CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7696 matches found

Cvelist•added 2022/09/23 3:26 p.m.•17 views

CVE-2021-3782

An internal reference count is held on the buffer pool, incremented every time a new buffer is created from the pool. The reference count is maintained as an int; on LP64 systems this can cause the reference count to overflow if the client creates a large number of wlshm buffer objects, or if it...

7AI score0.00026EPSS

Exploits1References1

Veracode•added 2022/09/19 1:0 p.m.•26 views

Unsecured File

thunderbird allows unsecured files. The vulnerability exists due to an issue of when receiving an HTML email that contained an iframe element, which used a srcdoc attribute to define the internal HTML document, remote objects specified in the nested document for example, images or videos, were no...

6.5CVSS7.2AI score0.00407EPSS

Exploits0References4Affected Software3

Tenable Nessus•added 2022/09/19 12:0 a.m.•57 views

Mozilla Thunderbird < 91.13.1

The version of Thunderbird installed on the remote Windows host is prior to 91.13.1. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2022-39 advisory. - If a Thunderbird user replied to a crafted HTML email containing a meta tag, with the meta tag having the...

8.1CVSS7.4AI score0.00502EPSS

Exploits0References4

Veracode•added 2022/09/16 5:5 a.m.•10 views

Information Disclosure

pageflow is vulnerable to information disclosure.The vulnerability exists in multiple functions in entry.rb and usermixin.rb because the lack of restrictions to database objects which allows an attacker to gain access to the data of associated database objects...

3.1AI score

Exploits0

Huntr•added 2022/09/15 3:57 a.m.•21 views

Reflected XSS In User/Roles Function

Description URL: https://demo.pimcore.fun/admin/ In Setting select User/Roles and select User. After created user, move to Workspace tab and inject payload XSS at Documents, Assets and Data Objects. XSS payload will be trigger. Besides, Workspace in Roles Also having the same situation. Can you...

4.3CVSS5AI score0.00011EPSS

Exploits1

Github Security Blog•added 2022/09/15 3:21 a.m.•19 views

Pageflow vulnerable to sensitive user data extraction via Ransack query injection

Impact The attack allows extracting sensitive properties of database objects that are associated with users or entries belonging to an account that the attacker has access to. Pageflow uses the ActiveAdmin Ruby library to provide some management features to its users. ActiveAdmin relies on the...

4AI score

Exploits0References3Affected Software1

OSV•added 2022/09/15 3:21 a.m.•15 views

GHSA-WRRW-CRP8-979Q Pageflow vulnerable to sensitive user data extraction via Ransack query injection

7AI score

Exploits0References3

RedHat Linux•added 2022/09/09 7:12 a.m.•1 views

jackson-databind: denial of service via a large depth of nested objects

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

7.5CVSS6.7AI score0.00474EPSS

Exploits1References5

Securelist•added 2022/09/08 7:59 a.m.•14 views

Threat landscape for industrial automation systems for H1 2022

H1 2022 in numbers Geography In H1 2022, malicious objects were blocked at least once on 31.8% of ICS computers globally. Percentage of ICS computers on which malicious objects were blocked For the first time in five years of observations, the lowest percentage in the ‎first half of the year was...

1.3AI score

Exploits0

Tenable Nessus•added 2022/09/07 12:0 a.m.•37 views

Foxit PDF Editor < 12.0 Multiple Vulnerabilities

According to its version, the Foxit PDF Editor application previously named Foxit PhantomPDF installed on the remote Windows host is prior to 12.0. It is, therefore affected by multiple vulnerabilities: - This vulnerability allows remote attackers to disclose sensitive information on affected...

3.3CVSS3.6AI score0.00711EPSS

Exploits0References4

NVD•added 2022/09/06 6:15 p.m.•10 views

CVE-2022-2442

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to deserialization of untrusted input via the 'path' parameter in versions up to, and including 0.9.74. This makes it possible for authenticated attackers with administrative privileges to call files using a PHAR wrapper...

7.2CVSS0.02751EPSS

Exploits0References5

ATTACKERKB•added 2022/09/06 6:15 p.m.•1 views

CVE-2022-2438

The Broken Link Checker plugin for WordPress is vulnerable to deserialization of untrusted input via the '$logfile' value in versions up to, and including 1.11.16. This makes it possible for authenticated attackers with administrative privileges and above to call files using a PHAR wrapper that...

7.2CVSS6AI score0.01336EPSS

Exploits0References4

OSV•added 2022/09/06 6:15 p.m.•2 views

CVE-2022-2436

The Download Manager plugin for WordPress is vulnerable to deserialization of untrusted input via the 'filepackagedir' parameter in versions up to, and including 3.2.49. This makes it possible for authenticated attackers with contributor privileges and above to call files using a PHAR wrapper tha...

8.8CVSS5.9AI score0.01077EPSS

Exploits0References4

ATTACKERKB•added 2022/09/06 6:15 p.m.•1 views

CVE-2022-2436

8.8CVSS6AI score0.01077EPSS

Exploits0References5

NVD•added 2022/09/06 6:15 p.m.•10 views

CVE-2022-2438

7.2CVSS0.01336EPSS

Exploits0References3

ATTACKERKB•added 2022/09/06 6:15 p.m.•1 views

CVE-2022-2434

The String Locator plugin for WordPress is vulnerable to deserialization of untrusted input via the 'string-locator-path' parameter in versions up to, and including 2.5.0. This makes it possible for unauthenticated users to call files using a PHAR wrapper, granted they can trick a site...

8.8CVSS5.9AI score0.05157EPSS

Exploits0References5