Filter
-Infinity
0
Trending
Tenable Nessus Amazon Machine ImageAs part of our Security Development Lifecycle, a potential privilege escalation issue was identified…
8.8
First published (updated )
Tenable.scA LDAP injection vulnerability exists in Tenable.sc due to improper validation of user-supplied inpu…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/composer/composerMissing input validation can lead to command execution in composer
8.8
First published (updated )
Tenable.scTenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerabilit…
8.1
First published (updated )
Apple iOS and macOSPossible NULL dereference or SSRF in forward proxy configurations in Apache HTTP Server 2.4.51 and earlier
8.2
First published (updated )
Apple iOS and macOSPossible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlier
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PHPSpecial characters break path parsing in XML functions
5.3
First published (updated )
Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `of` option of the `.position()` util
7.2
First published (updated )
Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget
7.2
First published (updated )
composer/composer/composerCommand injection in composer on Windows
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Trellix ePolicy OrchestratorRead buffer overruns processing ASN.1 strings
7.4
First published (updated )
Oracle Peoplesoft Enterprise Campus Software Campus CommunitySM2 Decryption Buffer Overflow
9.8
First published (updated )
redhat/jbcs-httpd24-httpdRequest splitting via HTTP/2 method injection and mod_proxy
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Node.jsNULL pointer deref in signature_algorithms processing
7.5
First published (updated )
Tenable.scTenable.sc and Tenable.sc Core versions 5.13.0 through 5.17.0 were found to contain a vulnerability …
8.8
First published (updated )
Tenable NessusNull pointer deref in X509_issuer_and_serial_hash()
7.5
First published (updated )
Tenable.scIn certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
UbuntuPHP parses encoded cookie names so malicious `__Host-` cookies can be sent
5.3
First published (updated )
UbuntuWrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV
6.5
First published (updated )
PHPUse of freed hash key in the phar_parse_zipfile function
4.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.