Lucene search
K

11652 matches found

NVD
NVD
added 2024/09/25 1:15 a.m.11 views

CVE-2024-46934

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and earlier is vulnerable to DOM-based Cross-site Scripting XSS. Attackers may be able to abuse the UpdateOTRAck method to forge a message that contains an XSS payload...

6.1CVSS0.00348EPSS
Exploits0References2
NVD
NVD
added 2024/09/25 1:15 a.m.5 views

CVE-2024-46936

Rocket.Chat 6.12.0, 6.11.2, 6.10.5, 6.9.6, 6.8.6, 6.7.8, and before is vulnerable to a message forgery / impersonation issue. Attackers can abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose...

7.5CVSS0.0041EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.3 views

Rocket.Chat 安全漏洞

Rocket.Chat is a chat program from Rocket.Chat Inc. A security vulnerability exists in Rocket.Chat. An attacker exploiting this vulnerability is able to abuse the UpdateOTRAck method. The following versions are affected: version 6.12.0, version 6.11.2, version 6.10.5, version 6.9.6, version 6.8.6...

6.1CVSS6.6AI score0.00348EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/24 12:0 a.m.5 views

PT-2024-32287 · Unknown · Rocket.Chat

Name of the Vulnerable Software and Affected Versions: Rocket.Chat versions 6.12.0 through 6.7.8 and before Description: The issue allows attackers to abuse the UpdateOTRAck method to send ephemeral messages as if they were any other user they choose, leading to a message forgery and impersonatio...

7.5CVSS7.1AI score0.0041EPSS
Exploits0References5
Citrix
Citrix
added 2024/09/24 12:0 a.m.15 views

Citrix PVS rebalancing leaves target devices unresponsive with CheckPoint agent installed

Rebalancing PVS targets devices ends up with the target devices in an unresponsive frozen state. The only method to recover target devices is to force restart the target devices on the hypervisor. Customer validated all PVS servers are configured as PVS login servers. Target devices fail to...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/09/23 12:0 a.m.6 views

PT-2024-40048 · Unknown · Camaleon Cms

Name of the Vulnerable Software and Affected Versions: Camaleon CMS affected versions not specified Description: The issue concerns a path traversal vulnerability in the MediaController class. An attacker who has taken over an administrator account could delete arbitrary files or folders on the...

7.3AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/09/20 12:0 a.m.13 views

CVE-2024-46640

SeaCMS 13.2 has a remote code execution vulnerability located in the file sql.class.chp. Although the system has a check function, the check function is not executed during execution, allowing remote code execution by writing to the file through the MySQL slow query method...

7.7AI score0.00999EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/09/20 12:0 a.m.12 views

CVE-2024-46640

SeaCMS 13.2 has a remote code execution vulnerability located in the file sql.class.chp. Although the system has a check function, the check function is not executed during execution, allowing remote code execution by writing to the file through the MySQL slow query method...

0.00999EPSS
Exploits2References1
CVE
CVE
added 2024/09/20 12:0 a.m.47 views

CVE-2024-46640

CVE-2024-46640 describes a remote code execution in SeaCMS 13.2, triggered via writing to a file through the MySQL slow query method, with a flaw where an internal check function is not executed during runtime. The vulnerability is located in the file sql.class.chp, enabling an attacker to achiev...

9.8CVSS7.8AI score0.00999EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2024/09/19 4:15 p.m.45 views

CVE-2024-8698

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Referen...

7.7CVSS0.0203EPSS
Exploits0References14
Kitploit
Kitploit
added 2024/09/19 11:30 a.m.68 views

Mass-Assigner - Simple Tool Made To Probe For Mass Assignment Vulnerability Through JSON Field Modification In HTTP Requests

Mass Assigner is a powerful tool designed to identify and exploit mass assignment vulnerabilities in web applications. It achieves this by first retrieving data from a specified request, such as fetching user profile data. Then, it systematically attempts to apply each parameter extracted from th...

7.4AI score
Exploits0References1
OSV
OSV
added 2024/09/18 2:39 p.m.20 views

GHSA-WMJG-VQHV-Q5P5 Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)

An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS is running on depending on the permissions of the underlying filesystem. E.g. This can lead to a delayed...

8.8CVSS9.8AI score0.35461EPSS
Exploits2References9
Github Security Blog
Github Security Blog
added 2024/09/18 2:39 p.m.32 views

Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)

An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS is running on depending on the permissions of the underlying filesystem. E.g. This can lead to a delayed...

9.9CVSS8.3AI score0.35461EPSS
Exploits2References9Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.4 views

PT-2024-32293

Name of the Vulnerable Software and Affected Versions langchain experimental versions 0.1.17 through 0.3.0 Description The issue allows attackers to execute arbitrary code through sympy.sympify which uses eval in LLMSymbolicMathChain. LLMSymbolicMathChain was introduced in a specific commit on...

9.8CVSS6.2AI score0.01387EPSS
Exploits1References17
VulnCheck KEV
VulnCheck KEV
added 2024/09/18 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-1561

An issue was discovered in gradio-app/gradio, where the /componentserver endpoint improperly allows the invocation of any method on a Component class with attacker-controlled arguments. Specifically, by exploiting the moveresourcetoblockcache method of the Block class, an...

7.5CVSS5.8AI score0.09239EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.8 views

PT-2024-32320 · Unknown · Ruby On Rails +1

Name of the Vulnerable Software and Affected Versions: Camaleon CMS versions prior to 2.8.2 Description: An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS...

9.9CVSS7.1AI score0.35461EPSS
Exploits2References19
Positive Technologies
Positive Technologies
added 2024/09/18 12:0 a.m.7 views

PT-2024-11535 · Mautic · Mautic

Name of the Vulnerable Software and Affected Versions: Mautic affected versions not specified Description: The upgrade logic in Mautic's application update via an upgrade script is not properly shielded, potentially leading to a vulnerable situation. However, this issue is mitigated by the fact...

7.8CVSS6.8AI score0.00277EPSS
Exploits0References11
RubySec
RubySec
added 2024/09/18 12:0 a.m.26 views

Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182)

An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS is running on depending on the permissions of the underlying filesystem. E.g. This can lead to a delayed...

9.9CVSS8.6AI score0.35461EPSS
Exploits2References1Affected Software1
Veracode
Veracode
added 2024/09/16 8:25 a.m.7 views

Deserialization Of Untrusted Data

MindsDB is vulnerable to Deserialization of Untrusted Data. The vulnerability is caused due to improper deserialization of untrusted pickle data in the finetune method within byomhandler.py, which allows the execution of arbitrary code on the server during the 'finetune' process...

7.5CVSS7.3AI score0.00481EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/12 12:0 a.m.5 views

PT-2024-31706 · Unknown · Whatsapp-Api-Js

Name of the Vulnerable Software and Affected Versions: whatsapp-api-js versions prior to 4.0.3 Description: The issue concerns Incorrect Access Control in the whatsapp-api-js framework, impacting anyone using the post or verifyRequestSignature methods to handle messages. It is possible to check t...

5.8CVSS7.2AI score0.14121EPSS
Exploits0References11
Rows per page
Query Builder