Lucene search
+L

20 matches found

Circl
Circl
added last week11 views

CVE-2026-10665

creationtimestamp| type| source ---|---|--- 2026-07-12 17:35:56+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqhpnzikuj2s 2026-07-12 18:14:59+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mqhrttiqa32o 2026-07-12 19:47:25+00:00| seen|...

7.4CVSS6.1AI score0.00382EPSS
Exploits1References5
CVE
CVE
added last week23 views

CVE-2026-10665

CVE-2026-10665 concerns Zephyr’s WireGuard implementation (subsys/net/lib/wireguard). The flaw: wg_process_data_message() linearizes an inbound payload into a fixed pool buffer, passing the attacker-controlled data_len as both the destination capacity and copy length to net_buf_linearize, ignorin...

7.4CVSS6.2AI score0.00382EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.19 views

CVE-2020-10665

Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the collection of diagnostics with Administrator privileges, leading to arbitrary DACL permissions overwrites and arbitrary file writes. This affects Docker Desktop Enterprise before 2.1.0.9, Docker...

7.2CVSS7.2AI score0.01435EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/09/20 12:32 p.m.14 views

CVE-2025-10665

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. Affected is an unknown function of the file /Profilers/PProfile/COUNT3s3.php. The manipulation of the argument csem leads to sql injection. Remote exploitation of the attack is possible...

6.5CVSS6.5AI score0.00323EPSS
Exploits1References1
NVD
NVD
added 2025/09/18 12:15 p.m.7 views

CVE-2025-10665

A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. Affected is an unknown function of the file /Profilers/PProfile/COUNT3s3.php. The manipulation of the argument csem leads to sql injection. Remote exploitation of the attack is possible...

9.8CVSS0.00323EPSS
Exploits1References4
Circl
Circl
added 2024/11/20 9:40 a.m.7 views

CVE-2024-10665

creationtimestamp| type| source ---|---|--- 2024-11-20 09:40:57+00:00| seen| https://infosec.exchange/users/cve/statuses/113514621003193193 2024-11-20 09:44:38+00:00| seen| https://infosec.exchange/users/cve/statuses/113514635485716870 2024-11-20 12:03:59+00:00| seen| https://t.me/cvedetector/115...

5.4CVSS8.7AI score0.00275EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/11/20 9:31 a.m.15 views

CVE-2024-10665 Yaad Sarig Payment Gateway For WC <= 2.2.4 - Missing Authorization to Authenticated (Subscriber+) Log Read/Deletion

The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized modification & access of data due to a missing capability check on the yaadpayviewlogcallback and yaadpaydeletelogcallback functions in all versions up to, and including, 2.2.4. This makes it possible for...

5.4CVSS0.00275EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/11/20 9:31 a.m.6 views

CVE-2024-10665 Yaad Sarig Payment Gateway For WC <= 2.2.4 - Missing Authorization to Authenticated (Subscriber+) Log Read/Deletion

The Yaad Sarig Payment Gateway For WC plugin for WordPress is vulnerable to unauthorized modification & access of data due to a missing capability check on the yaadpayviewlogcallback and yaadpaydeletelogcallback functions in all versions up to, and including, 2.2.4. This makes it possible for...

5.4CVSS6.5AI score0.00275EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/11/19 12:0 a.m.9 views

WordPress Yaad Sarig Payment Gateway For WC Plugin <= 2.2.4 is vulnerable to Broken Access Control

Software Yaad Sarig Payment Gateway For WC Type Plugin Vulnerable versions = 2.2.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-10665 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 3abf69feafbc Credits BrokenAC igno...

5.4CVSS5.4AI score0.00275EPSS
Exploits0References3Affected Software1
Circl
Circl
added 2020/08/20 3:10 p.m.6 views

CVE-2020-10665

creationtimestamp| type| source ---|---|--- 2020-08-20 15:10:17+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1612 2026-07-18 15:00:05+00:00| seen| https://t.me/reverseame/207 2026-07-19 00:00:12+00:00| published-proof-of-concept| https://t.me/reverseame/207...

7.2CVSS6.4AI score0.01435EPSS
Exploits2References2
GithubExploit
GithubExploit
added 2020/06/25 7:35 a.m.132 views

Exploit for Link Following in Docker Desktop

CVE-2020-10665 Docker Desktop Local Privilege Escalation POC...

7.2CVSS7AI score0.01435EPSS
Exploits2
CVE
CVE
added 2020/03/18 6:45 p.m.89 views

CVE-2020-10665

CVE-2020-10665 affects Docker Desktop on Windows: local privilege escalation to NT AUTHORITY\SYSTEM due to mishandling of diagnostics collection with Administrator privileges, enabling arbitrary DACL overwrites and file writes. Affected products include Docker Desktop Enterprise before 2.1.0.9, D...

7.2CVSS7AI score0.01435EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2020/03/18 6:45 p.m.39 views

CVE-2020-10665

Docker Desktop allows local privilege escalation to NT AUTHORITY\SYSTEM because it mishandles the collection of diagnostics with Administrator privileges, leading to arbitrary DACL permissions overwrites and arbitrary file writes. This affects Docker Desktop Enterprise before 2.1.0.9, Docker...

6.8AI score0.01435EPSS
Exploits2References3
OSV
OSV
added 2019/10/11 6:43 p.m.37 views

GHSA-W5R2-GVGF-MPM8 Improper Encoding or Escaping of Output and Injection in LibreNMS

An issue was discovered in LibreNMS 1.50.1. The scripts that handle graphing options includes/html/graphs/common.inc.php and includes/html/graphs/graphs.inc.php do not sufficiently validate or encode several fields of user supplied input. Some parameters are filtered with mysqlirealescapestring,...

8.8CVSS9.6AI score0.01392EPSS
Exploits1References2
Circl
Circl
added 2019/09/09 4:39 p.m.8 views

CVE-2019-10665

creationtimestamp| type| source ---|---|--- 2019-09-09 16:39:14+00:00| seen| https://t.me/cibsecurity/6603...

9.8CVSS8.7AI score0.01482EPSS
Exploits1References1
CVE
CVE
added 2019/09/09 12:56 p.m.76 views

CVE-2019-10665

LibreNMS (through 1.50.x) contains input handling weaknesses in its graphing scripts (includes/html/graphs/common.inc.php and includes/html/graphs/graphs.inc.php or html/graph.php) that allow injecting RRDtool syntax via newline characters. This occurs because several user-supplied fields are not...

9.8CVSS9.4AI score0.01482EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/06/04 4:0 p.m.67 views

CVE-2016-10665

CVE-2016-10665 affects the herbivore library (built on libtins) where binary resources are downloaded over HTTP (versions around 0.0.3 and below). The underlying issue is insecure HTTP fetching which enables aMan-in-the-middle (MITM) interception and substitution of requested binaries, with poten...

9.3CVSS8.2AI score0.02189EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/08/18 2:29 p.m.4 views

CVE-2017-10665

Directory traversal vulnerability in ajaxfileupload.php in Kayson Group Ltd. phpGrid before 7.2.5 allows remote attackers to execute arbitrary code by uploading a crafted file with a .. dot dot in the file name...

7.8CVSS6.1AI score0.03165EPSS
Exploits1References2
CVE
CVE
added 2017/08/18 2:0 p.m.49 views

CVE-2017-10665

The CVE affects Kayson Group phpGrid prior to version 7.2.5, where a directory traversal flaw in ajaxfileupload.php allows a remote attacker to upload a crafted file whose name contains .. to execute arbitrary code. This is a server-side path traversal issue in the file upload handling, enabling ...

7.8CVSS7.9AI score0.03165EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2017/08/18 2:0 p.m.22 views

CVE-2017-10665

Directory traversal vulnerability in ajaxfileupload.php in Kayson Group Ltd. phpGrid before 7.2.5 allows remote attackers to execute arbitrary code by uploading a crafted file with a .. dot dot in the file name...

7.9AI score0.03165EPSS
Exploits1References2
Rows per page
Query Builder