CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2754 matches found

Positive Technologies•added 2021/03/30 12:0 a.m.•1 views

PT-2021-16434 · Aruba · Aruba Instant

Name of the Vulnerable Software and Affected Versions: Aruba Instant versions 6.4.4.8 through 6.4.4.17 and below Aruba Instant versions 6.5.4.18 and below Aruba Instant versions 8.3.0.14 and below Aruba Instant versions 8.5.0.11 and below Aruba Instant versions 8.6.0.7 and below Aruba Instant...

6.1CVSS6.3AI score0.16443EPSS

Exploits3References8

The Hacker News•added 2021/03/22 8:34 a.m.•1 views

Critical RCE Vulnerability Found in Apache OFBiz ERP Software—Patch Now

The Apache Software Foundation on Friday addressed a high severity vulnerability in Apache OFBiz that could have allowed an unauthenticated adversary to remotely seize control of the open-source enterprise resource planning ERP system. Tracked as CVE-2021-26295, the flaw affects all versions of t...

9.8CVSS8.1AI score0.97969EPSS

Exploits9

OSV•added 2021/03/09 7:15 p.m.•3 views

DEBIAN-CVE-2021-21295

Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In Netty io.netty:netty-codec-http2 before version 4.1.60.Final there is a vulnerability that enables request smuggling. If a...

5.9CVSS6.2AI score0.18891EPSS

Exploits0References1

CVE•added 2021/03/03 11:0 p.m.•97 views

CVE-2021-21331

The CVE affects the Java Datadog API client prior to version 1.0.0-beta.9. The issue is a local information disclosure caused by a temporary file created with insecure permissions (-rw-r--r--) in the prepareDownloadFilecreates pathway, with downloaded content via downloadFileFromResponse exposed ...

4.3CVSS3.5AI score0.00563EPSS

Exploits0References2Affected Software1

Openbugbounty•added 2021/02/21 7:44 a.m.•4 views

All Vulnerabilities for 2001online.com Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| 2001online.com ---|--- Open Bug Bounty...

7.2AI score

Exploits0

Openbugbounty•added 2021/02/19 12:7 p.m.•6 views

All Vulnerabilities for acc.edu.ai Patched via Open Bug Bounty

6.6AI score

Exploits0

Openbugbounty•added 2021/02/12 4:9 a.m.•7 views

All Vulnerabilities for uniasselvi.com.br Patched via Open Bug Bounty

7.2AI score

Exploits0

Hacker One•added 2021/02/12 1:8 a.m.•111 views

curl: CVE-2021-22876: Automatic referer leaks credentials

Summary: When using the --referer ';auto' feature the current URL is copied as-is to the referrer header of the subsequent request. The recommendation 1 is to strip these along with the URL fragment. I can imagine this may, in rare cases, result in unwanted/unexpected disclosure of credentials e....

5CVSS6AI score0.05301EPSS

Exploits1

Openbugbounty•added 2021/02/07 6:40 a.m.•9 views

All Vulnerabilities for ssoidp.gov.ps Patched via Open Bug Bounty

7AI score

Exploits0

Openbugbounty•added 2021/02/06 11:7 a.m.•9 views

All Vulnerabilities for animecorner.me Patched via Open Bug Bounty

7.2AI score

Exploits0

Openbugbounty•added 2021/01/26 1:48 p.m.•9 views

All Vulnerabilities for hlhpn.bacninh.gov.vn Patched via Open Bug Bounty

Exploits0

ThreatPost•added 2021/01/14 1:28 p.m.•232 views

Ring Adds End-to-End Encryption to Quell Security Uproar

Smart doorbell maker Ring is giving cybersecurity critics less to gripe about with the introduction of end-to-end encryption to many of its models. Ring products, which have been a juggernaut success with consumers, have faced a litany of harsh criticism from cybersecurity experts for what they s...

9.3CVSS8.4AI score0.99512EPSS

Exploits75References18

CNVD•added 2020/12/21 12:0 a.m.•7 views

Mitel MiCollab Information Disclosure Vulnerability (CNVD-2021-07246)

Mitel MiCollab is an enterprise collaboration software and tools platform solution. An information disclosure vulnerability exists in the AWV component of Mitel MiCollab versions prior to 9.2. The vulnerability stems from insufficient access control to the meeting code. An attacker could exploit...

5.3CVSS6.3AI score0.00851EPSS

Exploits0References1

CNVD•added 2020/12/21 12:0 a.m.•7 views

Mitel MiCollab SQL Injection Vulnerability

Mitel MiCollab is an enterprise collaboration software and tools platform solution. A SQL injection vulnerability exists in the SAS portal in Mitel MiCollab versions prior to 9.2. The vulnerability stems from improper input validation. An attacker could exploit the vulnerability to access user...

7.2CVSS7.6AI score0.00886EPSS

Exploits0References1

Prion•added 2020/12/08 2:15 a.m.•20 views

Design/Logic Flaw

Kirby is a CMS. In Kirby CMS getkirby/cms before version 3.3.6, and Kirby Panel before version 2.5.14 there is a vulnerability in which the admin panel may be accessed if hosted on a .dev domain. In order to protect new installations on public servers that don't have an admin account for the Pane...

4.3CVSS5.5AI score0.00561EPSS

Exploits0References5Affected Software2

Openbugbounty•added 2020/11/08 2:29 p.m.•6 views

timstreecare.ca Cross Site Scripting vulnerability OBB-1494415

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0

Openbugbounty•added 2020/11/08 12:30 p.m.•7 views

ucoop.org Cross Site Scripting vulnerability OBB-1493827

Exploits0

Openbugbounty•added 2020/11/05 11:28 a.m.•6 views

jano.cz Cross Site Scripting vulnerability OBB-1485809

Exploits0

Openbugbounty•added 2020/11/05 11:14 a.m.•10 views

cbfd80.com Cross Site Scripting vulnerability OBB-1485719

0.1AI score

Exploits0

Openbugbounty•added 2020/11/05 11:4 a.m.•6 views