Lucene search
K
AttackerkbMost viewed

75081 matches found

ATTACKERKB
ATTACKERKB
added 2025/02/10 12:0 a.m.18 views

CVE-2025-24200

An authorization issue was addressed with improved state management. This issue is fixed in iPadOS 17.7.5, iOS 18.3.1 and iPadOS 18.3.1. A physical attack may disable USB Restricted Mode on a locked device. Apple is aware of a report that this issue may have been exploited in an extremely...

6.1CVSS5.5AI score0.04371EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/12/13 3:15 p.m.18 views

CVE-2023-38477

Missing Authorization vulnerability in stasionok QR code MeCard/vCard generator wp-qrcode-me-v-card allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects QR code MeCard/vCard generator: from n/a through = 1.6.0...

4.3CVSS5.8AI score0.00384EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/10/23 12:0 a.m.18 views

CVE-2024-20481

A vulnerability in the Remote Access VPN RAVPN service of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS of the RAVPN service. This vulnerability is due to resource...

5.8CVSS7.6AI score0.15953EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/08/12 11:15 p.m.18 views

CVE-2024-43150

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Xpro Xpro Elementor Addons allows Stored XSS.This issue affects Xpro Elementor Addons: from n/a through 1.4.4.2...

6.5CVSS5.2AI score0.00246EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/02/21 12:0 a.m.18 views

CVE-2024-1212

Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS7.2AI score0.95388EPSS
Exploits9References5
ATTACKERKB
ATTACKERKB
added 2023/12/07 8:15 p.m.18 views

CVE-2023-49460

libheif v1.17.5 was discovered to contain a segmentation violation via the function UncompressedImageCodec::decodeuncompressedimage...

8.8CVSS7.3AI score0.00762EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/09 6:15 a.m.18 views

CVE-2023-45370

An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. SportsTeams: Special:SportsManagerLogo and Special:SportsTeamsManagerLogo do not check for the sportsteamsmanager user right, and thus an attacker may ...

5.3CVSS6AI score0.00324EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/09/25 8:15 p.m.18 views

CVE-2022-4318

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable...

7.8CVSS5.4AI score0.00266EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/07/29 8:15 p.m.18 views

CVE-2022-2323

Improper neutralization of special elements used in a user input allows an authenticated malicious user to perform remote code execution in the host system. This vulnerability impacts SonicWall Switch 1.1.1.0-2s and earlier versions...

8.8CVSS7.4AI score0.01267EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/06/16 11:15 p.m.18 views

CVE-2022-30326

An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The network pre-shared key field on the web interface is vulnerable to XSS. An attacker can use a simple XSS payload to crash the basic.config page of the web interface...

10CVSS6.7AI score0.01811EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/04/22 6:15 p.m.18 views

CVE-2022-1440

Command Injection vulnerability in [email protected] in GitHub repository yarkeev/git-interface prior to 2.1.2. If both are provided by user input, then the use of a --upload-pack command-line argument feature of git is also supported for git clone, which would then allow for any operating syst...

10CVSS7.7AI score0.03928EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/03/14 1:15 p.m.18 views

CVE-2022-24387

With administrator or admin privileges the application can be tricked into overwriting files in appdata/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010...

9.1CVSS7AI score0.02026EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/02/04 11:15 p.m.18 views

CVE-2021-4043

NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0...

5.8CVSS7.1AI score0.04615EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2022/02/04 2:15 a.m.18 views

CVE-2021-46456

D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings. This vulnerability allows attackers to execute arbitrary commands via the wl0.0maclist parameter...

9.8CVSS8.2AI score0.03818EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/01/17 7:15 p.m.18 views

CVE-2022-0242

Unrestricted Upload of File with Dangerous Type in GitHub repository crater-invoice/crater prior to 6.0...

7.2CVSS7.1AI score0.01413EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2021/09/24 12:0 a.m.18 views

CVE-2021-40655

An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. An attacker can obtain a user name and password by forging a post request to the / getcfg.php page Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

7.5CVSS7.2AI score0.87039EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2020/09/23 12:0 a.m.18 views

Cisco Firepower Management Center Lightweight Directory Access Protocol Authentication Bypass Vulnerability

A vulnerability in the web-based management interface of Cisco Firepower Management Center FMC could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability is due to improper handling...

10CVSS1.2AI score0.0335EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/06/09 12:0 a.m.18 views

CVE-2020-13965

An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

6.3CVSS5.7AI score0.76596EPSS
Exploits2References12
ATTACKERKB
ATTACKERKB
added 2020/06/04 12:0 a.m.18 views

CVE-2020-10547

rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes’ passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices. Recent assessments: thegul...

9.8CVSS4.1AI score0.99683EPSS
Exploits15References3
ATTACKERKB
ATTACKERKB
added 2020/03/23 12:0 a.m.18 views

CVE-2020-5252

The command-line “safety” package for Python has a potential security issue. There are two Python characteristics that allow malicious code to “poison-pill” command-line Safety package detection routines by disguising, or obfuscating, other malicious or non-secure packages. This vulnerability is...

5CVSS0.7AI score0.00366EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2020/03/12 12:0 a.m.18 views

CVE-2020-0863

An information vulnerability exists when Windows Connected User Experiences and Telemetry Service improperly discloses file information, aka ‘Connected User Experiences and Telemetry Service Information Disclosure Vulnerability’. Recent assessments: bwatters-r7 at December 21, 2020 10:03pm UTC...

5.5CVSS1.2AI score0.01531EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/02/22 12:0 a.m.18 views

CVE-2020-9338

SOPlanning 1.45 allows XSS via the “Your SoPlanning url” field. Recent assessments: horshark at March 09, 2020 8:34pm UTC reported: Not a lot of information provided for this CVE. However, this is a javascript code execution in Your SoPlanning Url field which you can find in Global Settings leadi...

5.4CVSS2AI score0.00531EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/02/18 12:0 a.m.18 views

CVE-2020-9268

SoPlanning 1.45 is vulnerable to SQL Injection in the OrderBy clause, as demonstrated by the projets.php?order=nomcreateur&by= substring. Recent assessments: J3rryBl4nks at March 09, 2020 9:11pm UTC reported: This SQL Injection is trivial to identify and exploit: This injection will allow you to...

7.5CVSS2.4AI score0.01415EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.18 views

Calling getpidcon for One Way Binder Transactions Returns Wrong Security Context

The servicemanager, keystore and drmserver all use getpidcon function to get the security context of the caller from a binder. When combined with a one way binder transaction this results in getting the security context of the current process which might allow a selinux mac bypass. Recent...

2.7AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/02/13 12:0 a.m.18 views

Console Driver Job Object Process Limit Bypass

The console driver in Windows 8.1 can be used to break out of a process with an active process job limit. Recent assessments: busterb at May 09, 2019 5:57pm UTC reported: Attacker requires too much control in advance for this to be useful. Assessed Attacker Value: 1 Assessed Attacker Value:...

2.6AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/09/16 12:0 a.m.18 views

CVE-2019-16057

The loginmgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnerable to remote command injection. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

10CVSS2.7AI score0.8721EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2018/11/27 12:0 a.m.18 views

Nuuo Central Management Server Authenticated Arbitrary File Download

Nuuo Central Management Server allows authenticated users to download files. A directory traversal flaw in the FileType header allows the user to specify a file outside of the intended directories to download. Recent assessments: jrobles-r7 at May 09, 2019 5:57pm UTC reported: Details Details fro...

9.8CVSS9.1AI score0.19653EPSS
Exploits2References5
ATTACKERKB
ATTACKERKB
added 2018/11/21 12:0 a.m.18 views

CVE-2018-19410

PRTG Network Monitor before 18.2.40.1683 allows remote unauthenticated attackers to create users with read-write privileges including administrator. A remote unauthenticated user can craft an HTTP request and override attributes of the ‘include’ directive in /public/login.htm and perform a Local...

9.8CVSS7.1AI score0.8646EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2017/05/26 12:0 a.m.18 views

CVE-2017-8541

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft...

9.3CVSS7.6AI score0.71961EPSS
Exploits4References5
ATTACKERKB
ATTACKERKB
added 2017/04/21 12:0 a.m.18 views

CVE-2016-1555

1 boardData102.php, 2 boardData103.php, 3 boardDataJP.php, 4 boardDataNA.php, and 5 boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands. Recent assessments: Assessed...

10CVSS9.4AI score0.98325EPSS
Exploits5References6
ATTACKERKB
ATTACKERKB
added 2016/05/17 3:59 p.m.18 views

CVE-2016-2189

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-4565. Reason: This candidate is a reservation duplicate of CVE-2016-4565. Notes: All CVE users should reference CVE-2016-4565 instead of this candidate. All references and descriptions in this candidate have been removed to...

7.8CVSS6.8AI score0.00483EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2014/02/21 12:0 a.m.18 views

CVE-2014-0502

Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and Adobe AIR SDK & Compiler before 4.0.0.1628 allows...

10CVSS8.2AI score0.24204EPSS
Exploits2References9
ATTACKERKB
ATTACKERKB
added 2011/06/16 12:0 a.m.18 views

CVE-2011-1889

The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway TMG 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka “TMG Firewall Client Memory Corruption Vulnerability.” Recent assessments: Assessed Attacker...

10CVSS9.5AI score0.48368EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2011/04/10 2:55 a.m.18 views

CVE-2011-1679

ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small...

3.3CVSS5.5AI score0.00417EPSS
Exploits0References19
ATTACKERKB
ATTACKERKB
added 2009/02/08 10:30 p.m.18 views

CVE-2009-0212

Unspecified vulnerability in the WebFGServer application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service system crash via unknown vectors, aka PD32020...

7.8CVSS5.5AI score0.0202EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/06/27 4:30 a.m.17 views

CVE-2026-12415

The Invoice Generator plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the pravelinvoiceeditaccount AJAX action in versions up to, and including, 1.0.0. The handler is exposed via wpajaxnoprivpravelinvoiceeditaccount, accepts an attacker-controlled...

9.8CVSS5.8AI score0.00662EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/18 9:1 p.m.17 views

CVE-2026-49257

mcp-pinot is a Python-based Model Context Protocol MCP server for interacting with Apache Pinot. In versions 3.0.1 and below, mcp-pinot defaults to running an HTTP MCP server bound to 0.0.0.0:8080 with no authentication enabled. All MCP tools, including SQL query execution, schema creation, and...

10CVSS5.6AI score0.00498EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/09 12:20 a.m.17 views

CVE-2026-44748

SAP NetWeaver Application Server ABAP and ABAP Platform allows an authenticated attacker with normal privileges to obtain a valid signed message and send modified signed XML documents to the verifier. This may result in acceptance of tampered identity information leading to unauthorized access to...

9.9CVSS5.5AI score0.00231EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/05 4:20 p.m.17 views

CVE-2026-48112

7-Zip is a file archiver with a high compression ratio. Versions 9.18 through 26.00 contain a heap out-of-bounds read in 7-Zip Ar handler BSD SYMDEF parser. A 4-byte heap out-of-bounds read exists in the Unix ar archive parser in 7-Zip. When parsing a BSD-style .SYMDEF symbol table, the...

6.5CVSS5.7AI score0.00267EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/02 11:13 a.m.17 views

CVE-2026-8993

D.Launcher 2 component of Slovak eID client ecosystem contains Improper URL Handler Processing vulnerability. Application registers multiple custom URL handlers that could be exploited to initiate full NTLM autentication or SMB connection to attacker infrastructure and to conduct SSRF Server Side...

6.5CVSS5.8AI score0.00225EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/02 2:4 a.m.17 views

CVE-2026-3871

A buffer overflow vulnerability in the UPnP DeletePortMapping command in Zyxel VMG4005-B50B firmware versions through 5.13ABRL.5.4C0 could allow an adjacent attacker to trigger a temporary denial-of-service DoS condition affecting the UPnP function of the affected device...

6.5CVSS6AI score0.00168EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/31 2:30 p.m.17 views

CVE-2026-10188

A flaw has been found in Tenda W12 3.0.0.74763. This affects the function cgistaKickOff of the file /bin/httpd. Executing a manipulation of the argument staMac can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been published and may be used...

9CVSS7.8AI score0.00476EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/31 10:30 a.m.17 views

CVE-2026-10178

A vulnerability was detected in code-projects Online Music Site 1.0. This vulnerability affects unknown code of the file /Administrator/PHP/AdminEditAlbum.php. The manipulation of the argument ID results in sql injection. The attack may be performed from remote. The exploit is now public and may ...

7.5CVSS7AI score0.00269EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/29 7:42 p.m.17 views

CVE-2026-44420

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard cliprdr channel by sending a CBCLIPCAPS PDU with a too-small capabilitySetLength. This can crash the server process...

8.8CVSS6.2AI score0.03453EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/29 1:38 p.m.17 views

CVE-2026-40528

OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun vulnerability in the dokeyvalue function in src/pkcs15init/profile.c that allows attackers to corrupt memory by supplying a crafted profile configuration file. During pkcs15-init invocation, a key value entry...

3.8CVSS5.9AI score0.00146EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/29 5:32 a.m.17 views

CVE-2026-9714

The Simple Divi Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter of the showmodule shortcode in versions up to, and including, 1.2 This is due to insufficient input sanitization and output escaping in the showmoduleshortcode function, which...

6.4CVSS6AI score0.00197EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/28 3:21 p.m.17 views

CVE-2026-47762

TinyMCE is an open source rich text editor. Prior to 5.11.1, 7.9.3, and 8.5.1, there is a stored XSS vulnerability via forged mce:protected comments. Allows attackers to bypass sanitization and inject scripts that execute when content is restored. Impacts users who utilize the protect option. Thi...

8.7CVSS5.9AI score0.00281EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/28 12:16 p.m.17 views

CVE-2026-9818

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

4.7CVSS5.7AI score
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:35 a.m.17 views

CVE-2026-46107

In the Linux kernel, the following vulnerability has been resolved: dm-thin: fix metadata refcount underflow There's a bug in dm-thin in the function rebalancechildren. If the internal btree node has one entry, the code tries to copy all btree entries from the node's child to the node itself and...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References9Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/27 7:40 p.m.17 views

CVE-2026-8363

A stack-based buffer overflow condition exists in WOSDeviceDropFolder.dll when processing a long URL path starting with /resources:...

9.8CVSS6.1AI score0.00335EPSS
Exploits0References2
Total number of security vulnerabilities5000