Lucene search
+L

460 matches found

Vulnrichment
Vulnrichment
added 2026/03/12 1:33 a.m.4 views

CVE-2026-1182 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.14 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to gain unauthorized access to confidential issue title created in public projects under certain circumstances...

4.3CVSS5.8AI score0.00194EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/12 12:0 a.m.5 views

SAP Netweaver Visual Composer Unrestricted File Upload (3084487)

SAP NetWeaver Visual Composer 7.0 RT versions - 7.30, 7.31, 7.40, 7.50, without restriction, an attacker authenticated as a non-administrative user can upload a malicious file over a network and trigger its processing, which is capable of running operating system commands with the privilege of th...

9.9CVSS7.3AI score0.35447EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/11 8:2 a.m.28 views

CVE-2024-14026 QTS, QuTS hero

A command injection vulnerability has been reported to affect several QNAP operating system versions. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in th...

5.4CVSS0.00624EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/27 4:41 p.m.24 views

CVE-2026-24488 OpenEMR Vulnerable to Arbitrary File Exfiltration via Fax Endpoint

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, an arbitrary file exfiltration vulnerability in the fax sending endpoint allows any authenticated user to read and transmit any file on the server...

6.5CVSS0.00399EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/02/26 10:7 p.m.4 views

CVE-2026-27839

wger is a free, open-source workout and fitness manager. In versions up to and including 2.4, three nutritionalvalues action endpoints fetch objects via Model.objects.getpk=pk — a raw ORM call that bypasses the user-scoped queryset. Any authenticated user can read another user's private nutrition...

4.3CVSS5.9AI score0.0026EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2026/02/24 3:21 p.m.15 views

CVE-2026-27567

Payload is a free and open source headless content management system. Prior to 3.75.0, a Server-Side Request Forgery SSRF vulnerability exists in Payload's external file upload functionality. When processing external URLs for file uploads, insufficient validation of HTTP redirects could allow an...

6.5CVSS0.00288EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/19 12:2 p.m.3 views

CVE-2019-25404

Comodo Dome Firewall 2.7.0 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting crafted input through admin management parameters. Attackers can inject script payloads in the adminname, name, and surname parameters via...

6.4CVSS5.2AI score0.00301EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/19 4:36 a.m.2 views

CVE-2026-1373 Easy Author Image <= 1.7 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Profile Picture URL

The Easy Author Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'authorprofilepictureurl' parameter in all versions up to, and including, 1.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS5.7AI score0.00152EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/10 3:4 a.m.3 views

CVE-2026-24327 Missing Authorization Check in SAP Strategic Enterprise Management (Balanced Scorecard in BSP Application)

Due to missing authorization check in SAP Strategic Enterprise Management Balanced Scorecard in Business Server Pages, an authenticated attacker could access information that they are otherwise unauthorized to view. This leads to low impact on confidentiality and no effect on integrity or...

4.3CVSS5.5AI score0.00221EPSS
Exploits0References2
CVE
CVE
added 2026/02/05 9:13 a.m.22 views

CVE-2026-1271

The CVE concerns the ProfileGrid – User Profiles, Groups and Communities WordPress plugin. It affects all versions up to 5.9.7.2 and enables Insecure Direct Object Reference via the pm_upload_image and pm_upload_cover_image AJAX actions. The root cause is update_user_meta() being called outside t...

5.3CVSS5.3AI score0.00315EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/01/29 5:39 p.m.4 views

CVE-2026-24780 AutoGPT is Vulnerable to RCE via Disabled Block Execution

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Prior to autogpt-platform-beta-v0.6.44, AutoGPT Platform's block execution endpoints both main web API and external API allow executing blocks by UUID...

9.4CVSS6.2AI score0.01147EPSS
Exploits1References6
CVE
CVE
added 2026/01/16 12:6 a.m.21 views

CVE-2025-64691

CVE-2025-64691 affects AVEVA Process Optimization (Code Injection) where an authenticated OS-standard user can tamper TCL Macro scripts to escalate privileges to OS system, potentially fully compromising the Model Application Server. Public summaries describe local, authenticated, user-level acce...

9.3CVSS6.6AI score0.00293EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/01/14 7:16 p.m.12 views

CVE-2026-23477

Rocket.Chat is an open-source, secure, fully customizable communications platform. In Rocket.Chat versions up to 6.12.0, the API endpoint GET /api/v1/oauth-apps.get is exposed to any authenticated user, regardless of their role or permissions. This endpoint returns an OAuth application, as long a...

7.7CVSS0.00306EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/01/14 6:16 p.m.2 views

CVE-2026-23477

Rocket.Chat is an open-source, secure, fully customizable communications platform. In Rocket.Chat versions up to 6.12.0, the API endpoint GET /api/v1/oauth-apps.get is exposed to any authenticated user, regardless of their role or permissions. This endpoint returns an OAuth application, as long a...

7.7CVSS5.5AI score0.00306EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 12:38 p.m.11 views

CVE-2023-50944

Apache Airflow, versions before 2.8.1, have a vulnerability that allows an authenticated user to access the source code of a DAG to which they don't have access. This vulnerability is considered low since it requires an authenticated user to exploit it. Users are recommended to upgrade to version...

6.5CVSS6.5AI score0.00971EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.10 views

CVE-2022-0447

The Post Grid WordPress plugin before 2.1.16 does not sanitise and escape the posttypes parameter before outputting it back in the response of the postgridupdatetaxonomiestermsbyposttypes AJAX action, available to any authenticated users, leading to a Reflected Cross-Site Scripting...

6.4CVSS6.4AI score0.00632EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:43 a.m.18 views

CVE-2022-26344

Incorrect default permissions in the installation binaries for IntelR SEAPI all versions may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.1AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:6 a.m.8 views

CVE-2019-20453

A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basic privileges can inject objects and achieve remote code execution...

8.8CVSS7.8AI score0.02135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:56 a.m.10 views

CVE-2020-12927

A potential vulnerability in a dynamically loaded AMD driver in AMD VBIOS Flash Tool SDK may allow any authenticated user to escalate privileges to NT authority system...

7.8CVSS7AI score0.00344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:55 a.m.11 views

CVE-2020-12928

A vulnerability in a dynamically loaded AMD driver in AMD Ryzen Master V15 may allow any authenticated user to escalate privileges to NT authority system...

7.8CVSS6.9AI score0.01302EPSS
Exploits0References1
Rows per page
Query Builder