CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

185 matches found

NVD•added 2022/08/31 10:15 a.m.•12 views

CVE-2022-27911

An issue was discovered in Joomla! 4.2.0. Multiple Full Path Disclosures because of missing 'JEXEC or die check' caused by the PSR12 changes...

5.3CVSS0.00484EPSS

Exploits0References1

Openbugbounty•added 2022/06/28 3:3 a.m.•17 views

die-shopmaker.de Cross Site Scripting vulnerability OBB-2689344

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0

Openbugbounty•added 2022/06/23 9:1 a.m.•8 views

die-dialogis.de Cross Site Scripting vulnerability OBB-2668877

6.2AI score

Exploits0

Openbugbounty•added 2022/06/11 9:34 a.m.•25 views

die-schuhleister.de Cross Site Scripting vulnerability OBB-2646131

6.2AI score

Exploits0

Openbugbounty•added 2022/06/11 9:32 a.m.•14 views

die-elsbeth.de Cross Site Scripting vulnerability OBB-2646124

6.2AI score

Exploits0

BDU FSTEC•added 2022/04/13 12:0 a.m.•1 views

The vulnerability of the parse_die() function in the AMD64 ELF toolset of the Rizin command-line tools allows a attacker to cause a service failure or execute arbitrary code.

The vulnerability of the parsedie function in the AMD64 ELF toolset of the command-line tools Rizin is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure or execute arbitrary code using a specially created...

7.8CVSS7.8AI score0.00846EPSS

Exploits0References6Affected Software1

Openbugbounty•added 2022/03/05 3:22 p.m.•10 views

die-pelczer.de Improper Access Control vulnerability OBB-2410069

0.1AI score

Exploits0

Openbugbounty•added 2022/03/04 3:24 p.m.•12 views

webinare-die-verkaufen.de Improper Access Control vulnerability OBB-2406532

0.1AI score

Exploits0

CNNVD•added 2021/12/13 12:0 a.m.•4 views

Rizin 缓冲区错误漏洞

Rizin is a free open source reverse engineering framework from the Rizin organization. It is used to analyze binaries, disassemble code, debug programs, as a forensic tool, as a command-line hex editor that can open disk files that can be scripted, etc. Rizin 0.3.1 and earlier versions have a...

7.8CVSS6.1AI score0.00846EPSS

Exploits0References4

BDU FSTEC•added 2021/10/27 12:0 a.m.•1 views

The vulnerability of the wp_die() function in the WordPress content management system, related to the disclosure of protected information, allows a hacker to execute arbitrary code.

The vulnerability of the wpdie function in the WordPress content management system involves exposing protected information. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.3CVSS6.3AI score0.02053EPSS

Exploits0References4Affected Software2

Openbugbounty•added 2021/09/09 7:33 p.m.•15 views

die-hinterbuehne.de Cross Site Scripting vulnerability OBB-2136651

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0

Positive Technologies•added 2021/09/09 12:0 a.m.•4 views

PT-2021-4505 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.8.1 Description: The issue is related to the wp die function in WordPress, which can leak output data under certain conditions, including sensitive information like nonces. This leaked data can be used to perform...

7.6CVSS5.7AI score0.02053EPSS

Exploits0References21

Trend Micro Simply Security•added 2021/06/28 12:0 a.m.•9 views

#LetsTalkSecurity: Adapt or Die

Let's Talk Security: Season 02 // Episode 02: Host, Rik Ferguson, interviews Forrester Analyst, Allie Mellen. Together they discuss to adapt or die...

0.9AI score

Exploits0

wpexploit•added 2020/12/15 12:0 a.m.•797 views

Redux Framework < 4.1.21 - CSRF Nonce Validation Bypass

The plugin did not properly validate some nonces, only checking them if their value was set. As a result, CSRF attacks could still be performed by not submitting the nonce in the request, bypassing the protection they are supposed to provide. Just don't send the parameters: $POST'nonce' or...

0.7AI score

Exploits0References4

Openbugbounty•added 2020/11/02 11:21 a.m.•5 views

die-wegbegleiter.de Cross Site Scripting vulnerability OBB-1476528

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0

Openbugbounty•added 2020/10/25 10:0 p.m.•9 views

skatclub-die-maurer.de Cross Site Scripting vulnerability OBB-1447539

6.2AI score

Exploits0

Openbugbounty•added 2020/10/19 1:28 p.m.•22 views

die-tauwerkstatt.de Cross Site Scripting vulnerability OBB-1424503

6.2AI score

Exploits0

Openbugbounty•added 2020/09/16 9:37 a.m.•6 views

die-exekutive.de Cross Site Scripting vulnerability OBB-1340885

6.2AI score