CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1388 matches found

CNNVD•added 2024/01/25 12:0 a.m.•2 views

Dell NetWorker 安全漏洞

Dell NetWorker is an application from Dell USA Inc. Provides forum discussion features for Dell Inc. An information disclosure vulnerability exists in Dell NetWorker, which arises from the database storing plain text passwords in a temporary configuration file during backups, and can be exploited...

7.8CVSS6.5AI score0.00058EPSS

Exploits0References3

Tenable Nessus•added 2024/01/16 12:0 a.m.•37 views

EulerOS Virtualization 3.0.6.6 : git (EulerOS-SA-2023-3398)

According to the versions of the git packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3,...

7.8CVSS7AI score0.03559EPSS

Exploits2References4

Positive Technologies•added 2024/01/11 12:0 a.m.•3 views

PT-2024-1448 · Unknown · Rapid Scada

Name of the Vulnerable Software and Affected Versions: Rapid SCADA versions prior to Version 5.8.4 Description: The issue is related to a Zip Slip vulnerability in the unpacking routine, allowing an attacker to supply a malicious configuration file and achieve remote code execution. This can be...

9CVSS8.9AI score0.01151EPSS

Exploits0References8

VulnCheck KEV•added 2023/12/24 12:0 a.m.•1 views

VulnCheck KEV: CVE-2021-24227

The Jetpack Scan team identified a Local File Disclosure vulnerability in the Patreon WordPress plugin before 1.7.0 that could be abused by anyone visiting the site. Using this attack vector, an attacker could leak important internal files like wp-config.php, which contains database credentials...

7.5CVSS7.1AI score0.38694EPSS

Exploits1References1

CNNVD•added 2023/12/09 12:0 a.m.•4 views

NCP Engineering Secure Enterprise Client Security Vulnerability

Ncp Engineering NCP engineering Secure Enterprise Client is a VPN Virtual Private Network client application from the German company Ncp Engineering. A security vulnerability exists in NCP engineering Secure Enterprise Client versions prior to 12.22, which stems from the presence of insecure file...

6.5CVSS6.7AI score0.00055EPSS

Exploits1References2

NVD•added 2023/11/15 10:15 p.m.•9 views

CVE-2023-47444

An issue discovered in OpenCart 4.0.0.0 to 4.0.2.3 allows authenticated backend users having common/security write privilege can write arbitrary untrusted data inside config.php and admin/config.php, resulting in remote code execution on the underlying server...

8.8CVSS0.03974EPSS

Exploits1References1

ATTACKERKB•added 2023/11/15 10:15 p.m.•2 views

CVE-2023-47444

8.8CVSS7.9AI score0.03974EPSS

Exploits1References2

CVE•added 2023/11/14 11:3 a.m.•96 views

CVE-2023-44319

CVE-2023-44319 affects Siemens SCALANCE and RUGGEDCOM devices (e.g., RM1224 LTE, M8xx/UM8xx/SCALANCE S615/WAB/WUM/WAM series). Root cause: use of a weak checksum algorithm to protect exported configuration backups, enabling an authenticated admin or a tricked admin to upload a modified backup and...

6.9CVSS5.2AI score0.00055EPSS

Exploits0References6Affected Software1

NVD•added 2023/11/07 9:15 a.m.•13 views

CVE-2023-46851

Allura Discussion and Allura Forum importing does not restrict URL values specified in attachments. Project administrators can run these imports, which could cause Allura to read local files and expose them. Exposing internal files then can lead to other exploits, like session hijacking, or remot...

4.9CVSS0.0031EPSS

Exploits0References2

Positive Technologies•added 2023/11/06 12:0 a.m.•3 views

PT-2023-12543

Name of the Vulnerable Software and Affected Versions Ortus Solutions ColdBox Elixir version 3.1.6 Description A problematic vulnerability has been found in Ortus Solutions ColdBox Elixir, affecting the ENV Variable Handler component, specifically the file src/defaultConfig.js. This issue leads t...

7.5CVSS5.8AI score0.00096EPSS

Exploits0References8

Fedora•added 2023/11/03 6:55 p.m.•37 views

[SECURITY] Fedora 39 Update: python-configobj-5.0.8-6.fc39

ConfigObj is a simple but powerful configuration file reader and writer: an i ni file round tripper. Its main feature is that it is very easy to use, with a straightforward programmers interface and a simple syntax for config files...

5.9CVSS5.3AI score0.0009EPSS

Exploits1