CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

121 matches found

CNNVD•added 2025/01/08 12:0 a.m.•1 views

WordPress plugin WP Extended 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS8.7AI score0.18026EPSS

Exploits0References4

BDU FSTEC•added 2024/11/26 12:0 a.m.•1 views

The vulnerability of the Firmware Update Handler component of the Siemens SINEMA Remote Connect server allows a hacker to gain increased privileges.

The vulnerability of the Firmware Update Handler component in Siemens SINEMA Remote Connect relates to the creation of temporary files with insecure permissions. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

9.9CVSS7.3AI score0.00478EPSS

Exploits0References4

NVD•added 2024/05/21 3:15 p.m.•24 views

CVE-2021-47247

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5erepneighupdate wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent encap entry...

7.8CVSS6.3AI score0.00013EPSS

Exploits0References4

OSV•added 2024/05/21 3:15 p.m.•15 views

CVE-2021-47247

7.8CVSS6.3AI score

Exploits0References4

CVE•added 2024/05/21 2:19 p.m.•117 views

CVE-2021-47247

CVE-2021-47247 is a Linux kernel use-after-free in the mlx5e_encap_take path during neigh update, caused by improper handling when encap entries are concurrently inserted/deleted after rtnetlink lock changes. The issue is documented in upstream kernel notes and is listed in Debian’s DLA-4178-1 ad...

7.8CVSS6.6AI score0.00013EPSS

Exploits0References4Affected Software2

Vulnrichment•added 2024/05/21 2:19 p.m.•21 views

CVE-2021-47247 net/mlx5e: Fix use-after-free of encap entry in neigh update handler

6.7AI score0.00013EPSS

Exploits0References3

Cvelist•added 2024/05/21 2:19 p.m.•25 views

CVE-2021-47247 net/mlx5e: Fix use-after-free of encap entry in neigh update handler

6.3AI score0.00013EPSS

Exploits0References3

Debian CVE•added 2024/05/21 2:19 p.m.•24 views

CVE-2021-47247

7.8CVSS7.2AI score0.00013EPSS

Exploits0

Positive Technologies•added 2024/05/03 12:0 a.m.•2 views

PT-2024-12762 · Ibm · Ibm Cognos Controller

Name of the Vulnerable Software and Affected Versions: IBM Cognos Controller versions 10.4.1 through 11.0.0 Description: The issue allows a remote attacker to send specially crafted SQL statements, which could enable the attacker to view, add, modify, or delete information in the back-end databas...

9.8CVSS9.7AI score0.00133EPSS

Exploits0References6

OSV•added 2024/04/30 12:15 a.m.•1 views

CVE-2024-34047

O-RAN RIC I-Release e2mgr lacks array size checks in RicServiceUpdateHandler...

4.3CVSS5.8AI score0.00196EPSS

Exploits0References2

Positive Technologies•added 2024/04/29 12:0 a.m.•3 views

PT-2024-25664 · O Ran · O-Ran Ric I-Release E2Mgr

Name of the Vulnerable Software and Affected Versions: O-RAN RIC I-Release e2mgr affected versions not specified Description: The issue is related to a lack of array size checks in the RicServiceUpdateHandler of the O-RAN RIC I-Release e2mgr. Recommendations: At the moment, there is no informatio...

4.3CVSS6.1AI score0.00196EPSS

Exploits0References5

NVD•added 2024/02/21 7:15 p.m.•9 views

CVE-2024-1707

A vulnerability, which was classified as problematic, was found in GARO WALLBOX GLB+ T2EV7 0.5. This affects an unknown part of the file /index.jspsettings of the component Software Update Handler. The manipulation of the argument Reference leads to cross site scripting. It is possible to initiat...

6.1CVSS4.3AI score0.00255EPSS

Exploits1References4

Vulnrichment•added 2024/02/21 6:31 p.m.•14 views

CVE-2024-1707 GARO WALLBOX GLB+ T2EV7 Software Update index.jsp#settings cross site scripting

5CVSS6.1AI score0.00255EPSS

Exploits1References4

OSV•added 2023/07/04 4:15 p.m.•2 views

CVE-2023-3505

A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input alert1 leads to cross site scripting. It is possible to...

6.1CVSS3.8AI score0.00078EPSS

Exploits0References2

OSV•added 2023/04/07 5:15 p.m.•2 views

CVE-2023-1909

A vulnerability, which was classified as critical, was found in PHPGurukul BP Monitoring Management System 1.0. Affected is an unknown function of the file profile.php of the component User Profile Update Handler. The manipulation of the argument name/mobno leads to sql injection. It is possible ...

6.5CVSS5.9AI score

Exploits0References3

NVD•added 2023/04/07 5:15 p.m.•9 views

CVE-2023-1909

6.5CVSS5.7AI score0.00272EPSS

Exploits1References3

Prion•added 2023/04/07 5:15 p.m.•18 views

Sql injection

5.8CVSS7AI score0.00272EPSS

Exploits1References3Affected Software1

OSV•added 2023/03/17 7:15 a.m.•1 views

CVE-2023-1442

A vulnerability was found in Meizhou Qingyunke QYKCMS 4.3.0. It has been classified as problematic. This affects an unknown part of the file /adminsystem/api.php of the component Update Handler. The manipulation of the argument downurl leads to unrestricted upload. It is possible to initiate the...

7.2CVSS5.1AI score0.00509EPSS

Exploits1References3

Prion•added 2023/03/17 7:15 a.m.•11 views

Design/Logic Flaw

5.8CVSS7AI score0.00509EPSS

Exploits1References3Affected Software1

Cvelist•added 2023/03/17 6:28 a.m.•14 views

CVE-2023-1442 Meizhou Qingyunke QYKCMS Update api.php unrestricted upload

5.8CVSS7.3AI score0.00509EPSS

Exploits1References3

Rows per page