated attacker to inject arbitrary HTTP headers into the response...

8.3CVSS5.9AI score0.00301EPSS
Exploits0References10
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-44975

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.43.4 Description A flaw exists in the way the library handles chunked Transfer-Encoding. The read payload function in httplib.h uses std::strtoul to parse the chunk-size field. Because std::strtoul accepts leadi...

7.8CVSS5.8AI score0.00327EPSS
Exploits1References7
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40096

Improper access control for some Intel Vision software for all versions within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an unauthenticated user combined with a low complexity attack may enable remote code execution. This result may potentially...

8.8CVSS6.1AI score0.00478EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40091

Buffer overflow for some IntelR QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may...

6.9CVSS5.8AI score0.001EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40265

Name of the Vulnerable Software and Affected Versions FortiAuthenticator versions 8.0.0 through 8.0.2 FortiAuthenticator versions 6.6.0 through 6.6.8 FortiAuthenticator versions 6.5.0 through 6.5.6 Description An improper access control issue in API endpoints allows an unauthenticated remote...

9.8CVSS6.2AI score0.00551EPSS
Exploits0References27
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-40087

Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. System software adversary with a privileged user combined with a low complexity attack may enable local code execution. This result may potentially occur via local access when attack requirements a...

8.7CVSS5.9AI score0.00125EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-39966

The Shortcodely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'widget area' parameter in all versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level acce...

6.4CVSS6AI score0.00201EPSS
Exploits0References8
Positive Technologies
Positive Technologies
•added 2026/05/12 12:0 a.m.•22 views

PT-2026-39935

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS6AI score0.00309EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39748

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.32.2, the GET /api/libraries/:id/download endpoint validates that the requesting user has access to the library specified in the URL path, but fetches downloadable items solely by attacker-provided IDs without constraining...

6.5CVSS5.8AI score0.00205EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39715

Name of the Vulnerable Software and Affected Versions Inbox Zero versions prior to 2.29.3 Description The cleaner email stream endpoint used a shared Redis subscription listener. This configuration could result in thread events for one authenticated account being delivered to another authenticate...

4.3CVSS5.8AI score0.00228EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39837

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.32.2, the podcast creation endpoint at server/controllers/PodcastController.js accepts a user-controlled file path without sufficient boundary validation to ensure it remains within the intended library directory. This...

6.9CVSS5.8AI score0.00331EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39638

The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 2025-13-04 contains an insecure deserialization vulnerability CWE-502 in its checkpoint loading mechanism. The load checkpoint function in checkpoint.py and the checkpoint loading code in eval.py use...

6.1AI score0.00218EPSS
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39708

Command injection vulnerability in automagik-genie 2.5.27 MCP Server allows attackers to execute arbitrary commands via the view task aka view in the readTranscriptFromCommit function in dist/mcp/server.js when a user reads from an external FORGE BASE URL...

6.1AI score0.01008EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/11 12:0 a.m.•22 views

PT-2026-39662

Bitwarden Server prior to v2026.4.1 contains a missing authorization vulnerability that allows any authenticated user to write ciphers into an arbitrary organization via POST /ciphers/import-organization by submitting an empty collections array, which causes the server-side permission check to be...

5.4CVSS5.9AI score0.00188EPSS
Exploits1References6
Positive Technologies
Positive Technologies
•added 2026/05/10 12:0 a.m.•22 views

PT-2026-39545

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smf nsmf handle create data in hsmf of the component SMF. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The exploit has been publicly disclosed and may be...

5.3CVSS5.4AI score0.00378EPSS
Exploits1References6
Positive Technologies
Positive Technologies
•added 2026/05/10 12:0 a.m.•22 views

PT-2026-39429

Name of the Vulnerable Software and Affected Versions IAS Canias ERP version 8.03 Description An issue in the Java RMI Session Management component allows for improper authentication. This can be triggered remotely via the iasServerRemoteInterface.doAction function. Recommendations At the moment,...

7.5CVSS7.3AI score0.00391EPSS
Exploits0References10
Positive Technologies
Positive Technologies
•added 2026/05/10 12:0 a.m.•22 views

PT-2026-39504

Opencart TMD Vendor System 3.x contains a blind SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the product id parameter. Attackers can craft malicious SQL queries using time-based or content-based blind injection...

8.8CVSS5.9AI score0.00276EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/05/10 12:0 a.m.•22 views

PT-2026-39491

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the news/manage module. The date created, date from, date to, and created at parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via crafted GET reques...

6.1CVSS5.7AI score0.00252EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/05/09 12:0 a.m.•22 views

PT-2026-39420

Name of the Vulnerable Software and Affected Versions Hex-Rays IDA Pro versions 9.2 through 9.3 Hex-Rays IDA Pro versions prior to 9.3sp2 Description An argument injection flaw exists where the software fails to block Clang dependency-file generation. This allows an attacker to place malicious co...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38813

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult to exploit vulnerability allows unauthenticated...

3.1CVSS5.8AI score0.00853EPSS
Exploits0References5
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38676

Name of the Vulnerable Software and Affected Versions OttoKit: All-in-One Automation Platform WordPress plugin versions prior to 1.1.23 Description Insufficient sanitization of user input used in a SQL statement allows unauthenticated attackers to perform SQL injection attacks. Recommendations...

8.6CVSS5.8AI score0.00262EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38682

Name of the Vulnerable Software and Affected Versions uriparser versions prior to 1.0.2 Description The function family EqualsUri can misclassify two unequal URIs as equal. Recommendations Update to version 1.0.2 or later. As a temporary workaround, restrict the use of the EqualsUri function unti...

5.3CVSS5.8AI score0.00211EPSS
Exploits0References20
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-39270

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0 Description Administrative role changes and user deletions do not invalidate the SESSION POOL in-memory dictionary. When a user connects via Socket.IO, their role is snapshotted into this pool. Because the...

8.1CVSS5.8AI score0.00284EPSS
Exploits1References6
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38910

Name of the Vulnerable Software and Affected Versions CashDro 3 version 24.01.00.26 Description The web administration panel allows the use of numeric PINs for user authentication to maintain compatibility with POS software integrations deployed since 2012. This implementation enables attackers t...

9.3CVSS5.8AI score0.00324EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38826

Vulnerability in Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java...

3.7CVSS5.8AI score0.00827EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-38769

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to...

3.7CVSS5.8AI score0.02376EPSS
Exploits0References11
Positive Technologies
Positive Technologies
•added 2026/05/08 12:0 a.m.•22 views

PT-2026-39003

Name of the Vulnerable Software and Affected Versions PraisonAI versions prior to 4.6.34 Description The Model Context Protocol MCP server in PraisonAI contains a path traversal flaw in its file-handling tools. The server registers four tools by default: 'praisonai.rules.create',...

9.6CVSS6.3AI score0.00619EPSS
Exploits1References11
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38486

A read of pixels was coded as modifying coordinates to lie within the image bounds. It would calculate a coordinate by adding a constant to an input and taking the minimum of the resulting coordinate and 'dimension - 1'. This would not protect against malicious inputs that could overflow the...

6.9CVSS5.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38618

Name of the Vulnerable Software and Affected Versions Zebra versions 4.3.1 through 4.3.1 Description Insufficient error handling during sighash computation can lead to consensus divergence. When an invalid sighash type is encountered, the system fails to return an error, leaving the input sighash...

9.3CVSS5.9AI score0.00188EPSS
Exploits0References15
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38598

Name of the Vulnerable Software and Affected Versions JeecgBoot versions prior to 3.9.2 Description An issue exists in the JSON Object Handler component where the manipulation of the condition argument in the '/sys/dict/loadTreeData' endpoint allows for remote SQL injection. SQL injection is a...

6.5CVSS6.6AI score0.00196EPSS
Exploits0References9
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38415

Vulnerability on the external sharing feature in Cryptobox allows an attacker knowing a sharing link URL to retrieve information from the server allowing an offline brute-force attack of the access code associated to this sharing link...

6.9CVSS5.9AI score0.00232EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38585

Name of the Vulnerable Software and Affected Versions Vvveb versions prior to 1.0.8.2 Description An information disclosure issue exists in the cron controller that allows unauthenticated attackers to retrieve the application's secret cron key. By accessing the cron controller without...

6.9CVSS5.9AI score0.00418EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/05/07 12:0 a.m.•22 views

PT-2026-38411

Name of the Vulnerable Software and Affected Versions Kubetail Dashboard versions prior to 0.14.0 Kubetail Helm Chart versions prior to 0.23.0 Kubetail CLI versions prior to 0.16.0 Description Kubetail's dashboard exposes WebSocket endpoints that do not adequately validate the Origin header durin...

6.5CVSS5.8AI score0.0017EPSS
Exploits0References6
Positive Technologies
Positive Technologies
•added 2026/05/06 12:0 a.m.•22 views

PT-2026-38302

Name of the Vulnerable Software and Affected Versions Statamic versions prior to 5.73.21 Statamic versions prior to 6.15.0 Description Responses from the forgot password forms reveal whether an account exists for a specific email address. This allows an unauthenticated attacker to perform user...

5.3CVSS5.8AI score0.00206EPSS
Exploits0References4
Positive Technologies
Positive Technologies
•added 2026/05/06 12:0 a.m.•22 views

PT-2026-37923

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Keytool. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.8AI score0.05241EPSS
Exploits0References15
Positive Technologies
Positive Technologies
•added 2026/05/06 12:0 a.m.•22 views

PT-2026-38265

Name of the Vulnerable Software and Affected Versions New API versions 0.11.9-alpha.1 and earlier Description New API, a large language model LLM gateway and artificial intelligence AI asset management system, contains a Server-Side Request Forgery SSRF flaw. This issue occurs due to insufficient...

7.1CVSS5.8AI score0.00258EPSS
Exploits1References10
Positive Technologies
Positive Technologies
•added 2026/05/06 12:0 a.m.•22 views

PT-2026-38300

Name of the Vulnerable Software and Affected Versions Lemur versions prior to 1.9.0 Description The LDAP authentication module lemur/auth/ldap.py constructs LDAP search filters using unsanitized user input via Python string interpolation. An authenticated LDAP user can inject LDAP filter...

8.1CVSS5.8AI score0.00179EPSS
Exploits0References8
Positive Technologies
Positive Technologies
•added 2026/05/06 12:0 a.m.•22 views

PT-2026-38487

Summary Nokogiri's CSS selector tokenizer contains regular expressions whose construction may result in exponential regex backtracking on adversarial selectors. Three ReDoS vectors are addressed in this release: 1. String-literal tokenization on certain unterminated quoted-string input. 2...

7.5CVSS5.8AI score
Exploits0References3
Positive Technologies
Positive Technologies
•added 2026/05/05 12:0 a.m.•22 views

PT-2026-46983

Name of the Vulnerable Software and Affected Versions Arista EOS affected versions not specified Description On platforms running Arista EOS with tunnel decapsulation configurations—such as VXLAN Virtual Extensible LAN, decap-groups, or GRE Generic Routing Encapsulation tunnel interfaces—the swit...

6.9CVSS6AI score0.00836EPSS
Exploits1References33
Positive Technologies
Positive Technologies
•added 2026/05/05 12:0 a.m.•22 views

PT-2026-38205

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.96 Description An inappropriate implementation in MHTML MIME HTML, a web page archive format allows a remote attacker who has already compromised the renderer process to inject arbitrary scripts or...

9.6CVSS6AI score0.00344EPSS
Exploits0References137
Positive Technologies
Positive Technologies
•added 2026/05/04 12:0 a.m.•22 views

PT-2026-37106

Name of the Vulnerable Software and Affected Versions Gotenberg versions prior to 8.31.0 Description Gotenberg fails to properly validate metadata tags passed to ExifTool, a tool used for reading and writing image, audio, and video metadata. While the software blocks specific tags like FileName a...

8.2CVSS6AI score0.00347EPSS
Exploits1References6
Positive Technologies
Positive Technologies
•added 2026/05/02 12:0 a.m.•22 views

PT-2026-36620

A vulnerability has been found in innocommerce InnoShop up to 0.7.8. The affected element is the function InstallServiceProvider::boot of the file innopacks/install/src/InstallServiceProvider.php of the component Installation Endpoint. The manipulation leads to improper authentication. Remote...

7.5CVSS6.3AI score0.00433EPSS
Exploits0References8
Positive Technologies
Positive Technologies
•added 2026/05/02 12:0 a.m.•22 views

PT-2026-36669

Name of the Vulnerable Software and Affected Versions Apache Polaris version 1.4.0 Description Apache Polaris allows the use of literal characters in namespace and table names. These characters are reused unescaped in S3 IAM resource patterns and s3:prefix conditions when building temporary S3...

9.9CVSS5.8AI score0.00424EPSS
Exploits0References12
Positive Technologies
Positive Technologies
•added 2026/05/01 12:0 a.m.•22 views

PT-2026-36314

Name of the Vulnerable Software and Affected Versions Apache MINA versions prior to 2.2.7 Apache MINA versions prior to 2.1.12 Description An issue exists in the Java network application framework due to flaws in the deserialization mechanism. The software deserializes data from unknown network...

10CVSS7.1AI score0.00657EPSS
Exploits0References284
Positive Technologies
Positive Technologies
•added 2026/04/24 12:0 a.m.•22 views

PT-2026-35062

Name of the Vulnerable Software and Affected Versions Kata Containers versions 3.4.0 through 3.28.0 Description An oversight in the CopyFile policy and potentially the CopyFile handler allows untrusted hosts to write to arbitrary locations within the guest workload image. This flaw can be exploit...

8.2CVSS5.9AI score0.00269EPSS
Exploits0References11
Positive Technologies
Positive Technologies
•added 2026/04/24 12:0 a.m.•22 views

PT-2026-34888

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the SMB server component where the send done function needs to handle completions that lack the IB SEND SIGNALED flag. During smbdirect send batch processing, requests...

9.8CVSS7.7AI score0.00442EPSS
Exploits0References14
Positive Technologies
Positive Technologies
•added 2026/04/22 12:0 a.m.•22 views

PT-2026-37152

Name of the Vulnerable Software and Affected Versions i18nextify versions prior to 4.0.8 Description The software substitutes key interpolation tokens within src and href attribute values using the raw string from i18next.t. The substitution logic in the replaceInside handler within src/localize....

4.7CVSS6AI score0.00144EPSS
Exploits0References6
Total number of security vulnerabilities5000