Lucene search
K

37 matches found

Nuclei
Nuclei
added 5 hours ago76 views

Apache Tapestry - Remote Code Execution

Apache Tapestry contains a critical unauthenticated remote code execution vulnerability. Affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. Note that this vulnerability is a bypass of the fix for CVE-2019-0195. Before that fix it was possible to download arbitrary class files from the...

10CVSS8AI score0.94089EPSS
Exploits5References5
RedhatCVE
RedhatCVE
added 2026/03/27 2:23 p.m.12 views

CVE-2021-27850

A critical unauthenticated remote code execution vulnerability was found all recent versions of Apache Tapestry. The affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. The vulnerability I have found is a bypass of the fix for CVE-2019-0195. Recap: Before the fix of CVE-2019-0195 it was...

10CVSS9.8AI score0.94089EPSS
Exploits5References1
Circl
Circl
added 2026/02/25 8:56 p.m.6 views

CVE-2026-27850

creationtimestamp| type| source ---|---|--- 2026-02-25 20:56:46+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfpkyxnsp72v...

7.5CVSS4.8AI score0.00245EPSS
Exploits0References1
NVD
NVD
added 2026/02/25 6:23 p.m.16 views

CVE-2026-27850

Due to an improperly configured firewall rule, the router will accept any connection on the WAN port with the source port 5222, exposing all services which are normally only accessible through the local network. This issue affects MR9600: 1.0.4.205530; MX4200: 1.0.13.210200...

7.5CVSS0.00245EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-27850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5,...

6.5CVSS6.5AI score0.00655EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:34 a.m.10 views

CVE-2023-27850

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to access arbitrary files on the device...

6.8CVSS6.9AI score0.0034EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:28 p.m.7 views

CVE-2020-27850

A stored Cross-Site Scripting XSS vulnerability in forms import feature in Rocketgenius Gravity Forms before 2.4.21 allows remote attackers to inject arbitrary web script or HTML via the import of a GF form. This code is interpreted by users in a privileged role Administrator, Editor, etc...

4.8CVSS5.5AI score0.00616EPSS
Exploits0
Circl
Circl
added 2025/03/24 9:23 p.m.6 views

CVE-2024-27850

creationtimestamp| type| source ---|---|--- 2025-03-24 21:23:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8548...

6.5CVSS6AI score0.00655EPSS
Exploits0References1
NVD
NVD
added 2024/06/10 9:15 p.m.22 views

CVE-2024-27850

This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user...

6.5CVSS0.00655EPSS
Exploits0References13
OSV
OSV
added 2024/06/10 9:15 p.m.13 views

CVE-2024-27850

This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in visionOS 1.2, macOS Sonoma 14.5, Safari 17.5, iOS 17.5 and iPadOS 17.5. A maliciously crafted webpage may be able to fingerprint the user...

6.5CVSS5.8AI score0.00655EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2024/06/10 9:15 p.m.9 views

CVE-2024-27850

This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user...

6.5CVSS6.5AI score0.00655EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/10 8:56 p.m.23 views

CVE-2024-27850

This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user...

6.6AI score0.00655EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/10 8:56 p.m.26 views

CVE-2024-27850

This issue was addressed with improvements to the noise injection algorithm. This issue is fixed in Safari 17.5, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, visionOS 1.2. A maliciously crafted webpage may be able to fingerprint the user...

0.00655EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/06/10 8:56 p.m.16 views

CVE-2024-27850

Removed by vendor...

6.5CVSS6.1AI score0.00655EPSS
Exploits0
Circl
Circl
added 2023/03/10 8:21 p.m.3 views

CVE-2023-27850

creationtimestamp| type| source ---|---|--- 2023-03-10 20:21:11+00:00| seen| https://t.me/cibsecurity/59804 2025-03-02 11:45:38+00:00| seen| Telegram/yAEPby0xmIpTU9P6q5HoOQwf-Bsf8v2iSOo0W24Q7JJdQhkp...

6.8CVSS6.7AI score0.0034EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/10 12:0 a.m.8 views

CVE-2023-27850

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to access arbitrary files on the device...

6.6AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2023/03/10 12:0 a.m.53 views

CVE-2023-27850

The CVE-2023-27850 issue affects NETGEAR Nighthawk WiFi6 Router versions prior to V1.0.10.94. Root cause: insufficient access control in the router’s file-sharing mechanism, enabling users with access to this feature to read arbitrary files on the device. Impact (as described): potential exposure...

6.8CVSS6.6AI score0.0034EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/03/10 12:0 a.m.16 views

CVE-2023-27850

NETGEAR Nighthawk WiFi6 Router prior to V1.0.10.94 contains a file sharing mechanism that allows users with access to this feature to access arbitrary files on the device...

6.8AI score0.0034EPSS
Exploits0References1
Circl
Circl
added 2022/04/15 8:20 p.m.5 views

CVE-2022-27850

creationtimestamp| type| source ---|---|--- 2022-04-15 20:20:21+00:00| seen| https://t.me/cibsecurity/40885...

5.4CVSS4.6AI score0.00374EPSS
Exploits0References1
NVD
NVD
added 2022/04/15 5:15 p.m.12 views

CVE-2022-27850

Cross-Site Request Forgery CSRF in Simple Ajax Chat WordPress plugin = 20220115 allows an attacker to clear the chat log or delete a chat message...

5.4CVSS0.00374EPSS
Exploits0References2
Rows per page
Query Builder