Lucene search
K

59 matches found

RedhatCVE
RedhatCVE
added 2026/02/05 7:23 p.m.6 views

CVE-2026-20098

A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary files, execute arbitrary commands, and elevate privileges to root on an affected system. This vulnerability is due to improper input validation in...

8.8CVSS6.2AI score0.00384EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2000-0013

Malware in sbrugna...

7.2CVSS6.4AI score0.00697EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-1944

Malware in sbrugna...

7.5CVSS6.4AI score0.01229EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-1213

Malware in sbrugna...

6.9CVSS6.4AI score0.00372EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4865

Malware in sbrugna...

6.8CVSS6.1AI score0.00379EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/10/02 12:0 a.m.25 views

CVE-2024-24117

Insecure Permissions vulnerability in Ruijie RG-NBS2009G-P RGOS v.10.41P2 Release 9736 allows a remote attacker to gain privileges via the login check state component...

0.00657EPSS
Exploits1References2
Kaspersky
Kaspersky
added 2024/07/09 12:0 a.m.30 views

KLA70412 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, gain privileges, obtain sensitive information, spoof user interface, read local...

9.8CVSS10AI score0.84345EPSS
Exploits7References83
NVD
NVD
added 2023/08/08 4:15 p.m.33 views

CVE-2023-38758

Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows a remote attacker to gain privileges via the licenseauthor field in the add-ingredient function in the templates/ingredients/view.html, models/ingredients.py, and views/ingredients.py components...

5.4CVSS5.5AI score0.00467EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.5 views

SUSE CVE-2005-2876

umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r remount option, which causes the file system to be remounted with just the read-only flag, which effectively clears the...

7.2CVSS7.1AI score0.00426EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2023/01/10 12:0 a.m.310 views

KLA20154 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A denial of...

9.1CVSS9.8AI score0.91597EPSS
Exploits16References85
Vulnrichment
Vulnrichment
added 2022/12/25 12:0 a.m.9 views

CVE-2022-37706

enlightenmentsys in Enlightenment before 0.25.4 allows local users to gain privileges because it is setuid root, and the system library function mishandles pathnames that begin with a /dev/.. substring...

7.6AI score0.05486EPSS
Exploits15References3
Cvelist
Cvelist
added 2022/03/16 12:29 p.m.19 views

CVE-2021-45786

In maccms v10, an attacker can log in through /index.php/user/login in the "col" and "openid" parameters to gain privileges...

9.8AI score0.01179EPSS
Exploits1References1
Kaspersky
Kaspersky
added 2021/07/13 12:0 a.m.61 views

KLA12226 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a...

9.8CVSS10AI score0.3067EPSS
Exploits0References58
NVD
NVD
added 2021/01/26 6:15 p.m.18 views

CVE-2020-23449

newbee-mall all versions are affected by incorrect access control to remotely gain privileges through NewBeeMallIndexConfigServiceImpl.java. Unauthorized changes can be made to any user information through the userID...

7.5CVSS7.5AI score0.00869EPSS
Exploits1References1
CNVD
CNVD
added 2021/01/04 12:0 a.m.4 views

File Upload Vulnerability in OpenLab Programming Network Teaching and Exam Platform of Shanghai Rigel Software Co.

OpenLab is a comprehensive teaching management and experiment platform for program design teaching, daily practice, on-line experiment, unit test, mid-term and final exam. A file upload vulnerability exists in the OpenLab Programming Network Teaching and Testing Platform of Shanghai Rigel Softwar...

7.2AI score
Exploits0
CNVD
CNVD
added 2019/06/21 12:0 a.m.2 views

Logic Flaw Vulnerability in eXtplorer Login Interface

eXtplorer is a file management based on PHP and ExtJS development of the text based on PHP and ExtJS development of the file management of the file management device manager . A logic flaw vulnerability exists in the eXtplorer login interface, which can be exploited by an attacker to gain server...

7.2AI score
Exploits0
Kaspersky
Kaspersky
added 2019/05/14 12:0 a.m.71 views

KLA11485 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A deni...

9CVSS8.8AI score0.08464EPSS
Exploits0References41
Kaspersky
Kaspersky
added 2018/10/04 12:0 a.m.506 views

KLA11336 Multiple vulnerabilities in Mozilla Thunderbird

Multiple serious vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Multiple use-after-free vulnerabilities can be exploited...

9.8CVSS9.9AI score0.03662EPSS
Exploits5References3
OSV
OSV
added 2018/08/13 5:29 p.m.4 views

CVE-2018-14850

Stored XSS vulnerabilities in Tiki before 18.2, 15.7 and 12.14 allow an authenticated user injecting JavaScript to gain administrator privileges if an administrator opens a wiki page and moves the mouse pointer over a modified link or thumb image...

5.4CVSS5.8AI score
Exploits0References3
OSV
OSV
added 2018/05/24 2:29 p.m.4 views

CVE-2018-7904

Huawei 1288H V5 and 288H V5 with software of V100R005C00 have a JSON injection vulnerability. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Due to insufficient verification of the input, this could be exploited to obtain the management...

8.8CVSS5.8AI score0.01106EPSS
Exploits0References1
Rows per page
Query Builder