Lucene search
K

61 matches found

OSV
OSV
added 2023/09/28 12:0 a.m.12 views

CVE-2023-44273

Consensys gnark-crypto through 0.11.2 allows Signature Malleability. This occurs because deserialisation of EdDSA and ECDSA signatures does not ensure that the data is in a certain interval...

9.8CVSS7.1AI score0.00844EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.38 views

RHEL 7 : rh-maven35-apache-commons-collections4 (RHSA-2020:4274)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4274 advisory. The Apache Commons Collections library provides new interfaces, implementations, and utilities to extend the features of the Java Collections...

10CVSS7.7AI score0.83274EPSS
Exploits8References5
Cvelist
Cvelist
added 2023/01/02 9:49 p.m.24 views

CVE-2022-4237 Welcart e-Commerce < 2.8.6 - Subscriber+ PHAR Deserialisation

The Welcart e-Commerce WordPress plugin before 2.8.6 does not validate user input before using it in fileexist functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a...

8.8AI score0.01073EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/01/02 9:49 p.m.7 views

CVE-2022-4237 Welcart e-Commerce < 2.8.6 - Subscriber+ PHAR Deserialisation

The Welcart e-Commerce WordPress plugin before 2.8.6 does not validate user input before using it in fileexist functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a...

8.6AI score0.01073EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2022/12/05 12:0 a.m.26 views

Welcart e-Commerce < 2.8.6 - Subscriber+ PHAR Deserialisation

The plugin does not validate user input before using it in fileexist functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a file and a suitable gadget chain is present...

8.8CVSS2.3AI score0.01073EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/12/05 12:0 a.m.104 views

Welcart e-Commerce < 2.8.6 - Subscriber+ PHAR Deserialisation

The plugin does not validate user input before using it in fileexist functions via various AJAX actions available to any authenticated users, which could allow users with a role as low as subscriber to perform PHAR deserialisation when they can upload a file and a suitable gadget chain is present...

8.8CVSS0.01073EPSS
Exploits2
NVD
NVD
added 2022/11/14 4:15 p.m.29 views

CVE-2022-45136

Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying database server to return malicious data. The mySQL JDBC driver in particular is known to be vulnerable to this class of attack. As a resu...

9.8CVSS0.01525EPSS
Exploits0References2
Prion
Prion
added 2022/11/14 4:15 p.m.13 views

Design/Logic Flaw

UNSUPPORTED WHEN ASSIGNED Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying database server to return malicious data. The mySQL JDBC driver in particular is known to be vulnerable to this...

7.5CVSS9.3AI score0.01525EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2022/11/14 12:0 a.m.40 views

CVE-2022-45136

Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying database server to return malicious data. The mySQL JDBC driver in particular is known to be vulnerable to this class of attack. As a resu...

9.8CVSS8.2AI score0.01525EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/11/14 12:0 a.m.10 views

CVE-2022-45136 Apache Jena SDB allows arbitrary deserialisation via JDBC

Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying database server to return malicious data. The mySQL JDBC driver in particular is known to be vulnerable to this class of attack. As a resu...

9.3AI score0.01525EPSS
Exploits0References2
NVD
NVD
added 2022/10/07 9:15 p.m.21 views

CVE-2022-31680

The vCenter Server contains an unsafe deserialisation vulnerability in the PSC Platform services controller. A malicious actor with admin access on vCenter server may exploit this issue to execute arbitrary code on the underlying operating system that hosts the vCenter Server...

9.1CVSS0.33064EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2022/07/18 12:0 a.m.33 views

Feed Them Social < 2.9.8.6 - Unauthenticated PHAR Deserialisation

The plugin does not validate the ftsurl parameter, which could lead to PHAR deserialisation when an attacker manage to upload a malicious file and a suitable gadget chain is present...

9.8CVSS2.6AI score0.0134EPSS
Exploits0Affected Software1
Veracode
Veracode
added 2022/06/30 9:55 a.m.19 views

Untrusted Object Deserialisation

topthink/think is vulnerable to untrusted object deserialisation. The vulnerability exists in the AbstractCache function in CacheStore.php which allows an attacker to inject and execute arbitrary code via a crafted payload...

9.8CVSS9.2AI score0.22306EPSS
Exploits1References3Affected Software1
Hacker One
Hacker One
added 2021/03/07 7:2 a.m.11 views

RubyGems: Bundler's RCE with response using Marshal

A vulnerability was found in Bundler's dependency API endpoint, which uses Marshal serialization. This could allow for remote code execution if a client receives a specially crafted response. The impact is increased risk from specifying an untrusted source or man-in-the-middle attack...

8AI score
Exploits0
Patchstack
Patchstack
added 2021/03/03 12:0 a.m.37 views

WordPress WP Hotel Booking plugin <= 1.10.2 - Unauthenticated Remote Code Execution (RCE) via Arbitrary Object Deserialisation vulnerability

Unauthenticated Remote Code Execution RCE via Arbitrary Object Deserialisation vulnerability discovered by Nick Blundell AppCheck Ltd in WordPress WP Hotel Booking plugin versions = 1.10.2. Solution Update the WordPress WP Hotel Booking plugin to the latest available version at least 1.10.3...

9.8CVSS4.8AI score0.14269EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2020/12/29 12:0 a.m.16 views

WordPress Newsletter Manager plugin <= 1.5.1 - Unauthenticated Insecure Deserialisation vulnerability

Unauthenticated Insecure Deserialisation vulnerability found by Jerome Bruander NinTechNet in WordPress Newsletter Manager plugin versions = 1.5.1. Solution 2020-12-31 - we were unable to find a patched version of this plugin. WordPress.org notification: "This plugin has been closed as of October...

3.3AI score
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2020/05/29 7:29 a.m.1011 views

Exploit for Deserialization of Untrusted Data in Telerik Ui_For_Asp.Net_Ajax

RAUcrypto !Languagehttps://img.shields.io/badge/Lang-Pyth...

9.8CVSS8.9AI score0.99737EPSS
Exploits23
WPVulnDB
WPVulnDB
added 2020/03/08 12:0 a.m.17 views

WP Security Audit Log < 4.0.2 - Broken Access Control in First-Time Install Wizard

Broken access control vulnerability affecting version 4.0.1 and below that could lead to privilege escalation, sensitive data exposure and insecure deserialisation. To exploit the vulnerability, the wizard must not have been completed, otherwise it won’t work...

5.1AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/12 12:0 a.m.49 views

Debian DLA-2032-1 : cacti security update

It was discovered that there was unsafe deserialisation issue in cacti, server monitoring system system. Unsafe deserialisation of objects which can lead to abuse of the application logic, deny service or even execute arbitrary code. For Debian 8 'Jessie', this issue has been fixed in cacti versi...

8.1CVSS6.6AI score0.03005EPSS
Exploits1References3
WPVulnDB
WPVulnDB
added 2019/08/09 12:0 a.m.14 views

Formidable < 4.02.01 - Unsafe Deserialisation

The Formidable Form Builder – Contact Form, Survey & Quiz Forms Plugin for WordPress WordPress plugin was affected by an Unsafe Deserialisation security vulnerability...

7.5CVSS2.8AI score0.02389EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder