CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1234 matches found

Prion•added 2022/06/24 3:15 p.m.•11 views

Cross site request forgery (csrf)

Concrete CMS Versions 9.0.0 through 9.0.2 and 8.5.7 and below can download zip files over HTTP and execute code from those zip files which could lead to an RCE. Fixed by enforcing ‘concretesecure’ instead of ‘concrete’. Concrete now only makes requests over https even a request comes in via http...

7.5CVSS9.5AI score0.00663EPSS

Exploits0References3Affected Software1

CVE•added 2022/06/24 3:0 p.m.•99 views

CVE-2022-21829

CVE-2022-21829 affects Concrete CMS, specifically versions 9.0.0–9.0.2 and 8.5.7 and earlier. The issue allows an attacker to download zip files over HTTP and execute code from those zips, enabling remote code execution (RCE). The root cause is insecure HTTP requests for zip handling, which can b...

9.8CVSS9.5AI score0.00663EPSS

Exploits0References3Affected Software1

Debian CVE•added 2022/06/24 12:0 a.m.•43 views

CVE-2022-32209

Possible XSS Vulnerability in Rails::Html::SanitizerThere is a possible XSS vulnerability with certain configurations of Rails::Html::Sanitizer.This vulnerability has been assigned the CVE identifier CVE-2022-32209.Versions Affected: ALLNot affected: NONEFixed Versions: v1.4.3 ImpactA possible XS...

6.1CVSS6.3AI score0.05478EPSS

Exploits1

Nextcloud•added 2022/05/30 10:58 a.m.•28 views

Improper input-size validation on the user new session name

None...

4.3CVSS4.8AI score0.0087EPSS

Exploits0References2Affected Software1

Hacker One•added 2022/05/26 12:34 a.m.•55 views

HackerOne: HTML Injection in email via Name field

Hello Gents, I would like to report an issue where attackers are able to inject HTML into the Name field at app.qualified.dev. Steps to reproduce: 1. Please register at https://app.qualified.dev/signup 2. Inject the Namefield with any HTML payload. 3. Open the victim's test email, HTML will be...

2.7AI score

Exploits0

Hacker One•added 2022/05/22 2:41 a.m.•4 views

HackerOne: Banned user still has access to their deleted account via HackerOne's API using their API key

The user's banned account could still be accessed using their previously generated API token, allowing them to perform actions such as retrieving reports, balance, earnings, payouts, weaknesses, and program information. This vulnerability was discovered and exploited on a test account...

7AI score

Exploits0

Nextcloud•added 2022/05/20 8:8 a.m.•27 views

Possibility for anyone to add a stack with existing tasks on anyone's board in the Deck app

None...

5CVSS4.8AI score0.00296EPSS

Exploits1References2Affected Software1

Hacker One•added 2022/05/11 7:10 a.m.•59 views

Internet Bug Bounty: CVE-2022-30115: HSTS bypass via trailing dot

Advisory: https://curl.se/docs/CVE-2022-30115.html Original Report: https://hackerone.com/reports/1557449 Impact HSTS bypass...

4CVSS6.3AI score0.00108EPSS

Exploits1

Hacker One•added 2022/05/11 7:2 a.m.•105 views

Internet Bug Bounty: CVE-2022-27779: cookie for trailing dot TLD

Published Advisory: https://curl.se/docs/CVE-2022-27779.html Original Report: https://hackerone.com/reports/1553301 Impact This can allow arbitrary sites to set cookies that then would get sent to a different and unrelated site or domain. ie. conduct session fixation attacks...

5CVSS6.6AI score0.00311EPSS

Exploits1

Nextcloud•added 2022/05/10 12:41 p.m.•55 views

Moderator can enable cam/mic remotely if cam/mic-permission was disabled while user has activated cam/mic

None...

4.3CVSS4.8AI score0.00277EPSS

Exploits1References2Affected Software1

Hacker One•added 2022/05/05 1:7 a.m.•21 views

Internet Bug Bounty: rubygems.org Batching attack to `confirmation_token` by bypass rate limit

The following is copied from hackerone's report. https://hackerone.com/reports/1529183 --- I confirmed that EmailConfirmationsController has the same problem as https://hackerone.com/reports/449356...

7AI score

Exploits0

Huntr•added 2022/05/01 5:46 a.m.•230 views

Stored XSS Via Markdown payload at HackerOne Settings

Description Rengine supports automatic vulnerability reporting to hackerone the module included a feature to customize the report using a markdown editor. Although it was blocking some malicious payloads, the Cross-Site Scripting was found exploitable via a special payload. Proof of Concept 1. Go...

5.8AI score

Exploits0

Nextcloud•added 2022/04/27 7:27 a.m.•31 views

Force an admin to install recommended applications

None...

4.3CVSS4.8AI score0.0016EPSS

Exploits1References2Affected Software1

Nextcloud•added 2022/04/27 7:23 a.m.•31 views

Control character filtering misses leading and trailing whitespace in file and folder names

None...

5CVSS4.8AI score0.00382EPSS

Exploits0References2Affected Software1

Nextcloud•added 2022/04/27 7:20 a.m.•30 views

Can bypass the lock protection in Android Files app

None...

2.4CVSS4.5AI score0.00094EPSS

Exploits1References2Affected Software1

Nextcloud•added 2022/04/26 7:51 a.m.•36 views

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Server

None...

9.8CVSS8.7AI score0.01352EPSS

Exploits0References4Affected Software1

Hacker One•added 2022/04/14 6:55 a.m.•64 views

HackerOne: Race condition in joining CTF group

Summary: A race condition in https://ctf.hacker101.com/group/join allows a user to join the same CTF group multiple times. The user will show up in the group member list multiple times, and affect the group statistics. Description: Interestingly a race condition in this feature was reported in...

7.3AI score

Exploits0

OSV•added 2022/04/11 9:18 p.m.•57 views

GHSA-CRJR-9RC5-GHW8 Nokogiri Inefficient Regular Expression Complexity

Summary Nokogiri = 1.13.4. Severity The Nokogiri maintainers have evaluated this as High Severity 7.5 CVSS3.1. References CWE-1333 Inefficient Regular Expression Complexity Credit This vulnerability was reported by HackerOne user oooooooq ななおく...

7.5CVSS7.4AI score0.01827EPSS

Exploits0References15