CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1746 matches found

Vulnrichment•added 2024/01/25 9:0 p.m.•2 views

CVE-2024-0885 SpyCamLizard HTTP GET Request denial of service

A vulnerability classified as problematic has been found in SpyCamLizard 1.230. Affected is an unknown function of the component HTTP GET Request Handler. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...

5.3CVSS6.4AI score0.00128EPSS

Exploits1References3

VulnCheck KEV•added 2024/01/22 12:0 a.m.•2 views

VulnCheck KEV: CVE-2020-5775

Server-Side Request Forgery in Canvas LMS 2020-07-29 allows a remote, unauthenticated attacker to cause the Canvas application to perform HTTP GET requests to arbitrary domains...

5.8CVSS6.3AI score0.65827EPSS

Exploits1References1

NVD•added 2024/01/18 11:15 p.m.•18 views

CVE-2024-0695

A vulnerability, which was classified as problematic, has been found in EFS Easy Chat Server 3.1. Affected by this issue is some unknown functionality of the component HTTP GET Request Handler. The manipulation of the argument USERNAME leads to denial of service. The attack may be launched...

5.3CVSS4.9AI score0.0005EPSS

Exploits1References5

Prion•added 2024/01/18 11:15 p.m.•20 views

Design/Logic Flaw

4CVSS7AI score0.0005EPSS

Exploits1References5Affected Software1

Cvelist•added 2024/01/18 10:31 p.m.•18 views

CVE-2024-0695 EFS Easy Chat Server HTTP GET Request denial of service

4.3CVSS5.6AI score0.0005EPSS

Exploits1References5

CVE•added 2024/01/18 10:31 p.m.•29 views

CVE-2024-0695

CVE-2024-0695 affects EFS Easy Chat Server 3.1. The vulnerability resides in the HTTP GET Request Handler, where manipulating the USERNAME argument causes a remote denial of service. Exploitation is possible remotely and the exploit has been disclosed publicly. Connected sources consistently desc...

5.3CVSS5.3AI score0.0005EPSS

Exploits1References5Affected Software1

NVD•added 2024/01/12 7:15 p.m.•10 views

CVE-2024-0464

A vulnerability classified as critical has been found in code-projects Online Faculty Clearance 1.0. This affects an unknown part of the file deletefaculty.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the...

9.8CVSS7.4AI score0.00056EPSS

Exploits0References3

Prion•added 2024/01/12 7:15 p.m.•20 views

Sql injection

6.5CVSS7.8AI score0.00056EPSS

Exploits0References3Affected Software1

OSV•added 2024/01/11 5:15 p.m.•2 views

CVE-2024-0411

A vulnerability was found in DeShang DSMall up to 6.1.0. It has been classified as problematic. This affects an unknown part of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely...

7.5CVSS4.8AI score0.0023EPSS

Exploits0References3

NVD•added 2024/01/11 5:15 p.m.•11 views

CVE-2024-0411

7.5CVSS6.2AI score0.0023EPSS

Exploits0References3

NVD•added 2024/01/11 5:15 p.m.•10 views

CVE-2024-0412

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. The attack can be initiated remotely...

9.8CVSS6.7AI score0.00278EPSS

Exploits0References3

Prion•added 2024/01/11 5:15 p.m.•17 views

Improper access control

5CVSS7.4AI score0.00278EPSS

Exploits0References3Affected Software1

Prion•added 2024/01/11 5:15 p.m.•19 views

Improper access control

5CVSS7.2AI score0.0023EPSS

Exploits0References3Affected Software1

CVE•added 2024/01/11 4:31 p.m.•51 views

CVE-2024-0412

Affected software: DeShang DSShop up to 3.1.0. Vulnerable component/file: HTTP GET Request Handler, public/install.php. Root cause: improper access controls. Impact: allows remote initiation of exploitation; exploit has been disclosed publicly. Current exploit reliability/availability not quantif...

9.8CVSS9.5AI score0.00278EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/01/11 4:31 p.m.•5 views

CVE-2024-0412 DeShang DSShop HTTP GET Request install.php access control

5.3CVSS9.7AI score0.00278EPSS

Exploits0References3

Cvelist•added 2024/01/11 4:31 p.m.•14 views

CVE-2024-0412 DeShang DSShop HTTP GET Request install.php access control

5.3CVSS9.8AI score0.00278EPSS

Exploits0References3

Vulnrichment•added 2024/01/11 4:31 p.m.•5 views

CVE-2024-0411 DeShang DSMall HTTP GET Request install.php access control

5.3CVSS7.7AI score0.0023EPSS

Exploits0References3

Cvelist•added 2024/01/11 4:31 p.m.•24 views

CVE-2024-0411 DeShang DSMall HTTP GET Request install.php access control

5.3CVSS7.8AI score0.0023EPSS

Exploits0References3

Positive Technologies•added 2024/01/11 12:0 a.m.•3 views

PT-2024-15535 · Deshang · Deshang Dsshop

Name of the Vulnerable Software and Affected Versions: DeShang DSShop versions up to 3.1.0 Description: A vulnerability was found in the HTTP GET Request Handler component, specifically affecting the file public/install.php. This issue leads to improper access controls and can be initiated...

9.8CVSS5.5AI score0.00278EPSS

Exploits0References8

NVD•added 2024/01/10 5:15 a.m.•10 views

CVE-2024-21643

IdentityModel Extensions for .NET provide assemblies for web developers that wish to use federated identity providers for establishing the caller's identity. Anyone leveraging the SignedHttpRequestprotocol or the SignedHttpRequestValidatoris vulnerable. Microsoft.IdentityModel trusts the jkuclaim...

8.8CVSS7.3AI score0.0063EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by