Lucene search
K

11236 matches found

OSV
OSV
added 2023/01/06 12:30 a.m.16 views

GHSA-X347-FC9W-W7C3 Nuxeo vulnerable to Reflected Cross-Site Scripting leading to Remote Code Execution

The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the oauth2 REST API is vulnerable to Reflected Cross-Site Scripting XSS. This XSS can be escalated to Remote Code Execution RCE by levering the automation API...

5.4CVSS6AI score0.0071EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/01/06 12:0 a.m.28 views

EulerOS 2.0 SP9 : sysstat (EulerOS-SA-2023-1114)

According to the versions of the sysstat package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1...

7.8CVSS7.4AI score0.01096EPSS
Exploits1References2
NVD
NVD
added 2023/01/05 11:15 p.m.37 views

CVE-2021-32828

The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the oauth2 REST API is vulnerable to Reflected Cross-Site Scripting XSS. This XSS can be escalated to Remote Code Execution RCE by levering the automation API...

6.1CVSS5.9AI score0.0071EPSS
Exploits1References2
OSV
OSV
added 2023/01/05 11:15 p.m.21 views

CVE-2021-32828

The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the oauth2 REST API is vulnerable to Reflected Cross-Site Scripting XSS. This XSS can be escalated to Remote Code Execution RCE by levering the automation API...

6.1CVSS6.3AI score
Exploits0References2
hivepro
hivepro
added 2023/01/05 1:58 p.m.30 views

Synology addresses the RCE vulnerability that affects VPN Plus servers

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Synology has addressed a flaw in VPN Plus Server that has the potential to take control affected systems. The vulnerability, identified as CVE-2022-43931, is an out-of-bounds write fault in Synolo...

5.8AI score0.16841EPSS
Exploits0
CVE
CVE
added 2023/01/05 12:0 a.m.57 views

CVE-2021-32828

The CVE-2021-32828 entry affects Nuxeo Platform 11.5.109, where the oauth2 REST API is vulnerable to Reflected XSS, which can be escalated to Remote Code Execution (RCE) via the automation API. The available connected documents confirm the affected software/component and the root cause/impact. Re...

6.1CVSS6AI score0.0071EPSS
Exploits1References2Affected Software1
The Hacker News
The Hacker News
added 2023/01/04 4:28 a.m.58 views

Synology Releases Patch for Critical RCE Vulnerability Affecting VPN Plus Servers

Synology has released security updates to address a critical flaw impacting VPN Plus Server that could be exploited to take over affected systems. Tracked as CVE-2022-43931, the vulnerability carries a maximum severity rating of 10 on the CVSS scale and has been described as an out-of-bounds writ...

2.2AI score0.16841EPSS
Exploits0
WPVulnDB
WPVulnDB
added 2023/01/04 12:0 a.m.52 views

Membership For WooCommerce < 2.1.7 - Unauthenticated Arbitrary File Upload

The plugin does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as malicious PHP code, and achieve RCE. PoC 1. Install and activate WooCommerce dependency, no setup required 2. Create a local file containing the payload on /tmp/payload.php 3...

9.8CVSS4.2AI score0.17569EPSS
Exploits2Affected Software1
Trellix
Trellix
added 2023/01/04 12:0 a.m.44 views

The Bug Report December 2022 Edition

The Bug Report — December 2022 Edition By Trellix · January 4, 2023 This story was also written by John Borrero Rodriguez Everyone gets it Why am I here? Ho Ho Ho! Welcome back to the Bug Report, or a more fitting name for this time of year: The NAUGHTY List! Yes, we checked it twice. It is no...

9.8CVSS9.4AI score0.99474EPSS
Exploits14
Trellix
Trellix
added 2023/01/04 12:0 a.m.83 views

The Bug Report December 2022 Edition

The Bug Report — December 2022 Edition By Trellix · January 4, 2023 This story was also written by John Borrero Rodriguez Everyone gets it Why am I here? Ho Ho Ho! Welcome back to the Bug Report, or a more fitting name for this time of year: The NAUGHTY List! Yes, we checked it twice. It is no...

9.2AI score0.99474EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.140 views

PlaySMS < 1.4.3 RCE (CVE-2020-8644)

Binary data playsmscve-2020-8644.nbin...

9.8CVSS9.5AI score0.86689EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.98 views

Autodesk DWG TrueView 2023 < 2023.1.1 RCE

The remote host has an install of Autodesk DWG TrueView version 2023 prior to 2023.1.1. It is, therefore, affected by a remote code execution vulnerability due to DLL search order hijacking. Note that Nessus has not tested for this issue but has instead relied only on the application's...

7.8CVSS8.2AI score0.00255EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2023/01/03 9:49 a.m.282 views

Exploit for Cross-Site Request Forgery (CSRF) in Filebrowser

CVE-2021-46398 - Lalie ARNOUD, Gaspard ANDRIEU In this reposi...

8.8CVSS9.3AI score0.06663EPSS
Exploits6
Huntr
Huntr
added 2023/01/03 6:46 a.m.23 views

Unrestricted Logging Filename Lead to RCE

Description This vulnerability occur because there is no filename restriction for saving logging file. In this case attacker can set the filename to existing php file and append php code on it by manipulating the logged input. Proof of Concept 1. Log in using operator account, in this case i try ...

5.8CVSS6.9AI score0.01017EPSS
Exploits2References1
Github Security Blog
Github Security Blog
added 2022/12/29 1:51 a.m.360 views

Prototype Pollution in JSON5 via Parse Method

The parse method of the JSON5 library before and including version 2.2.1 does not restrict parsing of keys named proto, allowing specially crafted strings to pollute the prototype of the resulting object. This vulnerability pollutes the prototype of the object returned by JSON5.parse and not the...

8.8CVSS9.1AI score0.09304EPSS
Exploits1References10Affected Software1
0day.today
0day.today
added 2022/12/27 12:0 a.m.465 views

Textpattern 4.8.8 - Remote Code Execution (Authenticated) Exploit

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

7.4AI score
Exploits0
NVD
NVD
added 2022/12/26 1:15 p.m.13 views

CVE-2022-4047

The Return Refund and Exchange For WooCommerce WordPress plugin before 4.0.9 does not validate attachment files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files such as PHP and lead to RCE...

9.8CVSS0.06152EPSS
Exploits3References1
Prion
Prion
added 2022/12/26 1:15 p.m.26 views

Design/Logic Flaw

The Return Refund and Exchange For WooCommerce WordPress plugin before 4.0.9 does not validate attachment files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files such as PHP and lead to RCE...

7.5CVSS9.6AI score0.06152EPSS
Exploits3References1Affected Software1
CVE
CVE
added 2022/12/26 12:28 p.m.81 views

CVE-2022-4047

CVE-2022-4047 affects the Return Refund and Exchange For WooCommerce WordPress plugin prior to version 4.0.9. The root cause is failure to validate attachment files uploaded via an AJAX action accessible to unauthenticated users, allowing arbitrary files (e.g., PHP) to be uploaded and potentially...

9.8CVSS9.7AI score0.06152EPSS
Exploits3References1Affected Software1
Cvelist
Cvelist
added 2022/12/26 12:28 p.m.22 views

CVE-2022-4047 Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload

The Return Refund and Exchange For WooCommerce WordPress plugin before 4.0.9 does not validate attachment files to be uploaded via an AJAX action available to unauthenticated users, which could allow them to upload arbitrary files such as PHP and lead to RCE...

9.9AI score0.06152EPSS
Exploits3References1
Rows per page
Query Builder