Lucene search
K

11 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-37418 Malicious code in typopro-web-TypoPRO-Asap (npm)

The package typopro-web-TypoPRO-Asap was found to contain malicious code...

7.2AI score
Exploits0
Circl
Circl
added 2024/07/09 1:56 p.m.7 views

CVE-2024-37418

creationtimestamp| type| source ---|---|--- 2024-07-09 13:56:02+00:00| seen| https://t.me/cvedetector/318...

9.9CVSS4.8AI score0.00537EPSS
Exploits0References1
OSV
OSV
added 2024/07/09 11:15 a.m.5 views

CVE-2024-37418

Unrestricted Upload of File with Dangerous Type vulnerability in Andy Moyle Church Admin allows Upload a Web Shell to a Web Server.This issue affects Church Admin: from n/a through 4.4.6...

9.9CVSS5.8AI score0.00537EPSS
Exploits0References1
CVE
CVE
added 2024/07/09 10:15 a.m.50 views

CVE-2024-37418

CVE-2024-37418 is an Unrestricted Upload of File with Dangerous Type in the WordPress plugin Church Admin (affected up to 4.4.6). The issue allows uploading a web shell to the web server and is rated critical (CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H; base score 9.9). Public sources in the c...

9.9CVSS5.9AI score0.00537EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/09 10:15 a.m.12 views

CVE-2024-37418 WordPress Church Admin plugin <= 4.4.6 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in andymoyle Church Admin church-admin.This issue affects Church Admin: from n/a through = 4.4.6...

9.9CVSS5.2AI score0.00537EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/04 12:0 a.m.11 views

WordPress Church Admin Plugin <= 4.4.6 is vulnerable to Arbitrary File Upload

Software Church Admin Type Plugin Vulnerable versions = 4.4.6 Fixed in 4.4.7 OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-37418 Patch priority High CVSS severity High 9.9 Developer Andy Moyle PSID 3fae9e77c92b Credits Peng Zhou Required privilege Subscriber Publish...

9.9CVSS6.8AI score0.00537EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/01/08 2:47 p.m.66 views

CVE-2023-37418

CVE-2023-37418 affects GTKWave, with multiple out-of-bounds write vulnerabilities in the VCD parse_valuechange portdump functionality (and related vcd2vzt conversion). A specially crafted VCD file can lead to arbitrary code execution when opened, per the initial entry and corroborating Debian/Fed...

7.8CVSS8AI score0.00432EPSS
Exploits1References3Affected Software1
Circl
Circl
added 2022/08/24 12:22 p.m.7 views

CVE-2022-37418

creationtimestamp| type| source ---|---|--- 2022-08-24 12:22:28+00:00| seen| https://t.me/cibsecurity/48634 2025-08-15 15:00:06+00:00| published-proof-of-concept| Telegram/Olq0FhY4DAGM0IoqeGbjJtXzvAunOMRob1gJEPg1rMPHws...

6.4CVSS6.6AI score0.00902EPSS
Exploits1References1
CVE
CVE
added 2022/08/24 5:9 a.m.78 views

CVE-2022-37418

The CVE-2022-37418 issue concerns the Remote Keyless Entry (RKE) receiving unit used in Nissan, Kia, and Hyundai vehicles through 2017. The vulnerability arises when an attacker captures two consecutive valid key fob signals over the radio, enabling a RollBack replay attack that allows the attack...

6.4CVSS6.5AI score0.00902EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2021/09/10 2:43 p.m.40 views

CVE-2021-37418

CVE-2021-37418 is a duplicate/reserved entry for CVE-2021-31874. Connected sources confirm the underlying issue affects Zoho ManageEngine ADSelfService Plus prior to 6104, where, in rare situations, an information disclosure vulnerability could allow an attacker to obtain sensitive information fr...

5.7AI score
Exploits0
Cvelist
Cvelist
added 2021/09/10 2:43 p.m.15 views

CVE-2021-37418

...

Exploits0
Rows per page
Query Builder