Lucene search
+L

598 matches found

Prion
Prion
added 2022/01/25 8:15 p.m.18 views

Design/Logic Flaw

On BIG-IP ASM & Advanced WAF version 16.1.x before 16.1.2, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, an authenticated user with low privileges, such as a guest, can upload data using an undisclosed REST endpoint causing an increase in disk resource...

4CVSS4.6AI score0.00739EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/01/25 7:11 p.m.111 views

CVE-2022-23026

CVE-2022-23026 affects F5 BIG-IP ASM and Advanced WAF (REST API endpoint). An authenticated user with low privileges (e.g., guest) can upload data via an undisclosed REST endpoint, causing increased disk resource utilization. This is a control-plane issue with no data-plane exposure. According to...

4.3CVSS4.9AI score0.00739EPSS
Exploits0References1Affected Software2
WPVulnDB
WPVulnDB
added 2022/01/03 12:0 a.m.21 views

Document Embedder < 1.7.5 - Unauthenticated Arbitrary Private/Draft Post Title Disclosure

The plugin contains a REST endpoint, which could allow unauthenticated users to enumerate the title of arbitrary private and draft posts. PoC https://example.com/wp-json/doc/v1/single/509 509 being the ID of a private/draft Post...

5.3CVSS1.5AI score0.01327EPSS
Exploits2Affected Software1
CNNVD
CNNVD
added 2021/12/27 12:0 a.m.5 views

WordPress 插件安全漏洞

WordPress is the Wordpress Foundation's suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress WP Guppy Plugin prior to version 1.3 is vulnerable to an information disclosure vulnerability tha...

6.5CVSS5.7AI score0.02753EPSS
Exploits2References2
NVD
NVD
added 2021/11/08 6:15 p.m.20 views

CVE-2021-24840

The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the queryvars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retrieved via a crafted request...

5.3CVSS0.01131EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/10/11 12:0 a.m.18 views

Squaretype Modern Blog < 3.0.4 - Unauthenticated Private/Schedule Posts Disclosure

The theme allows unauthenticated users to manipulate the queryvars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retrieved via a crafted request. PoC POST /wp-json/csco/v1/more-posts Accept:...

5.3CVSS2.3AI score0.01131EPSS
Exploits2Affected Software1
NVD
NVD
added 2021/06/01 2:15 p.m.34 views

CVE-2021-32647

Emissary is a P2P based data-driven workflow engine. Affected versions of Emissary are vulnerable to post-authentication Remote Code Execution RCE. The CreatePlace REST endpoint accepts an sppClassName parameter which is used to load an arbitrary class. This class is later instantiated using a...

9.1CVSS0.0285EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/28 11:5 p.m.35 views

CVE-2021-32647 Post-authentication Remote Code Execution (RCE) in emissary:emissary

Emissary is a P2P based data-driven workflow engine. Affected versions of Emissary are vulnerable to post-authentication Remote Code Execution RCE. The CreatePlace REST endpoint accepts an sppClassName parameter which is used to load an arbitrary class. This class is later instantiated using a...

8CVSS9.7AI score0.0285EPSS
Exploits1References2
Prion
Prion
added 2021/05/21 6:15 p.m.16 views

Remote code execution

Emissary is a distributed, peer-to-peer, data-driven workflow framework. Emissary 6.4.0 is vulnerable to Unsafe Deserialization of post-authenticated requests to the WorkSpaceClientEnqueue.action REST endpoint. This issue may lead to post-auth Remote Code Execution. This issue has been patched in...

6.5CVSS7.1AI score0.01276EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/04/12 2:15 p.m.7 views

CVE-2021-24220

Thrive “Legacy” Rise by Thrive Themes WordPress theme before 2.0.0, Luxe by Thrive Themes WordPress theme before 2.0.0, Minus by Thrive Themes WordPress theme before 2.0.0, Ignition by Thrive Themes WordPress theme before 2.0.0, FocusBlog by Thrive Themes WordPress theme before 2.0.0, Squared by...

9.1CVSS5.7AI score0.03946EPSS
Exploits2References2
OSV
OSV
added 2021/03/31 6:15 p.m.3 views

CVE-2021-23001

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, the upload functionality in BIG-IP Advanced WAF and BIG-IP ASM allows an authenticated user to upload files to the BIG-IP system using a ca...

4.3CVSS5.8AI score0.00572EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/03/31 5:38 p.m.29 views

CVE-2021-23001

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, the upload functionality in BIG-IP Advanced WAF and BIG-IP ASM allows an authenticated user to upload files to the BIG-IP system using a ca...

4.8AI score0.00572EPSS
Exploits0References1
OSV
OSV
added 2021/01/15 9:15 p.m.16 views

CVE-2021-21251

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3 there is a critical "zip slip" vulnerability. This issue may lead to arbitrary file write. The KubernetesResource REST endpoint untars user controlled data from the request body using TarUtils. TarUtils is a custom library...

8.8CVSS6.9AI score
Exploits0References1
OSV
OSV
added 2021/01/15 8:15 p.m.14 views

CVE-2021-21243

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, a Kubernetes REST endpoint exposes two methods that deserialize untrusted data from the request body. These endpoints do not enforce any authentication or authorization checks. This issue may lead to pre-auth RCE. This issue...

9.8CVSS7AI score
Exploits0References2
Cvelist
Cvelist
added 2021/01/15 8:10 p.m.27 views

CVE-2021-21251 ZipSlip Arbitrary File Upload

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3 there is a critical "zip slip" vulnerability. This issue may lead to arbitrary file write. The KubernetesResource REST endpoint untars user controlled data from the request body using TarUtils. TarUtils is a custom library...

7.7CVSS8.8AI score0.12163EPSS
Exploits0References1
OSV
OSV
added 2020/10/06 6:15 p.m.5 views

CVE-2019-4325

"HCL AppScan Enterprise makes use of broken or risky cryptographic algorithm to store REST API user details."...

5.3CVSS6.1AI score0.00542EPSS
Exploits0References1
Atlassian
Atlassian
added 2020/07/28 6:27 p.m.19 views

Improve error handling in commits page and REST endpoint

Adding a trail "%27" at the commits page URL in Bitbucket causes the application to output the error below. !screenshot-1.png|thumbnail! This error is improper error handling as it shows the path to the git executable in the server as well as it exceeds the limits of the error page and does not...

1.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2020/05/01 12:0 a.m.3 views

WordPress SEO Plugin Authentication Bypass

An access control weakness exists in the Wordpress SEO Plugin by Rank Math. The vulnerability is due to a lack of authorization verification on the updateMeta REST endpoint...

3.3AI score
Exploits0
Prion
Prion
added 2020/02/22 2:15 a.m.15 views

Design/Logic Flaw

Couchbase Server 4.0.0, 4.1.0, 4.1.1, 4.5.0, 4.5.1, 4.6.0 through 4.6.5, 5.0.0, 5.1.1, 5.5.0 and 5.5.1 have Insecure Permissions for the projector and indexer REST endpoints they allow unauthenticated access.The /settings REST endpoint exposed by the projector process is an endpoint that...

7.5CVSS9.4AI score0.03939EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/08/23 2:15 p.m.4 views

CVE-2019-8446

The /rest/issueNav/1/issueTable resource in Jira before version 8.3.2 allows remote attackers to enumerate usernames via an incorrect authorisation check...

5.3CVSS6.2AI score0.1755EPSS
Exploits1References2
Rows per page
Query Builder