CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3656 matches found

Malwarebytes•added 2024/02/09 6:13 p.m.•52 views

Ivanti urges customers to patch yet another critical vulnerability

In a new blog post, Ivanti says that it has found another vulnerability and urges customers to “immediately take action to ensure you are fully protected”. This vulnerability only affects a limited number of supported versions–Ivanti Connect Secure version 9.1R14.4, 9.1R17.2, 9.1R18.3, 22.4R2.2 a...

7.5CVSS7.6AI score0.99999EPSS

Exploits26

Vulnrichment•added 2024/02/01 12:0 a.m.•16 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

8.9AI score0.0069EPSS

Exploits1References2

Cvelist•added 2024/02/01 12:0 a.m.•23 views

CVE-2024-22939

Cross Site Request Forgery vulnerability in FlyCms v.1.0 allows a remote attacker to execute arbitrary code via the system/article/categoryedit component...

7.8AI score0.0069EPSS

Exploits1References2

Positive Technologies•added 2024/02/01 12:0 a.m.•3 views

PT-2024-19621 · Flycms · Flycms

Name of the Vulnerable Software and Affected Versions: FlyCms version 1.0 Description: A Cross Site Request Forgery vulnerability allows a remote attacker to execute arbitrary code via the "system/article/category edit" component. This issue enables attackers to perform unauthorized actions on...

8.8CVSS7.6AI score0.0069EPSS

Exploits1References6

OSV•added 2024/01/29 10:15 a.m.•1 views

UBUNTU-CVE-2024-23791

Insertion of debug information into log file during building the elastic search index allows reading of sensitive information from articles.This issue affects OTRS: from 7.0.X through 7.0.48, from 8.0.X through 8.0.37, from 2023.X through 2023.1.1...

7.5CVSS5.8AI score0.00515EPSS

Exploits0References3

Schneier on Security•added 2024/01/25 12:4 p.m.•16 views

Quantum Computing Skeptics

Interesting article. I am also skeptical that we are going to see useful quantum computers anytime soon. Since at least 2019, I have been saying that this is hard. And that we dont know if its "land a person on the surface of the moon" hard, or "land a person on the surface of the sun" hard. They...

7.2AI score

Exploits0

VulnCheck KEV•added 2024/01/22 12:0 a.m.•3 views

VulnCheck KEV: CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

7.4CVSS6.6AI score0.03857EPSS

Exploits1References1

Tenable Nessus•added 2024/01/18 12:0 a.m.•16 views

Progress MOVEit Transfer < 2022.0.10 / 2022.1 < 2022.1.11 / 2023.0 < 2023.0.8 / 2023.1 < 2023.1.3 Multiple Vulnerabilities (January 2024)

The version of Progress MOVEit Transfer, formerly Ipswitch MOVEit DMZ, installed on the remote host is therefore, affected by multiple vulnerabilities as referenced in Progress Community article 000249475. - In Progress MOVEit Transfer versions released before 2022.0.10 14.0.10, 2022.1.11 14.1.11...

7.1CVSS7.1AI score0.00539EPSS

Exploits0References2

OSV•added 2024/01/17 6:15 p.m.•2 views

CVE-2024-22714