Lucene search
+L

116 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:47 a.m.9 views

CVE-2024-21497

Versions of the package github.com/greenpau/caddy-security are vulnerable to Open Redirect via the redirecturl parameter. An attacker could perform a phishing attack and trick users into visiting a malicious website by crafting a convincing URL with this parameter. To exploit this vulnerability,...

6.1CVSS6.2AI score0.00503EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:52 a.m.8 views

CVE-2024-11363

The Same but Different – Related Posts by Taxonomy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg & removequeryarg without appropriate escaping on the URL in all versions up to, and including, 1.0.16. This makes it possible for unauthenticated...

6.1CVSS6.4AI score0.00347EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:21 a.m.10 views

CVE-2019-10924

A vulnerability has been identified in LOGO! Soft Comfort All versions V8.3. The vulnerability could allow an attacker to execute arbitrary code if the attacker tricks a legitimate user to open a manipulated project. In order to exploit the vulnerability, a valid user must open a manipulated...

7.8CVSS7.6AI score0.01274EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/17 12:0 a.m.12 views

PT-2025-11567 · National Instruments · Ni Vision Builder Ai

Name of the Vulnerable Software and Affected Versions: NI Vision Builder AI affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of NI Vision Builder AI. User interaction is required to exploit this, as the target must...

8.8CVSS7.4AI score0.00482EPSS
Exploits0References6
OSV
OSV
added 2024/12/30 9:15 p.m.5 views

CVE-2024-13045

Ashlar-Vellum Cobalt AR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the targ...

7.8CVSS6.3AI score0.0034EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 9:15 p.m.5 views

CVE-2024-9752

Tungsten Automation Power PDF JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerabili...

3.3CVSS4.9AI score0.0025EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 9:15 p.m.9 views

CVE-2024-9717

Trimble SketchUp Viewer SKP File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the...

7.8CVSS6.2AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 9:15 p.m.5 views

CVE-2024-8844

PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

5.5CVSS5.2AI score0.00371EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/11 12:0 a.m.3 views

PT-2024-39784 · Trimble · Trimble Sketchup Viewer

Name of the Vulnerable Software and Affected Versions: Trimble SketchUp Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this issue, where...

7.8CVSS7.2AI score0.00302EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/07/26 12:0 a.m.6 views

PT-2024-37884 · Irfan Skiljan · Irfanview

Name of the Vulnerable Software and Affected Versions: IrfanView affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this issue, where the target must visit a...

7.8CVSS7.3AI score0.00523EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2024/05/07 11:15 p.m.3 views

CVE-2021-34969

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

5.5CVSS5.3AI score0.0034EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/07 11:15 p.m.2 views

CVE-2021-34964

Foxit PDF Editor Polygon Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.5 views

CVE-2023-40470

PDF-XChange Editor JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

5.5CVSS4.9AI score0.00327EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 2:15 a.m.4 views

CVE-2023-35715

Ashlar-Vellum Cobalt AR File Parsing Uninitialized Memory Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.2AI score0.00425EPSS
Exploits0References1
OSV
OSV
added 2024/04/02 7:15 a.m.10 views

CVE-2024-22092

in OpenHarmony v3.2.4 and prior versions allow a remote attacker bypass permission verification to install apps, although these require user action...

7.4CVSS5.8AI score0.00446EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/03/28 12:0 a.m.3 views

PT-2024-7749 · Foxit · Foxit Pdf Reader +1

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PDF Editor affected versions not specified Description: The issue is related to a use-after-free vulnerability in the handling of Doc objects in AcroForms, which can be exploited by remot...

7.8CVSS8AI score0.00914EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/08/17 12:0 a.m.10 views

PT-2023-26979 · Unknown · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

7.8CVSS7.3AI score0.00338EPSS
Exploits0References3
OSV
OSV
added 2023/03/29 7:15 p.m.6 views

CVE-2022-37368

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.5CVSS4.9AI score0.0073EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.6 views

PT-2022-25680 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...

7.8CVSS7.4AI score0.00386EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/10/07 12:0 a.m.6 views

PT-2022-26411 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious page or open...

5.5CVSS6.9AI score0.00341EPSS
Exploits0References5
Rows per page
Query Builder