Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2426 matches found

OSV
OSVadded 2024/11/22 8:15 p.m.3 views

CVE-2023-51641

Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a...

6.3CVSS6.2AI score0.01259EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2024/11/22 8:15 p.m.1 views

CVE-2023-51641

Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, product implements a...

9.8CVSS6.3AI score0.01259EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2024/11/22 8:15 p.m.3 views

CVE-2023-39470

PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists with...

7.2CVSS7.6AI score0.01707EPSS
Exploits0References3
OSV
OSVadded 2024/11/22 8:15 p.m.3 views

CVE-2023-39470

PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists with...

7.2CVSS6.2AI score0.01707EPSS
Exploits0References2
EUVD
EUVDadded 2024/11/22 8:5 p.m.3 views

EUVD-2024-47121

Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.2CVSS7.4AI score0.0151EPSS
Exploits0References2
EUVD
EUVDadded 2024/11/22 8:5 p.m.5 views

EUVD-2024-47120

Allegra renderFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7.2CVSS7.4AI score0.01508EPSS
Exploits0References2
EUVD
EUVDadded 2024/11/22 8:4 p.m.3 views

EUVD-2023-43193

PaperCut NG print.script.sandboxed Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists with...

7.2CVSS7.4AI score0.01707EPSS
Exploits0References2
Atlassian
Atlassianadded 2024/11/22 1:6 a.m.22 views

com.amazonaws:aws-java-sdk-s3 Dependency in Bamboo Data Center and Server

This High severity com.amazonaws:aws-java-sdk-s3 Dependency vulnerability was introduced in versions 9.0.0, 9.1.0, and 9.2.1 of Bamboo Data Center and Server. This com.amazonaws:aws-java-sdk-s3 Dependency vulnerability, with a CVSS Score of 7.9 and a CVSS Vector of...

7.9CVSS6.3AI score0.01193EPSS
Exploits1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/20 12:0 a.m.10 views

Microsoft SharePoint Server FindSpecific Unsafe Reflection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the FindSpecific method. The process does not properly...

7.2CVSS7.1AI score0.50835EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/19 12:0 a.m.6 views

Trend Micro Deep Security Agent Manual Scan Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Deep Security Agent. Authentication is required to exploit this vulnerability. The specific flaw exists within the Trend Micro Deep Security Notifier service. The issue results from the...

7.5CVSS7.3AI score0.04032EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/19 12:0 a.m.15 views

WordPress Core maybe_unserialize Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of WordPress Core. Authentication may be required to exploit this vulnerability, depending on the product configuration. The specific flaw exists within the maybeunserialize function. The issue results...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.7 views

Ivanti Endpoint Manager DBDR SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the DBDR class. The issue results from the lack of proper...

7.2CVSS7.7AI score0.01667EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.6 views

Ivanti Endpoint Manager Report_Run2 SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the ReportRun2 class. The issue results from the lack of proper validation of a...

7.2CVSS7.7AI score0.03075EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.5 views

Ivanti Endpoint Manager MP_VistaReport SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the MPVistaReport class. The issue results from the lack of proper validation of a...

7.2CVSS7.7AI score0.03301EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.10 views

Ivanti Endpoint Manager GetFilePath Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the GetFilePath method. The issue results from the lack of...

7.2CVSS7.3AI score0.18184EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.6 views

Ivanti Endpoint Manager serverStorage SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the serverStorage class. The issue results from the lack of proper validation of a...

7.2CVSS7.7AI score0.25814EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.8 views

Ivanti Endpoint Manager ROI SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the ROI class. The issue results from the lack of proper validation of a user-suppli...

7.2CVSS7.7AI score0.01024EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.5 views

Ivanti Endpoint Manager GetCountForQuery SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the GetCountForQuery method. The issue results from the lack o...

7.2CVSS7.7AI score0.03301EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.7 views

Ivanti Endpoint Manager Report_Run SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the ReportRun class. The issue results from the lack of proper validation of a...

7.2CVSS7.3AI score0.67711EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2024/11/13 12:0 a.m.8 views

Ivanti Endpoint Manager PatchHistory SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the PatchHistory class. The issue results from the lack of proper validation of a...

7.2CVSS7.7AI score0.01667EPSS
Exploits0References1
Rows per page
Query Builder