Lucene search
+L

461 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 12:36 a.m.4 views

CVE-2024-37932

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in anhvnit Woocommerce OpenPos allows File Manipulation.This issue affects Woocommerce OpenPos: from n/a through 6.4.4...

8.6CVSS6.8AI score0.00589EPSS
Exploits0References1
Securelist
Securelist
added 2025/01/17 10:0 a.m.66 views

Mercedes-Benz Head Unit security research report

Introduction This report covers the research of the Mercedes-Benz Head Unit, which was made by our team. Mercedes-Benz's latest Head Unit infotainment system is called Mercedes-Benz User Experience MBUX. We performed analysis of the first generation MBUX. MBUX was previously analysed by KeenLab...

7.8CVSS8.4AI score0.94921EPSS
Exploits152
Vulnrichment
Vulnrichment
added 2025/01/06 4:20 p.m.8 views

CVE-2024-56762

...

7.6AI score
Exploits0
Circl
Circl
added 2024/11/18 8:50 p.m.11 views

CVE-2024-52585

creationtimestamp| type| source ---|---|--- 2024-11-18 20:50:44+00:00| seen| https://infosec.exchange/users/cve/statuses/113505930058010161 2024-11-18 23:14:27+00:00| seen| https://t.me/cvedetector/11381...

5.4CVSS4.8AI score0.00256EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/10/30 2:38 p.m.73 views

Exploit for CVE-2024-38821

cve-2024-38821 Analysis: h...

9.1CVSS7.1AI score0.01726EPSS
Exploits2
GithubExploit
GithubExploit
added 2024/10/22 12:44 p.m.423 views

Exploit for Unrestricted Upload of File with Dangerous Type in Git

CVE-2024-32002 Versions 1.0.0https://github.com/grec...

9CVSS8.2AI score0.25334EPSS
Exploits32
Circl
Circl
added 2024/09/10 5:25 p.m.27 views

CVE-2024-38046

creationtimestamp| type| source ---|---|--- 2024-09-10 17:25:32+00:00| seen| https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review...

7.8CVSS6.8AI score0.00695EPSS
Exploits0References1
Wallarm Lab
Wallarm Lab
added 2024/09/03 8:2 p.m.20 views

API Attack Surface: How to secure it and why it matters

Managing an organization’s attack surface is a complex problem involving asset discovery, vulnerability analysis, and continuous monitoring. There are multiple well-defined solutions to secure the attack surface, such as extended detection and response EDR or XDR, security information & event...

7.8AI score
Exploits0
GithubExploit
GithubExploit
added 2024/09/03 6:37 p.m.1746 views

Exploit for Improper Initialization in Linux Linux_Kernel

It is an exploit module/toolkit targeting unspecified products/s...

5.5CVSS7.4AI score0.00879EPSS
Exploits2
0day.today
0day.today
added 2024/08/29 12:0 a.m.370 views

WordPress GiveWP Donation / Fundraising Platform 3.14.1 Code Execution Exploit

The GiveWP Donation plugin and Fundraising Platform plugin for WordPress in all versions up to and including 3.14.1 is vulnerable to a PHP object injection POI flaw granting an unauthenticated attacker arbitrary code execution. This module requires Metasploit: https://metasploit.com/download...

10CVSS8.4AI score0.74283EPSS
Exploits11
GithubExploit
GithubExploit
added 2024/08/14 4:20 p.m.944 views

Exploit for Out-of-bounds Write in Microsoft

Windows DWM Core Library Elevation of Privilege Vulnerability...

7.8CVSS9.3AI score0.05687EPSS
Exploits2
Circl
Circl
added 2024/08/13 6:5 p.m.6 views

CVE-2024-38117

creationtimestamp| type| source ---|---|--- 2024-08-13 18:05:01+00:00| seen| https://www.thezdi.com/blog/2024/8/13/the-august-2024-security-update-review...

7.8CVSS9.5AI score0.00693EPSS
Exploits0References1
Wallarm Lab
Wallarm Lab
added 2024/07/10 5:50 a.m.16 views

Polyfill.io Supply Chain Attack: Malicious JavaScript Injection Puts Over 100k Websites At Risk

Polyfill.io helps web developers achieve cross-browser compatibility by automatically managing necessary polyfills. By adding a script tag to their HTML, developers can ensure that features like JavaScript functions, HTML5 elements, and various APIs work across different browsers. Originally...

6.5AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/07/08 7:0 p.m.25 views

Measuring, Communicating, and Eliminating Risk With TruRisk™ in Qualys Web Application Scanning (WAS)

In an era where cyber threats loom larger and more complex than ever, organizations demand not just defense but intelligent, cohesive strategies for managing cyber risks. With the Enterprise TruRisk Platform, Qualys reaffirmed its commitment to these needs by focusing its cybersecurity solutions ...

7.5AI score
Exploits0
OSV
OSV
added 2024/06/21 5:56 a.m.1 views

BELL-CVE-2024-38560

Bulletin has no description...

7.1CVSS7AI score0.00265EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/06/10 12:0 a.m.370 views

Kiuwan Local Analyzer / SAST / SaaS XML Injection / XSS / IDOR

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple critical vulnerabilities product: Kiuwan SAST on-premise KOP & cloud/SaaS Kiuwan Local Analyzer KLA vulnerable version: Kiuwan SAST 2.8.2402.3 Kiuwan Local...

7.4AI score0.0082EPSS
Exploits1
Cvelist
Cvelist
added 2024/06/05 6:35 p.m.33 views

CVE-2024-27370

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on halreq-numconfigdiscoveryattr coming from userspace, which can lead to a heap overwrite...

6.7CVSS6.5AI score0.00164EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/05/07 10:3 a.m.743 views

Exploit for Use After Free in Tinyproxy_Project Tinyproxy

!Profile Visitorshttps://komarev.com/ghpvc/?username=d0rb&la...

9.8CVSS6.7AI score0.63076EPSS
Exploits2
CNVD
CNVD
added 2024/04/01 12:0 a.m.3 views

Denial of Service Vulnerability in Quantum 140CPU65150PL at Schneider Electric (China) Co.

The Quantum 140CPU65150PL is the Unity processor in the Schneider Electric family. It combines the standard features of a PLC with the diagnostic capabilities of a network server, communicating using an RJ-45 connection. A denial of service vulnerability exists in the Schneider Electric China...

6.9AI score
Exploits0
Qualys Blog
Qualys Blog
added 2024/02/22 11:5 p.m.51 views

TruRisk™️ Insights – The Story Behind a TruRisk Score

In the world of cloud and SaaS security, where risks arise not only from vulnerabilities but also from misconfigurations and various threats, the task of prioritizing and managing them becomes increasingly complex. Its not just about identifying vulnerabilities; its also crucial to recognize and...

7.7AI score
Exploits0
Rows per page
Query Builder