Lucene search
+L
AttackerkbMost viewed

75202 matches found

attackerkb
attackerkb
added 2020/04/08 12:0 a.m.21 views

CVE-2020-1984

Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with ‘create folders or append data’ access to the root of the OS disk C: to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo f...

7.8CVSS1.8AI score0.00311EPSS
Exploits0References2
attackerkb
attackerkb
added 2020/03/30 12:0 a.m.21 views

CVE-2020-10560

An issue was discovered in Open Source Social Network OSSN through 5.3. A user-controlled file path with a weak cryptographic rand can be used to read any file with the permissions of the webserver. This can lead to further compromise. The attacker must conduct a brute-force attack against the...

5.9CVSS0.7AI score0.03797EPSS
Exploits1References3
attackerkb
attackerkb
added 2020/03/23 12:0 a.m.21 views

CVE-2020-8864

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.10B04. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of HNAP login...

8.8CVSS2.9AI score0.80221EPSS
Exploits0References3
attackerkb
attackerkb
added 2020/03/12 12:0 a.m.21 views

CVE-2020-10535

GitLab 12.8.x before 12.8.6, when sign-up is enabled, allows remote attackers to bypass email domain restrictions within the two-day grace period for an unconfirmed email address. Recent assessments: ericalexanderorg at March 16, 2020 3:55pm UTC reported: Not enough details to fully assess ATM bu...

5.3CVSS1.2AI score0.01016EPSS
Exploits0References2
attackerkb
attackerkb
added 2020/02/18 12:0 a.m.21 views

CVE-2020-9269

SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by exportical.php. Recent assessments: J3rryBl4nks at March 09, 2020 9:09pm UTC reported: This is an injection that is trivial to exploit and also to find. You can...

9CVSS1.6AI score0.02413EPSS
Exploits1References2
attackerkb
attackerkb
added 2020/02/13 12:0 a.m.21 views

CVE-2020-7208

LinuxKI v6.0-1 and earlier is vulnerable to an XSS which is resolved in release 6.0-2. Recent assessments: cinzinga at March 09, 2020 9:38pm UTC reported: I am the founder of this exploit. While it is in a Hewlett-Packard product, it is a very obscure piece of software and was no longer actively...

6.1CVSS2.5AI score0.0085EPSS
Exploits0References2
attackerkb
attackerkb
added 2020/02/12 12:0 a.m.21 views

CVE-2019-19196

The Bluetooth Low Energy Secure Manager Protocol SMP implementation on Telink Semiconductor BLE SDK versions before November 2019 for TLSR8x5x through 3.4.0, TLSR823x through 1.3.0, and TLSR826x through 3.3 devices accepts a pairing request with a key size greater than 16 bytes, allowing an...

6.5CVSS2.8AI score0.01357EPSS
Exploits1References3
attackerkb
attackerkb
added 2020/02/12 12:0 a.m.21 views

CVE-2019-19192

The Bluetooth Low Energy implementation on STMicroelectronics BLE Stack through 1.3.1 for STM32WB5x devices does not properly handle consecutive Attribute Protocol ATT requests on reception, allowing attackers in radio range to cause an event deadlock or crash via crafted packets. Recent...

6.5CVSS1.5AI score0.01038EPSS
Exploits1References2
attackerkb
attackerkb
added 2020/02/10 12:0 a.m.21 views

CVE-2019-17518

The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through 1.0.14.1081 for DA1468x devices responds to link layer packets with a payload length larger than expected, allowing attackers in radio range to cause a buffer overflow via a crafted packet. This affects, for example, Augu...

6.5CVSS8.4AI score0.0076EPSS
Exploits0References3
attackerkb
attackerkb
added 2020/02/07 12:0 a.m.21 views

CVE-2020-8655

An issue was discovered in EyesOfNetwork 5.3. The sudoers configuration is prone to a privilege escalation vulnerability, allowing the apache user to run arbitrary commands as root via a crafted NSE script for nmap 7. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assess...

9.3CVSS7.8AI score0.58076EPSS
Exploits9References4
attackerkb
attackerkb
added 2019/10/28 12:0 a.m.21 views

CVE-2019-16662

An issue was discovered in rConfig 3.9.2. An attacker can directly execute system commands by sending a GET request to ajaxServerSettingsChk.php because the rootUname parameter is passed to the exec function without filtering, which can lead to command execution. Recent assessments: pbarry-r7 at...

10CVSS3.6AI score0.97702EPSS
Exploits11References8
attackerkb
attackerkb
added 2018/03/28 12:0 a.m.21 views

CVE-2018-0179

Multiple vulnerabilities in the Login Enhancements Login Block feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service DoS condition. These vulnerabilities affect Cisco devices that are running Cisco...

7.1CVSS3.2AI score0.05032EPSS
Exploits0References3
attackerkb
attackerkb
added 2017/09/29 12:0 a.m.21 views

CVE-2017-12235

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol PN-DCP for Cisco IOS 12.2 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The vulnerability is due to the...

7.8CVSS4.2AI score0.07128EPSS
Exploits0References4
attackerkb
attackerkb
added 2017/09/29 12:0 a.m.21 views

CVE-2017-12232

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 ISR G2 Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service DoS condition. The...

6.5CVSS5.6AI score0.02171EPSS
Exploits0References4
attackerkb
attackerkb
added 2017/08/02 12:0 a.m.21 views

CVE-2017-9770

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse that can cause an out of bounds read operation to occur due to a field within the IOCTL data being used as a length. Recent assessments: zeroSteiner at December 18, 2019 1:17am UTC reported: A vulnerability exists...

5.5CVSS0.8AI score0.00332EPSS
Exploits1References2
attackerkb
attackerkb
added 2016/01/13 12:0 a.m.21 views

CVE-2016-0034

Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows remote attackers to execute arbitrary code or cause a denial of service object-header corruption via a crafted web site, aka “Silverlight Runtime Remote Code Execution Vulnerability.” Recent...

9.3CVSS8.9AI score0.69709EPSS
Exploits1References3
attackerkb
attackerkb
added 2015/05/29 12:0 a.m.21 views

CVE-2015-4068

Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the 1 reportFileServlet or 2 exportServlet servlet. Recent assessments: Assessed Attacker Value: 0 Assessed Attacke...

9.4CVSS6AI score0.63643EPSS
Exploits0References7
attackerkb
attackerkb
added 2014/06/13 12:0 a.m.21 views

Sharetronix <= 3.1.1 Two PHP Code Injection Vulnerabilities

Sharetronix 3.1.1.3, 3.1.1, and earlier allows remote attackers to execute arbitrary PHP code via the 1 activitiestext parameter to services/activities/set or 2 commentstext parameter to services/comments/set, which is not properly handled when executing the pregreplace function with the e...

6.8CVSS2.2AI score0.01447EPSS
Exploits0References1
attackerkb
attackerkb
added 2013/11/28 12:0 a.m.21 views

CVE-2013-5065

NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in November 2013. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.8CVSS6.1AI score0.34893EPSS
Exploits16References7
attackerkb
attackerkb
added 2013/03/15 12:0 a.m.21 views

CVE-2013-2492

Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514, and 2.5.1 through 2.5.3 before 26623, on Windows allows remote attackers to execute arbitrary code via a crafted packet to TCP port 3050, related to a missing size check during extraction of a group number from CNCT...

6.8CVSS4.5AI score0.42166EPSS
Exploits6References10
attackerkb
attackerkb
added 2013/03/13 12:0 a.m.21 views

CVE-2013-0074

Microsoft Silverlight 5, and 5 Developer Runtime, before 5.1.20125.0 does not properly validate pointers during HTML object rendering, which allows remote attackers to execute arbitrary code via a crafted Silverlight application, aka “Silverlight Double Dereference Vulnerability.” Recent...

9.3CVSS7.8AI score0.81868EPSS
Exploits8References5
attackerkb
attackerkb
added 2008/10/15 8:7 p.m.21 views

CVE-2008-4576

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service OOPS via an INIT-ACK that states the peer does not support AUTH, which causes the sctpprocessinit function to clean up active transports and triggers the OOPS when the T1-Init timer expires...

7.8CVSS5.5AI score0.0368EPSS
Exploits0References26
attackerkb
attackerkb
added 2026/07/08 8:53 p.m.20 views

CVE-2026-57480

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.9.1-alpha.12 and 8.6.82, deeply nested $or, $and, and $nor query condition operators in the REST API or LiveQuery query handling could trigger exponential-time processing in the...

8.7CVSS5.9AI score0.00335EPSS
Exploits0References8Affected Software1
attackerkb
attackerkb
added 2026/07/04 11:54 a.m.20 views

CVE-2026-53361

In the Linux kernel, the following vulnerability has been resolved: afunix: Set gcinprogress to true in unixgc. Igor Ushakov reported that unixgc could run with gcinprogress being false if the work is scheduled while running: Thread 1 Thread 2 Thread 3 -------- -------- -------- unixschedulegc...

5.8AI score0.00171EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/06/24 6:43 p.m.20 views

CVE-2026-13027

Use after free in FileSystem in Google Chrome prior to 149.0.7827.197 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00195EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/24 4:29 p.m.20 views

CVE-2026-53005

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AFUNIX GC. When a socket in SOCKMAP receives skb with inflight fd, skpsockverdictdataready looks up the mapped socket and enqueue skb to its...

5.6AI score0.00129EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/24 4:28 p.m.20 views

CVE-2026-52971

In the Linux kernel, the following vulnerability has been resolved: net: ena: PHC: Fix potential use-after-free in gettimestamp Move the phc-active check and resp pointer assignment to after acquiring the spinlock. Previously, phc-active was checked without holding the lock, and resp was cached...

5.6AI score0.00133EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/06/08 3:30 p.m.20 views

CVE-2026-46442

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.1.2, POST /api/v1/node-custom-function lacks route-level authorization, allowing any authenticated user or API key to submit arbitrary JavaScript to the Custom JS Function node. When...

9.4CVSS6.5AI score0.0082EPSS
Exploits1References3Affected Software1
attackerkb
attackerkb
added 2026/06/08 3:22 p.m.20 views

CVE-2026-44185

Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

5.4AI score0.00598EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/06/02 4:41 p.m.20 views

CVE-2026-35447

NamelessMC is website software for Minecraft servers. In version 2.2.4, the profile page modules/Core/pages/profile.php processes wall post submissions and replies before verifying whether the viewer is authorized to access the profile. This allows any user with the profile.post permission to wri...

5.3CVSS5.9AI score0.00236EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/01 9:14 p.m.20 views

CVE-2026-0091

In multiple locations, there is a possible way to execute code in the launcher process due to an over-privileged shell user. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.1AI score0.00067EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/06/01 4:59 p.m.20 views

CVE-2026-45286

Nextcloud is an open source content collaboration platform. From versions 5.5.13 to before 5.5.17, and 6.2.0 to before 6.2.3, an authenticated user can enumerate users on the same Nextcloud instance by using the Calendar app's endpoint for suggesting attendees. The sharing restrictions, applied t...

4.3CVSS5.8AI score0.00281EPSS
Exploits1References5Affected Software1
attackerkb
attackerkb
added 2026/06/01 11:30 a.m.20 views

CVE-2026-10532

Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core HardenedObjectInputStream logback-core modules allows Object Injection, albeit heavily restricted. More precisely, an attacker able to influence serialized data sent to SimpleSocketServer or SimpleSSLSocketServer...

6.3CVSS6.4AI score0.00342EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/01 7:48 a.m.20 views

CVE-2026-45360

Apache Airflow's scheduler-side deadline-reference decoder SerializedCustomReference.deserializereference imported and dispatched arbitrary class paths drawn from DAG-author-controlled serialized state without an allowlist or plugin-registry gate. A DAG author whose code reaches the scheduler — t...

6AI score0.00651EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/30 2:55 p.m.20 views

CVE-2018-25425

Yot CMS 3.3.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the aid and cid parameters. Attackers can send GET requests to index.php with crafted SQL payloads in the aid or cid parameters to extra...

8.8CVSS6.2AI score0.0027EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/28 6:28 p.m.20 views

CVE-2026-47335

Ubuntu Linux 6.8 contains SAUCE patches with a possible NULL pointer dereference in the handling of AppArmor notifications. The bug can be triggered by an unprivileged local user. This can lead to a kernel panic...

5.5CVSS5.8AI score0.00097EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/27 5:31 a.m.20 views

CVE-2026-8845

The Islamic Database plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'islamicDB-roqya' shortcode in versions up to, and including, 1.0. This is due to insufficient input sanitization and output escaping on user-supplied 'width' and 'height' shortcode attributes within th...

6AI score0.00187EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/05/26 9:32 p.m.20 views

CVE-2026-44788

SharpCompress is a fully managed C library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory allows a malicious archive to create directories outside the intended extraction root. For TAR archives, this can be...

5.9CVSS6AI score0.00313EPSS
Exploits1References2Affected Software1
attackerkb
attackerkb
added 2026/05/24 10:15 a.m.20 views

CVE-2026-9373

A vulnerability has been found in JeecgBoot 3.9.1. This issue affects some unknown processing of the file /openapi/call/ of the component OpenAPI Endpoint. Such manipulation leads to improper authentication. The attack can be executed remotely. A high complexity level is associated with this...

6.3CVSS5.1AI score0.00357EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/05/21 9:27 p.m.20 views

CVE-2026-6960

The BookingPress Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'bookingpressvalidatesubmittedbookingformfunc' function in all versions up to, and including, 5.6. This makes it possible for unauthenticated attackers to upload arbitrary...

9.8CVSS6.5AI score0.00672EPSS
Exploits1References3
attackerkb
attackerkb
added 2026/05/17 10:45 a.m.20 views

CVE-2026-8750

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

6.9CVSS5.8AI score0.00497EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/12 9:28 p.m.20 views

CVE-2026-44305

Lemur manages TLS certificate creation. Prior to 1.9.0, when LDAP TLS is enabled LDAPUSETLS = True, Lemur's LDAP authentication module unconditionally disables TLS certificate verification at the global ldap module level. This allows a man-in-the-middle attacker positioned between Lemur and the...

6.8CVSS5.8AI score0.00094EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/03 4:30 a.m.20 views

CVE-2026-7680

A weakness has been identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file backend/webserver/api/datasets.py of the component Data Endpoint. Executing a manipulation of the argument folder can lead to path traversal. The attack can be launched remotely. The...

5.3CVSS5.5AI score0.00467EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/04/29 6:0 p.m.20 views

CVE-2026-7397

A security flaw has been discovered in NousResearch hermes-agent 0.8.0. This affects the function checksensitivepath of the file tools/filetools.py. The manipulation results in symlink following. Attacking locally is a requirement. The exploit has been released to the public and may be used for...

4.8CVSS4.8AI score0.00138EPSS
Exploits0References8Affected Software1
attackerkb
attackerkb
added 2026/03/19 8:39 p.m.20 views

CVE-2026-27454

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, requesting /posts/:id.json?version=X bypassed authorization checks on post revisions. The displaypost method called post.revertto directly without verifying whether the revision was hidde...

5.3CVSS5.8AI score0.00388EPSS
Exploits0Affected Software1
attackerkb
attackerkb
added 2026/03/19 1:0 a.m.20 views

CVE-2026-28461

OpenClaw versions prior to 2026.3.1 contain an unbounded memory growth vulnerability in the Zalo webhook endpoint that allows unauthenticated attackers to trigger in-memory key accumulation by varying query strings. Remote attackers can exploit this by sending repeated requests with different que...

8.7CVSS5.8AI score0.00354EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/03/15 12:19 a.m.20 views

CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this...

7.1CVSS6AI score0.00183EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/01/28 4:47 p.m.20 views

CVE-2026-24685

OpenProject is an open-source, web-based project management software. Versions prior to 16.6.6 and 17.0.2 have an arbitrary file write vulnerability in OpenProject’s repository diff download endpoint /projects/:projectid/repository/diff.diff when rendering a single revision via git show. By...

9.4CVSS5.8AI score0.00318EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/01/26 9:32 p.m.20 views

CVE-2026-1444

A vulnerability has been found in iJason-Liu BooksManager up to 298ba736387ca37810466349af13a0fdf828e99c. This affects an unknown part of the file controllers/bookscenter/addbookcheck.php. Such manipulation of the argument mark leads to cross site scripting. The attack can be launched remotely. T...

4.8CVSS4.2AI score0.00206EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/01/22 12:13 p.m.20 views

CVE-2025-10855

Authorization Bypass Through User-Controlled Key vulnerability in Solvera Software Services Trade Inc. Teknoera allows Exploitation of Trusted Identifiers. This issue affects Teknoera: through 01102025...

7.5CVSS5.4AI score0.00379EPSS
Exploits0References3
Total number of security vulnerabilities5000