CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8771 matches found

WPVulnDB•added 2022/01/12 12:0 a.m.•18 views

Quiz And Survey Master < 7.3.7 - CSRF

The plugin is lacking nonce check, which could allow attacker to make logged users perform unwanted actions via a CSRF attack...

8.8CVSS4.9AI score0.00654EPSS

Exploits0References1Affected Software1

OSV•added 2022/01/10 2:10 p.m.•6 views

CVE-2020-9060

Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not limited to the ZooZ ZST10 version 6.04, ZooZ ZEN20 version 5.03, ZooZ ZEN25 version 5.03, Aeon Labs ZW090-A version 3.95, and Fibaro FGWPB-111 version 4.3, are susceptible to denial of service and resource...

6.5CVSS5.8AI score0.00532EPSS

Exploits0References5

CNNVD•added 2022/01/10 12:0 a.m.•6 views

Silicon Labs Z-Wave Chipsets 资源管理错误漏洞

Silicon Labs Z-Wave Chipsets are a type of chipset in the smart home ecosystem from Silicon Labs, USA. A resource management error vulnerability exists in multiple z-wave devices that stems from the product's failure to properly handle SECURITY NONCE GET, SECURITY NONCE GET 2, NO OPERATION, and N...

6.5CVSS6.6AI score0.00532EPSS

Exploits0References6

Cvelist•added 2022/01/07 4:30 a.m.•27 views

CVE-2020-9060

7.1AI score0.00532EPSS

Exploits0References5

Positive Technologies•added 2022/01/07 12:0 a.m.•5 views

PT-2022-9073 · Zooz +2 · Zooz Zst10 +4

Name of the Vulnerable Software and Affected Versions: ZooZ ZST10 version 6.04 ZooZ ZEN20 version 5.03 ZooZ ZEN25 version 5.03 Aeon Labs ZW090-A version 3.95 Fibaro FGWPB-111 version 4.3 Description: Z-Wave devices based on Silicon Labs 500 series chipsets using S2 are susceptible to denial of...

6.5CVSS6.4AI score0.00532EPSS

Exploits0References7

Code423n4•added 2022/01/05 12:0 a.m.•22 views

lockWithPermit() function allows for replay attacks and signature malleability

Handle jayjonah8 Vulnerability details Impact In XDEFIDistribution.sol the lockWithPermit function calls permit on the XDEFI token. The problem with simply using permit alone for this is the message that is signed by the owner using the ECDSA algorithm. The message only contains the receiver...

6.9AI score

Exploits0

WPVulnDB•added 2021/12/29 12:0 a.m.•15 views

Error Log Viewer < 1.1.2 - Arbitrary Text File Deletion via CSRF

The plugin does not perform nonce check when deleting a log file and does not have path traversal prevention, which could allow attackers to make a logged in admin delete arbitrary text files on the web server. PoC On Web Servers other than Windows, the...

6.5CVSS2.6AI score0.00599EPSS

Exploits2Affected Software1

WPVulnDB•added 2021/12/24 12:0 a.m.•20 views

Spreadsheet Integration < 3.6.0 - CSRF Bypass

The plugin does not properly check for CSRF in its wpgsiWorksheetColumnsTitle function, by making a request without the nonce parameter. This could allow attacker to make logged in admins call it...

3.2AI score

Exploits0References1Affected Software2

OSV•added 2021/12/21 7:15 a.m.•2 views

UBUNTU-CVE-2021-45451

In Mbed TLS before 3.1.0, psaaeadgeneratenonce allows policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application...

7.5CVSS7.2AI score0.00923EPSS

Exploits0References3

VulnCheck KEV•added 2021/12/21 12:0 a.m.•2 views

VulnCheck KEV: CVE-2021-24499

The Workreap WordPress theme before 2.2.2 AJAX actions workreapawardtempfileuploader and workreaptempfileuploader did not perform nonce checks, or validate that the request is from a valid user in any other way. The endpoints allowed for uploading arbitrary files to the...

9.8CVSS7.4AI score0.60113EPSS

Exploits9References1

Positive Technologies•added 2021/12/21 12:0 a.m.•3 views

PT-2021-24239 · Mbed Tls +1 · Mbed Tls +1

Name of the Vulnerable Software and Affected Versions: Mbed TLS versions prior to 3.1.0 Description: The issue allows policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application, specifically through the psa aead generate nonce...

9.8CVSS7.8AI score0.02569EPSS

Exploits3References24

WPVulnDB•added 2021/12/16 12:0 a.m.•27 views

Crisp Live Chat < 0.32 - CSRF to Stored Cross-Site Scripting

The plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation via the crisppluginsettingspage function found in the /crisp.php file, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 0.31...

8.8CVSS3.8AI score0.00608EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2021/12/14 12:0 a.m.•5 views

PT-2021-24067 · WordPress · Post Smtp Mailer

Name of the Vulnerable Software and Affected Versions: POST SMTP Mailer plugin for WordPress versions up to, and including, 2.0.20 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on the handleCsvExport function. This allows...

4.3CVSS4.4AI score0.00541EPSS

Exploits0References16