Lucene search
K

202 matches found

OSV
OSV
added 2024/04/10 3:30 p.m.8 views

GHSA-59VF-HJXC-F9C5 Magento Open Source allows Cross-Site Scripting (XSS)

Adobe Commerce versions 2.4.6-p4, 2.4.5-p6, 2.4.4-p7, 2.4.7-beta3 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a high-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a...

8.1CVSS7AI score0.01028EPSS
Exploits0References3
OSV
OSV
added 2023/12/15 11:15 a.m.4 views

CVE-2023-48598

Adobe Experience Manager versions 6.5.18 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they brow...

5.4CVSS5.8AI score0.00597EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/13 12:0 a.m.6 views

CVE-2023-47320

Silverpeas Core 6.3.1 is vulnerable to Incorrect Access Control. An attacker with low privileges is able to execute the administrator-only function of putting the application in "Maintenance Mode" due to broken access control. This makes the application unavailable to all users. This affects...

8.1AI score0.00739EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2023/10/13 9:30 a.m.13 views

Magento Open Source allows SQL Injection

Adobe Commerce versions 2.4.7-beta1 and earlier, 2.4.6-p2 and earlier, 2.4.5-p4 and earlier and 2.4.4-p5 and earlier are affected by an Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability that could lead in arbitrary code execution by an admin-privileg...

8CVSS8.2AI score0.00829EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2023/09/08 7:15 p.m.13 views

CVE-2023-38736

IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542...

7.8CVSS7.7AI score0.00391EPSS
Exploits0References2
OSV
OSV
added 2023/06/15 9:30 p.m.3 views

GHSA-5F79-VHR4-VW2R Magento Open Source allows Server-Side Request Forgery (SSRF)

Adobe Commerce versions 2.4.6 and earlier, 2.4.5-p2 and earlier and 2.4.4-p3 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to arbitrary file system read. An admin-privilege authenticated attacker can force the application to make arbitrary requests v...

6.9CVSS5.1AI score0.00986EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/04/05 1:50 p.m.2 views

ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

A use-after-free flaw was found in sndctlelemread in sound/core/control.c in Advanced Linux Sound Architecture ALSA subsystem in the Linux kernel. In this flaw a normal privileged, local attacker may impact the system due to a locking issue in the compat path, leading to a kernel information leak...

7.9CVSS6.6AI score0.03702EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/04/04 6:55 a.m.3 views

ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF

A use-after-free flaw was found in sndctlelemread in sound/core/control.c in Advanced Linux Sound Architecture ALSA subsystem in the Linux kernel. In this flaw a normal privileged, local attacker may impact the system due to a locking issue in the compat path, leading to a kernel information leak...

7.9CVSS6.6AI score0.03702EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.4 views

PT-2023-15529 · Unknown · Csaf-Validator-Lib +1

Name of the Vulnerable Software and Affected Versions: Secvisogram versions prior to 0.1.0 Description: An high privileged attacker may pass crafted arguments to the validate function of csaf-validator-lib which can result in arbitrary code execution and Denial of Service DoS once the user trigge...

6.5CVSS6.7AI score0.00261EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:33 a.m.3 views

SUSE CVE-2018-2844

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBo...

8.8CVSS9AI score0.01058EPSS
Exploits3References5
Vulnrichment
Vulnrichment
added 2023/01/23 2:31 p.m.3 views

CVE-2022-4751 Word Balloon < 4.19.3 - Contributor+ Stored XSS via Shortcode

The Word Balloon WordPress plugin before 4.19.3 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privileg...

5.5AI score0.00471EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2023/01/10 12:0 a.m.23 views

Post Category Image With Grid and Slider < 1.4.8 - Contributor+ Stored XSS via Shortcode

The plugin does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins. PoC Exploit...

5.4CVSS2.5AI score0.00685EPSS
Exploits2Affected Software1
OSV
OSV
added 2022/12/13 4:15 p.m.3 views

CVE-2022-46833

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU63x firmware version v2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the...

6.5CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/12/05 4:50 p.m.9 views

CVE-2022-3830 WP Page Builder <= 1.2.8 - Admin+ Stored Cross-Site

The WP Page Builder WordPress plugin through 1.2.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.6AI score0.0047EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/11/28 1:0 p.m.4 views

CVE-2022-4020 Acer Aspire BIOS vulnerability

Vulnerability in the HQSwSmiDxe DXE driver on some consumer Acer Notebook devices may allow an attacker with elevated privileges to modify UEFI Secure Boot settings by modifying an NVRAM variable...

8.1CVSS8.1AI score0.00239EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/11/08 12:0 a.m.8 views

CVE-2022-41208

Due to insufficient input validation, SAP Financial Consolidation - version 1010, allows an authenticated attacker with user privileges to alter current user session. On successful exploitation, the attacker can view or modify information, causing a limited impact on confidentiality and integrity...

5.4CVSS5.4AI score0.00408EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/24 12:0 a.m.3 views

Apple iOS和iPadOS 资源管理错误漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for the iPad tablet computer. A security vulnerability exists in Apple iOS and iPadOS. An attacker could use this vulnerability to execute...

6.7CVSS7.8AI score0.00307EPSS
Exploits0References6
OSV
OSV
added 2022/10/18 9:15 p.m.2 views

CVE-2022-21590

Vulnerability in the Oracle BI Publisher product of Oracle Fusion Middleware component: Core Formatting API. Supported versions that are affected are 5.9.0.0, 6.4.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

7.6CVSS5.8AI score0.00645EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/11 4:40 p.m.9 views

CVE-2022-34431

Dell Hybrid Client below 1.8 version contains a guest user profile corruption vulnerability. A WMS privilege attacker could potentially exploit this vulnerability, leading to DHC system not being accessible...

6.5CVSS6.7AI score0.0055EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/09/22 12:0 a.m.33 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9829)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9829 advisory. - netfilter: nftables: do not allow RULEID to refer to another chain Thadeu Lima de Souza Cascardo Orabug: 34495567 CVE-2022-2586 - netfilter:...

7.8CVSS7.3AI score0.12746EPSS
Exploits8References6
Rows per page
Query Builder