CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

Packet Storm•added 2024/07/17 12:0 a.m.•1017 views

XenForo 2.2.15 Cross Site Request Forgery

------------------------------------------------------------------------------- XenForo = 2.2.15 Widget::actionSave Cross-Site Request Forgery Vulnerability ------------------------------------------------------------------------------- - Software Link: https://xenforo.com - Affected Versions:...

7.1AI score0.06564EPSS

Exploits3

Packet Storm•added 2024/04/08 12:0 a.m.•862 views

Invision Community 4.7.15 SQL Injection

-------------------------------------------------------------------- Invision Community filter and \isarray \IPS\Request::i-filter 128 129 $url = $url-setQueryString 'filter', \IPS\Request::i-filter ; 130 foreach \IPS\Request::i-filter as $filterId = $allowedValues 131 132 $where = array...

7.4AI score0.46372EPSS

Exploits3

Positive Technologies•added 2023/08/08 12:0 a.m.•3 views

PT-2023-4366 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Windows Kernel, which is associated with insufficient access control. This vulnerability can be exploited by an attack...

7.8CVSS8.9AI score0.02113EPSS

Exploits0References15

Openbugbounty•added 2022/04/25 9:41 a.m.•12 views

elsiglodetorreon.com.mx Cross Site Scripting vulnerability OBB-2555489

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0

ThreatPost•added 2021/09/22 5:22 p.m.•18 views

Unpatched Apple Zero-Day Allows Code Execution

A zero-day security vulnerability in Apple’s macOS Finder system could allow remote attackers to trick users into running arbitrary commands, according to researchers – and a silent patch hasn’t fixed it. For those not in the Apple camp, the macOS Finder is the default file manager and GUI...

7.3AI score

Exploits0References8

The Hacker News•added 2021/09/21 4:48 p.m.•23 views

Unpatched High-Severity Vulnerability Affects Apple macOS Computers

Cybersecurity researchers on Tuesday disclosed details of an unpatched zero-day vulnerability in macOS Finder that could be abused by remote adversaries to trick users into running arbitrary commands on the machines. "A vulnerability in macOS Finder allows files whose extension is inetloc to...

1.5AI score

Exploits0

seebug.org•added 2018/04/28 12:0 a.m.•86 views

Hanbanggaoke IP Camera Arbitrary Password Change(CVE-2017-14335)

Vulnerability summary The following advisory describes an arbitrary password change vulnerability found in Hanbanggaoke webcams. Beijing Hanbang Technology, “one of the first enterprises entering into digital video surveillance industry, has been focusing on R&D of products and technology of...

5CVSS0.08187EPSS

Exploits4

0day.today•added 2018/02/14 12:0 a.m.•32 views

TrendNet AUTHORIZED_GROUP Information Disclosure Vulnerability

Exploit for hardware platform in category web applications TrendNet AUTHORIZEDGROUP Information Disclosure Full report: https://blogs.securiteam.com/index.php/archives/3627 Twitter: @SecuriTeamSSD Weibo: SecuriTeamSSD Vulnerability Summary The following advisory describes an information disclosur...

Exploits0

seebug.org•added 2018/01/29 12:0 a.m.•26 views

iBall Multiple Vulnerabilities

Vulnerabilities summary The following advisory describes two 2 vulnerabilities found in iB-WRA150N devices, firmware 1.2.6 build 110401 Rel.47776n. iB-WRA150N is “a powerful solution to Internet connectivity at home, small offices and work stations. The key is if you are using an ADSL2+ connectio...

7.5AI score

Exploits0

Exploit DB•added 2018/01/29 12:0 a.m.•45 views

iBall WRA150N - Multiple Vulnerabilities

9CVSS8.9AI score0.0711EPSS

Exploits3

Packet Storm•added 2018/01/26 12:0 a.m.•150 views

AsusWRT Router Remote Code Execution

Unauthenticated LAN remote code execution in AsusWRT Discovered by Pedro Ribeiro [email protected], Agile Information Security ================================================================================= Disclosure: 22/01/2018 / Last updated: 25/01/2018 Background and summary AsusWRT is the...

10CVSS9.2AI score0.91049EPSS

Exploits22

exploitpack•added 2017/12/06 12:0 a.m.•28 views

Dasan Networks GPON ONT WiFi Router H640X 12.02-01121 2.77p1-1124 3.03p2-1146 - Remote Code Execution

Dasan Networks GPON ONT WiFi Router H640X 12.02-01121 2.77p1-1124 3.03p2-1146 - Remote Code Execution Vulnerability Summary The following advisory describes a buffer overflow that leads to remote code execution found in Dasan Networks GPON ONT WiFi Router H640X versions 12.02-01121 / 2.77p1-1124 ...

0.3AI score

Exploits0

Packet Storm•added 2017/11/29 12:0 a.m.•40 views

Synology StorageManager 5.2 Remote Command Execution

''' SSD Advisory a Synology StorageManager smart.cgi Remote Command Execution Full report: https://blogs.securiteam.com/index.php/archives/3540 Twitter: @SecuriTeamSSD Weibo: SecuriTeamSSD i?Vulnerability Summary The following advisory describes a remote command execution vulnerability found in...

7.4AI score

Exploits0

seebug.org•added 2017/11/24 12:0 a.m.•50 views

Linux Kernel XFRM Privilege Escalation

Vulnerability Summary The following advisory describes a Use-after-free vulnerability found in Linux kernel that can lead to privilege escalation. The vulnerability found in Netlink socket subsystem – XFRM. Netlink is used to transfer information between the kernel and user-space processes. It...

6.8AI score

Exploits0

exploitpack•added 2017/11/23 12:0 a.m.•86 views

Linux Kernel (Ubuntu 17.04) - XFRM Local Privilege Escalation

Linux Kernel Ubuntu 17.04 - XFRM Local Privilege Escalation Vulnerability Summary The following advisory describes a Use-after-free vulnerability found in Linux kernel that can lead to privilege escalation. The vulnerability found in Netlink socket subsystem – XFRM. Netlink is used to transfer...

7.2CVSS0.4AI score0.10155EPSS

Exploits3

Exploit DB•added 2017/11/23 12:0 a.m.•167 views

Linux Kernel (Ubuntu 17.04) - 'XFRM' Local Privilege Escalation

7.8CVSS8.4AI score0.10155EPSS

Exploits3

seebug.org•added 2017/11/22 12:0 a.m.•56 views

DblTek Multiple Vulnerabilities

Vulnerabilities summary The following advisory describes 2 two vulnerabilities found in DblTek webserver. DBL is “specialized in VoIP products, especially GoIPs. We design, develop, manufacture, and sell our products directly and via distributors to customers. Our GoIP models now cover 1, 4, 8, 1...

7.9AI score

Exploits0

Exploit DB•added 2017/11/21 12:0 a.m.•105 views

DblTek - Multiple Vulnerabilities

10CVSS9.7AI score0.18402EPSS

Exploits3

exploitpack•added 2017/11/03 12:0 a.m.•81 views

GraphicsMagick - Memory Disclosure Heap Overflow

GraphicsMagick - Memory Disclosure Heap Overflow '''Vulnerabilities summary The following advisory describes two 2 vulnerabilities found in GraphicsMagick. GraphicsMagick is “The swiss army knife of image processing. Comprised of 267K physical lines according to David A. Wheeler’s SLOCCount of...

0.6AI score

Exploits0

Exploit DB•added 2017/11/01 12:0 a.m.•55 views

Cisco UCS Platform Emulator 3.1(2ePE1) - Remote Code Execution

Vulnerabilities Summary The following advisory describes two remote code execution vulnerabilities found in Cisco UCS Platform Emulator version 3.12ePE1. Cisco UCS Platform Emulator is the Cisco UCS Manager application bundled into a virtual machine VM. The VM includes software that emulates...

7.8CVSS7.8AI score0.4022EPSS

Exploits3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by