Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

Circl
Circladded 2025/01/08 6:16 p.m.1 views

CVE-2023-28700

creationtimestamp| type| source ---|---|--- 2025-01-08 18:16:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/758...

6.8CVSS6.5AI score0.00131EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/06/02 12:0 a.m.12 views

CVE-2023-28700 ITPison OMICARD EDM - Arbitrary File Upload

OMICARD EDM backend system’s file uploading function does not restrict upload of file with dangerous type. A local area network attacker with administrator privileges can exploit this vulnerability to upload and run arbitrary executable files to perform arbitrary system commands or disrupt servic...

6.8CVSS7AI score0.00131EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/06/02 12:0 a.m.8 views

CVE-2023-28700 ITPison OMICARD EDM - Arbitrary File Upload

OMICARD EDM backend system’s file uploading function does not restrict upload of file with dangerous type. A local area network attacker with administrator privileges can exploit this vulnerability to upload and run arbitrary executable files to perform arbitrary system commands or disrupt servic...

6.8CVSS7.1AI score0.00131EPSS
Exploits0References1
CVE
CVEadded 2023/06/02 12:0 a.m.29 views

CVE-2023-28700

Summary: CVE-2023-28700 affects the OMICARD EDM backend system. The file-upload function does not restrict dangerous file types. A LAN attacker with administrator privileges can upload and run arbitrary executables, enabling arbitrary system commands or service disruption. Root cause (as describe...

6.8CVSS6.8AI score0.00131EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVASadded 2022/07/22 12:0 a.m.13 views

WordPress GiveWP Plugin <= 2.20.2 Multiple Vulnerabilities

The WordPress plugin Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

9.1CVSS5.8AI score0.12546EPSS
Exploits0References2
Circl
Circladded 2022/07/21 10:23 p.m.2 views

CVE-2022-28700

creationtimestamp| type| source ---|---|--- 2022-07-21 22:23:36+00:00| seen| https://t.me/cibsecurity/46772...

9.1CVSS7AI score0.12546EPSS
Exploits0References1
CVE
CVEadded 2022/07/21 5:23 p.m.86 views

CVE-2022-28700

CVE-2022-28700 corresponds to a vulnerability in the WordPress GiveWP plugin, affected versions

9.1CVSS7.1AI score0.12546EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/07/21 5:23 p.m.7 views

CVE-2022-28700 WordPress GiveWP plugin <= 2.20.2 - Authenticated Arbitrary File Creation via Export function vulnerability

Authenticated Arbitrary File Creation via Export function vulnerability in GiveWP's GiveWP plugin = 2.20.2 at WordPress...

9.1CVSS9.2AI score0.12546EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2022/04/19 12:0 a.m.34 views

No memory limit for dom0less domUs (XSA-383)

The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allows a domain to allocate memory beyond what an administrator originally configured. Note that Nessus has not tested for this issue...

6.8CVSS5.2AI score0.02126EPSS
Exploits0References2
Debian
Debianadded 2021/09/20 7:8 p.m.36 views

[SECURITY] [DSA 4977-1] xen security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4977-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 20, 2021 https://www.debian.org/security/faq -...

7.8CVSS8.1AI score0.02126EPSS
Exploits0
OpenVAS
OpenVASadded 2021/09/03 12:0 a.m.28 views

openSUSE: Security Advisory for xen (openSUSE-SU-2021:2923-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS6.8AI score0.02126EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/09/03 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2021:2923-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.02126EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/09/03 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2021:2922-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.02126EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/09/03 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2021:2924-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.02126EPSS
Exploits0References24
OPENSUSE Linux
OPENSUSE Linuxadded 2021/09/02 12:0 a.m.75 views

Security update for xen (important)

openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2021:2923-1 Rating: important References: 1027519 1176189 1179246 1183243 1183877 1185682 1186428 1186429 1186433 1186434 1187406 1188050 1189373 1189376 1189378 1189380 1189381 1189882 Cross-References: CVE-2021-0089...

8.4CVSS7.5AI score0.02126EPSS
Exploits0References18
Circl
Circladded 2021/08/27 10:28 p.m.1 views

CVE-2021-28700

creationtimestamp| type| source ---|---|--- 2021-08-27 22:28:38+00:00| seen| https://t.me/cibsecurity/27968...

6.8CVSS4.9AI score0.02126EPSS
Exploits0References1
NVD
NVDadded 2021/08/27 7:15 p.m.13 views

CVE-2021-28700

xen/arm: No memory limit for dom0less domUs The dom0less feature allows an administrator to create multiple unprivileged domains directly from Xen. Unfortunately, the memory limit from them is not set. This allow a domain to allocate memory beyond what an administrator originally configured...

6.8CVSS0.02126EPSS
Exploits0References6
CVE
CVEadded 2021/08/27 6:15 p.m.140 views

CVE-2021-28700

Summary: CVE-2021-28700 affects the Xen hypervisor, specifically the dom0less domU path on ARM, where the memory limit for unprivileged domains is not set. This can allow a domain to allocate more memory than configured. The issue is listed among Xen vulnerabilities (XSA-383) and appears in multi...

6.8CVSS5.9AI score0.02126EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVEadded 2021/08/25 1:8 p.m.25 views

CVE-2021-28700

No description is available for this CVE...

6.8CVSS1.3AI score0.02126EPSS
Exploits0References1
Rows per page
Query Builder