Lucene search
K

29035 matches found

NVD
NVD
added 2024/01/16 7:15 p.m.26 views

CVE-2023-52041

An issue discovered in TOTOLINK X6000R V9.4.0cu.852B20230719 allows attackers to run arbitrary code via the sub410118 function of the shttpd program...

9.8CVSS9.6AI score0.0086EPSS
Exploits1References1
OSV
OSV
added 2024/01/16 7:15 p.m.4 views

CVE-2024-0200

An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-controlled methods and remote code execution. To exploit this bug, an actor would need to be logged into an account on the...

9.8CVSS6.1AI score0.71725EPSS
Exploits1References4
Prion
Prion
added 2024/01/16 7:15 p.m.21 views

Code injection

An issue discovered in TOTOLINK X6000R V9.4.0cu.852B20230719 allows attackers to run arbitrary code via the sub410118 function of the shttpd program...

7.5CVSS7.7AI score0.0086EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/16 7:15 p.m.22 views

Command injection

An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. This vulnerability affected all versions of GitHub Enterprise Server and was fixed in versions 3.11.3, 3.10.5, 3.9.8, an...

6.5CVSS7.8AI score0.658EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2024/01/16 7:15 p.m.22 views

Design/Logic Flaw

An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-controlled methods and remote code execution. To exploit this bug, an actor would need to be logged into an account on the...

7.5CVSS8.3AI score0.71725EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/16 6:51 p.m.19 views

CVE-2024-0507 Privilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server

An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. This vulnerability affected all versions of GitHub Enterprise Server and was fixed in versions 3.11.3, 3.10.5, 3.9.8, an...

6.5CVSS7.8AI score0.658EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/01/16 6:50 p.m.26 views

CVE-2024-0200 Unsafe Reflection in Github Enterprise Server leading to Command Injection

An unsafe reflection vulnerability was identified in GitHub Enterprise Server that could lead to reflection injection. This vulnerability could lead to the execution of user-controlled methods and remote code execution. To exploit this bug, an actor would need to be logged into an account on the...

7.2CVSS10AI score0.71725EPSS
Exploits1References4
Openbugbounty
Openbugbounty
added 2024/01/16 5:34 p.m.13 views

instagiber.net Cross Site Scripting vulnerability OBB-3836389

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 5:31 p.m.14 views

board.rhythmer.net Cross Site Scripting vulnerability OBB-3836384

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
NVD
NVD
added 2024/01/16 2:15 p.m.12 views

CVE-2024-0581

An Uncontrolled Resource Consumption vulnerability has been found on Sandsprite Scdbg.exe, affecting version 1.0. This vulnerability allows an attacker to send a specially crafted shellcode payload to the '/foff' parameter and cause an application shutdown. A malware program could use this...

5.5CVSS4.6AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/16 1:14 p.m.14 views

CVE-2024-0581 Uncontrolled Resource Consumption vulnerability on Sandsprite scdbg

An Uncontrolled Resource Consumption vulnerability has been found on Sandsprite Scdbg.exe, affecting version 1.0. This vulnerability allows an attacker to send a specially crafted shellcode payload to the '/foff' parameter and cause an application shutdown. A malware program could use this...

4CVSS5.7AI score0.0021EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/01/16 12:3 p.m.14 views

swissfundplatform.ch Cross Site Scripting vulnerability OBB-3836282

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 10:28 a.m.10 views

felixswimschools.com Cross Site Scripting vulnerability OBB-3836245

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 10:20 a.m.8 views

800appliance.com Cross Site Scripting vulnerability OBB-3836232

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 9:57 a.m.7 views

r2820.com Cross Site Scripting vulnerability OBB-3836183

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 9:55 a.m.6 views

pompes-direct.com Cross Site Scripting vulnerability OBB-3836179

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/16 9:49 a.m.5 views

miicharacters.com Cross Site Scripting vulnerability OBB-3836165

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2024/01/16 9:38 a.m.2 views

MGASA-2024-0013 Updated hplip packages fix security vulnerabilities

There were security issues in hplip's hpps program due to fixed /tmp path usage in prnt/hpps/hppsfilter.c This update fixes these issues...

7.3AI score
Exploits0References4
Mageia
Mageia
added 2024/01/16 9:38 a.m.13 views

Updated hplip packages fix security vulnerabilities

There were security issues in hplip's hpps program due to fixed /tmp path usage in prnt/hpps/hppsfilter.c This update fixes these issues...

7.5AI score
Exploits0References3
Prion
Prion
added 2024/01/16 5:15 a.m.20 views

Remote code execution

This High severity RCE Remote Code Execution vulnerability was introduced in version 7.19.0 of Confluence Data Center. This RCE Remote Code Execution vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to execute arbitrary code which has high impact to confidentiality, high...

5.8CVSS7.8AI score0.01565EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder