Lucene search
K
AttackerkbMost viewed

74967 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/28 9:2 a.m.22 views

CVE-2026-4377

Dlink DWR-X1820 router uses weak default password generated from its IMEI number and does not require users to change it. An attacker who knows how passwords are generated can easily crack the default password if they have the device IMEI number. This issue was fixed in version 1.00B16CP...

6CVSS5.8AI score0.00141EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/25 12:30 a.m.22 views

CVE-2026-9410

A vulnerability has been found in Sushmi-pal Invoice-System up to a0a3faa16dee2621b231ae227333f5761607283b. This vulnerability affects unknown code of the file /profile of the component Profile Workflow. Such manipulation of the argument ID leads to improper authorization. It is possible to launc...

5.3CVSS5.4AI score0.00198EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/18 10:38 a.m.22 views

CVE-2026-7301

SGLangs multimodal generation runtime scheduler's ROUTER socket binds to 0.0.0.0 by default and contains a sink that calls pickle.loads on incoming messages, enabling RCE when exposed to the internet...

9.8CVSS5.8AI score0.00399EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/15 5:15 a.m.22 views

CVE-2026-43490

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smbinheritdacl walks the parent directory DACL loaded from the security descriptor xattr. It verifies that each ACE contains the fixed SID header before using it, but does not verify that...

8.8CVSS6AI score0.00408EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/14 5:38 a.m.22 views

CVE-2025-13874

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with Guest permissions to view issues in projects they were not authorized to access...

4.3CVSS5.8AI score0.00193EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/13 8:28 a.m.22 views

CVE-2026-7009

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the server certificate is valid, it fails to detect OCSP problems and instead wrongly consider the response as fine...

5.8AI score0.00267EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/12 12:0 a.m.22 views

CVE-2026-45185

Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. It is triggered when a client sends a TLS closenotify mid-body during a CHUNKING transfer, followed by a final cleartext byte on the same TCP connection. This can lead to...

9.8CVSS6.2AI score0.01225EPSS
Exploits2References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/09 7:16 p.m.22 views

CVE-2026-42333

Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to versions 2.11.1-lts, 2.16.0-lts, and 2.17.0, the generated authentication filter matches OpenAPI path templates too broadly when deciding whether to attach credentials. A security...

6.3CVSS5.7AI score0.004EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 9:26 a.m.22 views

CVE-2026-7567

The Temporary Login plugin for WordPress is vulnerable to Authentication Bypass in versions up to and including 1.0.0. This is due to improper input validation in the maybelogintemporaryuser function, which fails to verify that the 'temp-login-token' GET parameter is a scalar string before...

9.8CVSS5.7AI score0.09246EPSS
Exploits3References8
ATTACKERKB
ATTACKERKB
added 2026/04/07 3:23 p.m.22 views

CVE-2026-35526

Strawberry GraphQL is a library for creating GraphQL APIs. Prior to 0.312.3, Strawberry GraphQL's WebSocket subscription handlers for both the graphql-transport-ws and legacy graphql-ws protocols allocate an asyncio.Task and associated Operation object for every incoming subscribe message without...

7.5CVSS5.9AI score0.00274EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/20 8:7 p.m.22 views

CVE-2026-33144

GPAC is an open-source multimedia framework. Prior to commit 86b0e36, a heap-based buffer overflow write vulnerability was discovered in GPAC MP4Box. The vulnerability exists in the gfxmlparsebitsequencebs function in utils/xmlbincustom.c when processing a crafted NHML file containing malicious...

5.8CVSS6AI score0.00165EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/05 5:54 a.m.22 views

CVE-2026-28010

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeREX Scientia scientia allows PHP Local File Inclusion.This issue affects Scientia: from n/a through = 1.2.4...

5.9AI score0.00403EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/02 6:42 p.m.22 views

CVE-2026-0025

In hasImage of Notification.java, there is a possible way to reveal information across users due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00102EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/26 12:2 a.m.22 views

CVE-2026-27818

TerriaJS-Server is a NodeJS Express server for TerriaJS, a library for building web-based geospatial data explorers. A validation bug in versions prior to 4.0.3 allows an attacker to proxy domains not explicitly allowed in the proxyableDomains configuration. Version 4.0.3 fixes the issue...

8.7CVSS5.4AI score0.00241EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/27 4:1 p.m.22 views

CVE-2025-15467

Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. Impact summary: A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution. When parsing CMS...

8.8CVSS8.5AI score0.47621EPSS
Exploits7References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/03/10 12:0 a.m.22 views

CVE-2025-24813

Path Equivalence: ‘file.Name’ Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...

10CVSS9.6AI score0.99945EPSS
Exploits47References3
ATTACKERKB
ATTACKERKB
added 2025/03/04 12:0 a.m.22 views

CVE-2025-22226

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process. Recent assessments: remmons-r7 at...

9.3CVSS8.9AI score0.01676EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/11/19 12:0 a.m.22 views

CVE-2024-50302

In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let’s zero-initialize it during allocation to make sure that it can’t be ever used to leak kernel memory via...

5.5CVSS7.2AI score0.00809EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2024/06/07 12:0 a.m.22 views

CVE-2024-37383

Roundcube Webmail before 1.5.7 and 1.6.x before 1.6.7 allows XSS via SVG animate attributes. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

6.1CVSS5.9AI score0.73296EPSS
Exploits5References5
ATTACKERKB
ATTACKERKB
added 2023/12/05 6:15 p.m.22 views

CVE-2023-6448

Unitronics VisiLogic before version 9.9.00, used in Vision and Samba PLCs and HMIs, uses a default administrative password. An unauthenticated attacker with network access can take administrative control of a vulnerable system...

9.8CVSS7.3AI score0.02089EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2023/04/11 12:0 a.m.22 views

CVE-2023-29492

Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in the context of the service account. This does not provide access to stored survey or response data. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS9.6AI score0.0269EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/09/19 10:15 p.m.22 views

CVE-2022-38339

Safe Software FME Server v2021.2.5, v2022.0.0.2 and below contains a cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login page...

9.6CVSS5.9AI score0.00482EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/06/29 12:0 a.m.22 views

CVE-2022-22487

An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. A remote attacker could exploit this vulnerability using brute force techniques to gain...

9.8CVSS6.6AI score0.0139EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/19 12:0 a.m.22 views

CVE-2022-21445

Vulnerability in the Oracle Application Development Framework ADF product of Oracle Fusion Middleware component: ADF Faces. Supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

9.8CVSS7.5AI score0.62478EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/01/25 8:15 p.m.22 views

CVE-2021-4133

A flaw was found in Keycloak in versions from 12.0.0 and before 15.1.1 which allows an attacker with any existing user account to create new default user accounts via the administrative REST API even when new user registration is disabled...

8.8CVSS7.5AI score0.01347EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2021/09/14 12:15 p.m.22 views

CVE-2021-38163

SAP NetWeaver Visual Composer 7.0 RT versions - 7.30, 7.31, 7.40, 7.50, without restriction, an attacker authenticated as a non-administrative user can upload a malicious file over a network and trigger its processing, which is capable of running operating system commands with the privilege of th...

9.9CVSS7.2AI score0.37149EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/06/08 12:0 a.m.22 views

CVE-2021-31956

Windows NTFS Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.3CVSS6.9AI score0.20112EPSS
Exploits4References2
ATTACKERKB
ATTACKERKB
added 2021/06/02 2:15 p.m.22 views

CVE-2021-3545

An information disclosure vulnerability was found in the virtio vhost-user GPU device vhost-user-gpu of QEMU in versions up to and including 6.0. The flaw exists in virglcmdgetcapsetinfo in contrib/vhost-user-gpu/virgl.c and could occur due to the read of uninitialized memory. A malicious guest...

6.5CVSS5.3AI score0.00421EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2020/04/08 12:0 a.m.22 views

CVE-2020-1985

Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows. Recent assessments: xFreed0m at April 10, 2020 3:06pm UTC reported: CVE-2020-1985...

7.8CVSS1.8AI score0.00254EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/04/06 12:0 a.m.22 views

CVE-2020-7357

Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the ‘NTPServerIP’ HTTP POST parameter in system.cgi page. This issue affects several...

9.9CVSS9.8AI score0.33874EPSS
Exploits8References4
ATTACKERKB
ATTACKERKB
added 2020/03/09 12:0 a.m.22 views

CVE-2020-9758

An issue was discovered in chat.php in LiveZilla Live Chat 8.0.1.3 Helpdesk. A blind JavaScript injection lies in the name parameter. Triggering this can fetch the username and passwords of the helpdesk employees in the URI. This leads to a privilege escalation, from unauthenticated to user-level...

9.6CVSS1.3AI score0.02465EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/03/04 12:0 a.m.22 views

CVE-2020-9371

Stored XSS exists in the Appointment Booking Calendar plugin before 1.3.35 for WordPress. In the cpabcappointments.php file, the Calendar Name input could allow attackers to inject arbitrary JavaScript or HTML. Recent assessments: kevthehermit at March 05, 2020 10:29am UTC reported: This plugin i...

4.8CVSS1.5AI score0.03591EPSS
Exploits5References6
ATTACKERKB
ATTACKERKB
added 2020/02/26 12:0 a.m.22 views

CVE-2020-9337

In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request. Recent assessments: horshark at March 09, 2020 8:13pm UTC reported: Recap Nothing deep, passwords are sent using Base64. Requires Ability to monitor networking traffic during user authentification. Loot...

6.5CVSS3AI score0.00541EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2020/02/25 12:0 a.m.22 views

CVE-2020-8819

An issue was discovered in the CardGate Payments plugin through 3.1.15 for WooCommerce. Lack of origin authentication in the IPN callback processing function in cardgate/cardgate.php allows an attacker to remotely replace critical plugin settings merchant ID, secret key, etc. and therefore bypass...

8.1CVSS8.1AI score0.04877EPSS
Exploits6References6
ATTACKERKB
ATTACKERKB
added 2020/02/22 12:0 a.m.22 views

CVE-2020-9339

SOPlanning 1.45 allows XSS via the Name or Comment to status.php. Recent assessments: horshark at March 09, 2020 8:38pm UTC reported: Recap Javascript execution. Where On the ip/www/status.php page, you can execute Javascript in the name and comment fields. Assessed Attacker Value: 2 Assessed...

5.4CVSS4.8AI score0.00557EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/02/18 12:0 a.m.22 views

CVE-2020-8010 Nimbus protocol allows unauth read/write/execute

CA Unified Infrastructure Management Nimsoft/UIM 9.20 and below contains an improper ACL handling vulnerability in the robot controller component. A remote attacker can execute commands, read from, or write to the target system. Recent assessments: busterb at August 04, 2020 5:44pm UTC reported:...

10CVSS2.3AI score0.77566EPSS
Exploits9References3
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.22 views

CVE-2019-15142: DjVuLibre Out-of-Bound Read Vulnerability

DJVuLibre is an open source library for DjVu, a web-centric format and software platform for distributing documents and images. According to the official site, it is used by many academic, commercial, government, and non-commercial websites around the world. A vulnerability was found by researche...

5.5CVSS5.5AI score0.0185EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2019/12/03 12:0 a.m.22 views

CVE-2019-5111

Exploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameter filtercat was confirmed to suffer from SQL injections and could be exploited by authenticated attackers. An attacker can send a web request with parameters...

8.8CVSS5AI score0.01393EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2019/11/06 12:0 a.m.22 views

Metasploit Pro 4.16 and earlier install the web server SSL server.key as local-user readable by default

Rapid7 Metasploit Pro version 4.16.0-2019081901 and prior suffers from an instance of CWE-732, wherein the unique server.key is written to the file system during installation with world-readable permissions. This can allow other users of the same system where Metasploit Pro is installed to...

3.3CVSS3.3AI score0.0031EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2019/09/11 12:0 a.m.22 views

Supra Smart Cloud TV Remote File Inclusion

Supra Smart Cloud TV allows remote file inclusion in the openLiveURL function, which allows a local attacker to broadcast fake video without any authentication via a /remote/mediacontrol?action=setUri&uri= URI. Recent assessments: pbarry-r7 at November 20, 2019 11:40pm UTC reported: Have to be on...

5.5CVSS2.1AI score0.13318EPSS
Exploits7References3
ATTACKERKB
ATTACKERKB
added 2019/08/27 12:0 a.m.22 views

CVE-2019-14314

A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via...

9.8CVSS3.3AI score0.43353EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2019/07/17 12:0 a.m.22 views

CVE-2019-11771

AIX builds of Eclipse OpenJ9 before 0.15.0 contain unused RPATHs which may facilitate code injection and privilege elevation by local users. Recent assessments: timb-machine at March 05, 2021 12:25am UTC reported: Unlikely to be setUID, unlikely that you will have write control over the vulnerabl...

7.8CVSS3.1AI score0.00394EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2019/06/03 12:0 a.m.22 views

Atlassian BitBucket Data Center Migration Tool Directory Traversal Vulnerability

Bitbucket Data Center is the on-premises Git repository management solution for larger enterprises that require high availability and performance at scale. It uses a cluster of Bitbucket server nodes and is designed in your own data center. A vulnerability was found in the Data Center’s migration...

9.1CVSS0.2AI score0.05057EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2019/05/14 12:0 a.m.22 views

CVE-2018-14839

LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. The impact is: execute arbitrary code remote. The attack vector is: HTTP POST with parameters. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS4.9AI score0.89354EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2019/03/28 12:0 a.m.22 views

CVE-2019-17558

Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset velocity/ directory or as a parameter. A user defined configset could contain renderable, potentially...

7.5CVSS7.2AI score0.98567EPSS
Exploits12References30
ATTACKERKB
ATTACKERKB
added 2019/03/11 12:0 a.m.22 views

CMS Made Simple (CMSMS) Showtime2 Post Auth Arbitrary File Upload Vulnerability

CMSMS’s Showtime2 module is vulnerable to an arbitrary file upload vulnerability. An authenticated attacker can exploit this by uploading a malicious payload, and gain remote code execution. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: Background CMS Made Simple CMSMS i...

6.5CVSS7.1AI score0.45896EPSS
Exploits7References7
ATTACKERKB
ATTACKERKB
added 2019/02/05 12:0 a.m.22 views

CVE-2017-18362

ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the wild to download and execute ransomware payloads on all...

9.8CVSS4.4AI score0.86706EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2018/03/02 10:29 p.m.22 views

CVE-2015-7963

SafeNet Authentication Service for AD FS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...

7.8CVSS5.5AI score0.00399EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2017/03/09 12:0 a.m.22 views

CVE-2017-6528

An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage the /home/dna/spool/.pfile file. Recent assessments: h00die at March 27, 2020 4:11pm UTC reported: /home/dna/spool/.pfile is the database file for users. It is a tab delimited file, and by...

8.1CVSS1.1AI score0.03438EPSS
Exploits6References4
ATTACKERKB
ATTACKERKB
added 2014/05/08 12:0 a.m.22 views

CVE-2014-0930

The ptrace system call in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.x, allows local users to cause a denial of service system crash or obtain sensitive information from kernel memory via a crafted PTLDINFO operation. Recent assessments: timb-machine at March 05, 2021 12:47am UTC reported: Assessed...

4.7CVSS4.2AI score0.0047EPSS
Exploits1References12
Total number of security vulnerabilities5000