CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1296 matches found

OpenVAS•added 2024/07/03 12:0 a.m.•14 views

Netatalk < 3.2.1 Multiple Vulnerabilities

Netatalk is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netatalk:netatalk"; ifdescription...

9.8CVSS8.7AI score0.00718EPSS

Exploits3References3

Github Security Blog•added 2024/07/01 6:35 p.m.•20 views

ZDI-CAN-23894: Parse Server literalizeRegexPart SQL Injection Authentication Bypass Vulnerability

Impact This vulnerability allows SQL injection when Parse Server is configured to use the PostgreSQL database. Patches The algorithm to detect SQL injection has been improved. Workarounds None. References - https://github.com/parse-community/parse-server/security/advisories/GHSA-c2hr-cqg6-8j6r -...

9.8CVSS7.8AI score0.03791EPSS

Exploits0References7Affected Software1

Circl•added 2024/06/11 5:49 p.m.•1 views

CVE-2024-37301

creationtimestamp| type| source ---|---|--- 2024-06-11 17:49:20+00:00| published-proof-of-concept| https://github.com/adfinis/document-merge-service/security/advisories/GHSA-v5gf-r78h-55q6...

7.2CVSS7.3AI score0.05604EPSS

Exploits0References1

Circl•added 2024/05/30 12:22 p.m.•3 views

CVE-2024-35189

creationtimestamp| type| source ---|---|--- 2024-05-30 12:22:15+00:00| published-proof-of-concept| https://github.com/ethyca/fides/security/advisories/GHSA-rcvg-jj3g-rj7c...

6.5CVSS6.6AI score0.00328EPSS

Exploits1References1

Circl•added 2024/05/29 10:2 a.m.•1 views

CVE-2024-34715

creationtimestamp| type| source ---|---|--- 2024-05-29 10:02:28+00:00| published-proof-of-concept| https://github.com/ethyca/fides/security/advisories/GHSA-8cm5-jfj2-26q7...

3.3CVSS5.8AI score0.00099EPSS

Exploits1References1

GithubExploit•added 2024/05/26 3:43 p.m.•430 views

Exploit for OS Command Injection in Dolibarr Dolibarr_Erp\/Crm

CVE-2023-30253 Description Dolibarr before 17.0.1 al...

8.8CVSS9AI score0.89175EPSS

Exploits16

Circl•added 2024/05/03 8:30 p.m.•1 views

CVE-2024-34075

creationtimestamp| type| source ---|---|--- 2024-05-03 20:30:38+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-hfrv-h3q8-9jpr...

6.2CVSS6.4AI score0.00009EPSS

Exploits0References1

OSV•added 2024/05/01 9:30 p.m.•1 views

GHSA-R4Q9-XX5G-J24P s3-url-parser vulnerable to Denial of Service via regexes component

s3-url-parser 1.0.3 is vulnerable to denial of service via the regexes component...

7.5CVSS7.1AI score0.00188EPSS

Exploits0References4

NVD•added 2024/04/29 4:15 a.m.•38 views

CVE-2024-2756

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a Host- or Secure- cookie by PHP applications...

6.5CVSS7.9AI score0.08698EPSS

Exploits0References6

Debian CVE•added 2024/04/29 3:34 a.m.•46 views

CVE-2024-2756

6.5CVSS7AI score0.08698EPSS

Exploits0

Circl•added 2024/04/25 1:0 p.m.•2 views

CVE-2024-32649

creationtimestamp| type| source ---|---|--- 2024-04-25 13:00:55+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-5jrj-52x8-m64h...

5.3CVSS6AI score0.008EPSS

Exploits0References1

Circl•added 2024/04/25 12:46 p.m.•1 views

CVE-2024-32648

creationtimestamp| type| source ---|---|--- 2024-04-25 12:46:04+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-m2v9-w374-5hj9...

5.3CVSS6AI score0.00336EPSS

Exploits0References1

Circl•added 2024/04/25 12:36 p.m.•1 views

CVE-2024-32645

creationtimestamp| type| source ---|---|--- 2024-04-25 12:36:44+00:00| published-proof-of-concept| https://github.com/vyperlang/vyper/security/advisories/GHSA-xchq-w5r3-4wg3...

5.3CVSS6AI score0.00689EPSS

Exploits0References1

Circl•added 2024/04/17 9:15 p.m.•1 views

CVE-2024-32472

creationtimestamp| type| source ---|---|--- 2024-04-17 21:15:16+00:00| published-proof-of-concept| https://github.com/excalidraw/excalidraw/security/advisories/GHSA-m64q-4jqh-f72f...

6.1CVSS6.3AI score0.00245EPSS

Exploits0References1

Circl•added 2024/04/15 8:21 p.m.•1 views

CVE-2024-4340

creationtimestamp| type| source ---|---|--- 2024-04-15 20:21:25+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-2m57-hf25-phgg...

7.5CVSS7.1AI score0.10881EPSS

Exploits0References1

Circl•added 2024/03/28 12:31 a.m.•2 views

CVE-2024-25354

creationtimestamp| type| source ---|---|--- 2024-03-28 00:31:40+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-cqfh-c4c5-c2hg...

7.5CVSS5.8AI score0.00151EPSS

Exploits0References1

Circl•added 2024/03/13 4:46 p.m.•1 views

GHSA-PR2M-PX7J-XG65

creationtimestamp| type| source ---|---|--- 2024-03-13 16:46:45+00:00| seen| https://t.me/ctinow/206877...

4.8AI score

Exploits0References1

Circl•added 2024/03/07 11:47 p.m.•1 views

GHSA-RJ98-CRF4-G69W

creationtimestamp| type| source ---|---|--- 2024-03-07 23:47:20+00:00| seen| https://t.me/ctinow/202890...

4.8AI score

Exploits0References1

OSV•added 2024/03/06 10:59 a.m.•28 views

BIT-OPENFIRE-2023-32315

Openfire is an XMPP server licensed under the Open Source Apache License. Openfire's administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup...

8.6CVSS8.1AI score0.94441EPSS

Exploits14References2

Github Security Blog•added 2024/03/05 2:39 p.m.•14 views

eth-abi is vulnerable to recursive DoS

This is related to recent ZST stuff https://github.com/ethereum/eth-abi/security/advisories/GHSA-rqr8-pxh7-cq3g, but it's a different one. Basically a recursive pointer issue py from ethabi import decode payload =...

7AI score

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by