CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/05/23 7:38 a.m.•3 views

CVE-2024-4746

Missing Authorization vulnerability in netgsm Netgsm netgsm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Netgsm: from n/a through = 2.9.32...

6.3CVSS5.9AI score0.00083EPSS

Exploits0References1

OSV•added 2024/06/10 8:15 a.m.•0 views

CVE-2024-4746

Missing Authorization vulnerability in Netgsm.This issue affects Netgsm: from n/a through 2.9.16...

6.3CVSS5.8AI score0.00083EPSS

Exploits0References1

vulnersOsv•added 2024/01/19 9:58 p.m.•2 views

@aem-vite/import-rewriter (>=5.0.1 <=6.0.1), @aem-vite/vite-aem-plugin (>=1.0.0 <=2.3.1) +124 more potentially affected by CVE-2023-34092 +1 more via vite (>=2.7.0 <=2.9.16)

vite NPM version =2.7.0, =5.0.1, =1.0.0, =3.0.0-beta.5, =3.0.0-beta.2, =0.10.0, =1.1.0-next.4, =0.0.0-experimental-17c6886-20220324, =0.0.0-canary-20220428124037, =0.1.5, =0.0.11, =0.0.12, =0.0.1, =0.1.5, =0.0.11, =0.0.37, =0.0.42 and more Source cves: CVE-2023-34092, CVE-2024-23331 Source...

7.5CVSS6.7AI score0.51316EPSS

Exploits2

NVD•added 2023/06/01 5:15 p.m.•16 views

CVE-2023-34092

Vite provides frontend tooling. Prior to versions 2.9.16, 3.2.7, 4.0.5, 4.1.5, 4.2.3, and 4.3.9, Vite Server Options server.fs.deny can be bypassed using double forward-slash // allows any unauthenticated user to read file from the Vite root-path of the application including the default fs.deny...

7.5CVSS7.2AI score0.51316EPSS

Exploits1References3

CNNVD•added 2023/06/01 12:0 a.m.•2 views

Vite 安全漏洞

Vite is a new front-end building tool from Vite open source. A security vulnerability exists in Vite versions 2.9.16, 3.2.7, 4.0.5, 4.1.5, 4.2.3, and 4.3.9. An attacker exploits the vulnerability to read files from the application's Vite root path...

7.5CVSS7.3AI score0.51316EPSS

Exploits1References4

Rosalinux•added 2021/07/02 6:8 p.m.•32 views

Advisory ROSA-SA-2021-1971

Software: snort 2.9.16 OS: Cobalt 7.9 CVE-ID: CVE-2021-1223 CVE-Crit: HIGH CVE-DESC: Several Cisco products are affected by a vulnerability in the Snort discovery engine that could allow an unauthenticated remote attacker to bypass the configured file policy for HTTP. The vulnerability is related...

7.5CVSS6.6AI score0.00646EPSS

Exploits0

Positive Technologies•added 2019/08/16 12:0 a.m.•1 views

PT-2019-13996 · WordPress · Easy Digital Downloads

Name of the Vulnerable Software and Affected Versions: easy-digital-downloads plugin versions prior to 2.9.16 Description: The issue is related to cross-site scripting XSS in the context of IP address logging. This means an attacker could potentially inject malicious scripts into the website,...

6.1CVSS6AI score0.00176EPSS

Exploits0References5

OSV•added 2013/11/29 12:0 a.m.•17 views

DSA-2806-1 nbd - privilege escalation

Bulletin has no description...

7.5CVSS6AI score0.0032EPSS

Exploits0

NVD•added 2005/12/31 5:0 a.m.•10 views

CVE-2005-0038

The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with a label length byte with an incorrect offset, which could trigger an infinite loop...

5CVSS6.6AI score0.00076EPSS

Exploits0References4

UbuntuCve•added 2005/12/31 5:0 a.m.•17 views

CVE-2005-0038

5CVSS5.9AI score0.00076EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by