CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2024/11/16 12:0 a.m.•4 views

WordPress plugin WP Chat App 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS7.9AI score0.00448EPSS

Exploits0References4

RedhatCVE•added 2024/11/12 10:34 p.m.•69 views

CVE-2024-47535

A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes...

5.5CVSS5.1AI score0.00408EPSS

Exploits1References5

Github Security Blog•added 2024/11/12 7:56 p.m.•16 views

Orchid Platform has Method Exposure Vulnerability in Modals

Impact This vulnerability is a method exposure issue CWE-749: Exposed Dangerous Method or Function in the Orchid Platform’s asynchronous modal functionality, affecting users of Orchid Platform version 8 through 14.42.x. Attackers could exploit this vulnerability to call arbitrary methods within t...

4.1CVSS4.5AI score0.00322EPSS

Exploits0References3Affected Software1

NVD•added 2024/11/12 4:15 p.m.•18 views

CVE-2024-47535

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts ...

5.5CVSS0.00408EPSS

Exploits1References2

Patchstack•added 2024/11/12 4:5 p.m.•3 views

WordPress AJAX Login and Registration modal popup + inline form plugin <= 2.24 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin AJAX Login and Registration modal popup + inline form versions = 2.24...

6.1CVSS6.3AI score0.00456EPSS

Exploits0References1Affected Software1

OSV•added 2024/11/12 3:50 p.m.•12 views

CVE-2024-47535 Denial of Service attack on windows app using Netty

5.5CVSS6.6AI score0.00408EPSS

Exploits1References4

RedHat Linux•added 2024/11/12 9:11 a.m.•1 views

kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed

In the Linux kernel, the following vulnerability has been resolved: KVM: Always flush async PF workqueue when vCPU is being destroyed Always flush the per-vCPU async PF workqueue when a vCPU is clearing its completion queue, e.g. when a VM and all its vCPUs is being destroyed. KVM must ensure tha...

7CVSS6.8AI score0.00259EPSS

Exploits0References5

RedHat Linux•added 2024/11/12 9:11 a.m.•4 views

kernel: io_uring/io-wq: Use set_bit() and test_bit() at worker->flags

A vulnerability was found in the Linux kernel's iouring subsystem within the iowq handling functions, where the issue stems from concurrent access to worker-flags, which can lead to data races when multiple tasks manipulate this structure simultaneously, which result in crashes, impacting the...

4.7CVSS7.2AI score0.00198EPSS

Exploits0References5

Snyk•added 2024/11/11 7:40 p.m.•2 views

Exposed Dangerous Method or Function

Overview orchid/platform is a Platform for back-office applications, admin panel or CMS your Laravel app. Affected versions of this package are vulnerable to Exposed Dangerous Method or Function in the asynchronous modal functionality via the Screen class. An attacker can call arbitrary methods...

5.1CVSS6.9AI score0.00322EPSS

Vulnrichment•added 2024/11/11 7:17 p.m.•13 views

CVE-2024-51992 Method Exposure Vulnerability in Modals in orchid/platform

Orchid is a @laravel package that allows for rapid application development of back-office applications, admin/user panels, and dashboards. This vulnerability is a method exposure issue CWE-749: Exposed Dangerous Method or Function in the Orchid Platform’s asynchronous modal functionality, affecti...

4.1CVSS6.8AI score0.00322EPSS

Cvelist•added 2024/11/11 7:17 p.m.•32 views

CVE-2024-51992 Method Exposure Vulnerability in Modals in orchid/platform

4.1CVSS0.00322EPSS

OpenVAS•added 2024/11/11 12:0 a.m.•13 views

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2024-2824)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2024/11/11 12:0 a.m.•14 views

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2024-2881)

OpenVAS•added 2024/11/11 12:0 a.m.•16 views

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2024-2900)

OpenVAS•added 2024/11/11 12:0 a.m.•13 views

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2024-2808)

CNNVD•added 2024/11/11 12:0 a.m.•3 views

Orchid 安全漏洞

Orchid is a free Laravel package open-sourced by Orchid. A security vulnerability exists in Orchid versions prior to 14.43.0, which stems from a method exposure issue in the Asynchronous Mode feature, which could potentially brute-force a database table, perform authentication checks against user...

4.1CVSS6.5AI score0.00322EPSS

OSV•added 2024/11/09 11:15 a.m.•1 views

DEBIAN-CVE-2024-50241

In the Linux kernel, the following vulnerability has been resolved: NFSD: Initialize struct nfsd4copy earlier Ensure the refcount and asynccopies fields are initialized early. cleanupasynccopy will reference these fields if an error occurs in nfsd4copy. If they are not correctly initialized, at t...

5.5CVSS5.5AI score0.00205EPSS