Lucene search
K

1395 matches found

Vulnrichment
Vulnrichment
added 2024/05/15 6:0 a.m.12 views

CVE-2024-3748 SP Project & Document Manager <= 4.71 - Data Update via IDOR

The SP Project & Document Manager WordPress plugin through 4.71 is missing validation in its upload function, allowing a user to manipulate the userid to make it appear that a file was uploaded by another user...

6.7AI score0.00434EPSS
Exploits2References1
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.5 views

The vulnerability of the can_map_frag() function in the net/ipv4/tcp.c module of the Linux operating system’s IPv4 protocol implementation allows a attacker to cause a service failure.

The vulnerability of the canmapfrag function in the net/ipv4/tcp.c module of the Linux operating system’s IPv4 protocol implementation is related to the lack of necessary data validation checks. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

7.8CVSS6.5AI score0.0023EPSS
Exploits0References37Affected Software4
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.5 views

Nuki Bridge 安全漏洞

Nuki Bridge is a smart lock control software from Nuki. A security vulnerability exists in v1.x versions of Nuki Bridge prior to v1.22.0 and v2.x versions prior to v2.13.2, and Nuki Keypad prior to v1.9.2, which stems from a lack of certificate validation for HTTP communications, allowing an...

9.8CVSS6.5AI score0.0161EPSS
Exploits0References5
OSV
OSV
added 2024/05/07 11:15 p.m.3 views

CVE-2021-34974

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2024/05/07 11:15 p.m.2 views

CVE-2021-34960

Foxit PDF Editor Circle Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2024/05/07 11:15 p.m.1 views

CVE-2021-34958

Foxit PDF Editor Text Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00349EPSS
Exploits0References2
OSV
OSV
added 2024/05/07 11:15 p.m.3 views

CVE-2021-34955

Foxit PDF Editor Stamp Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00349EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/06 12:0 a.m.2 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when a previously called buffer size is used without validation or reinitialization...

8.4CVSS7.1AI score0.00111EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:16 a.m.4 views

CVE-2023-51563

Kofax Power PDF XPS File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00541EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:16 a.m.5 views

CVE-2023-50196

Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target mus...

7.8CVSS6.2AI score0.00344EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.4 views

CVE-2023-44436

Kofax Power PDF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.00385EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.2 views

CVE-2023-42092

Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.0046EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.4 views

CVE-2023-42094

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.0046EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.5 views

CVE-2023-42075

PDF-XChange Editor JPG File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.0043EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.4 views

CVE-2023-42045

PDF-XChange Editor J2K File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visi...

7.8CVSS6.2AI score0.00406EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/03 3:15 a.m.6 views

CVE-2023-40488

Maxon Cinema 4D SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Maxon Cinema 4D. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00378EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:15 a.m.5 views

CVE-2023-39488

PDF-XChange Editor TIF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00378EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 2:15 a.m.3 views

CVE-2023-27331

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.03925EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/02 12:0 a.m.8 views

PT-2024-29115 · WordPress · Cm Tooltip Glossary – Powerful Glossary Plugin

Name of the Vulnerable Software and Affected Versions: CM Tooltip Glossary – Powerful Glossary Plugin plugin for WordPress versions up to, and including, 4.2.11 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation when saving settings. This...

4.3CVSS6.6AI score0.00253EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/09 12:0 a.m.2 views

WordPress Plugin LearnPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

6.5CVSS8.4AI score0.00391EPSS
Exploits0References3
Rows per page
Query Builder