Lucene search
+L
AttackerkbMost viewed

75202 matches found

attackerkb
attackerkb
added 2014/06/19 10:50 a.m.17 views

CVE-2014-2611

Directory traversal vulnerability in the fndwar web application in HP Executive Scorecard 9.40 and 9.41 allows remote authenticated users to execute arbitrary code, or obtain sensitive information or delete data, via unspecified vectors, aka ZDI-CAN-2120...

9CVSS6AI score0.11864EPSS
Exploits0References7
attackerkb
attackerkb
added 2014/05/14 12:0 a.m.17 views

CVE-2014-2591

Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting. Recent assessments: timb-machine at March 05, 2021 12:48am UTC reported: Assessed Attacker Value: 5 Assessed Attacker Value: 5Assess...

6.9CVSS5.1AI score0.01312EPSS
Exploits2References3
attackerkb
attackerkb
added 2012/05/21 12:0 a.m.17 views

HP Business Service Management Remote Code Execution

HP Business Service Management BSM 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server component via a crafted request to TCP port 1098, 1099, or 4444. Recent assessments: wchen-r7 at Septembe...

10CVSS0.6AI score0.08659EPSS
Exploits0References3
attackerkb
attackerkb
added 2011/05/04 12:0 a.m.17 views

InduSoft Web Studio ISSymbol.ocx InternationalSeparator() Heap Overflow

Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio before 7.0+SP1, and InduSoft Thin Client 7.0, allow remote attackers to execute...

9.3CVSS7.2AI score0.32349EPSS
Exploits12References12
attackerkb
attackerkb
added 2010/05/19 12:7 p.m.17 views

CVE-2010-1953

Directory traversal vulnerability in the iNetLanka Multiple Map commultimap component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php...

7.5CVSS5.8AI score0.16152EPSS
Exploits1References6
attackerkb
attackerkb
added 2003/03/31 12:0 a.m.17 views

Light HTTPd 0.1 (Windows) - Remote Buffer Overflow

Buffer overflow in Light HTTPd lhttpd 0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: start end module name 00400000 0041a000 lhttpd C:\Documents and Settings\Administrator\My...

7.5CVSS0.7AI score0.11169EPSS
Exploits1References4
attackerkb
attackerkb
added last week16 views

CVE-2026-57023

An Improper Validation of Specified Quantity in Input vulnerability in the TCP proxy plugin of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated, network-based attacker to cause a complete Denial of Service DoS. When TCP proxy is engaged in a flow session,...

8.7CVSS6AI score0.00461EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/07/08 8:46 p.m.16 views

CVE-2026-7492

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.1 before 18.11.7, 19.0 before 19.0.4, and 19.1 before 19.1.2 that under certain conditions could have allowed an unauthenticated user to determine the existence of a private project due to improper authorization controls...

4.3CVSS6AI score0.00254EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/07/08 8:43 p.m.16 views

CVE-2026-58525

Improper access control in Microsoft Edge Chromium-based allows an unauthorized attacker to bypass a security feature over a network...

8.2CVSS5.9AI score0.00362EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/07/07 2:54 a.m.16 views

CVE-2026-34047

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, terminal WebSocket bootstrap routes did not enforce the expected authorization middleware, allowing an authenticated user to access terminal functionality for resources...

9.9CVSS6AI score0.00373EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/06/29 8:36 p.m.16 views

CVE-2026-50229

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in the number guess example for Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1 through 10.1.55, from 9.0.0.M1 through 9.0.118, from 8.5.0 through 8.5.100, fro...

5.7AI score0.02569EPSS
Exploits1References2Affected Software1
attackerkb
attackerkb
added 2026/06/26 5:29 p.m.16 views

CVE-2026-48042

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, destructor of JSON Object results in stack overflow when deeply O100K nested objects are present. This vulnerability is fixed in 1.35.11, 1.36.7, 1.37.3, and 1.38.1...

7.5CVSS5.8AI score0.00557EPSS
Exploits1References3Affected Software1
attackerkb
attackerkb
added 2026/06/22 5:15 p.m.16 views

CVE-2026-10789

A maliciously crafted webpage, when visited by a user with Autodesk Fusion Desktop running and the MCP extension enabled, can trigger a vulnerability in the MCP extension that could allow arbitrary code execution. A successful exploit may allow code to execute with the privileges of the current...

9.6CVSS6.2AI score0.00381EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/06/19 6:51 a.m.16 views

CVE-2026-3640

The STRABL – A checkout solution plugin for WordPress is vulnerable to Missing Authentication in all versions up to and including 4.5. The plugin registers a REST API webhook endpoint at /wp-json/strabl/webhook/order with a permissioncallback of returntrue, which allows all incoming requests...

5.3CVSS5.8AI score0.00382EPSS
Exploits0References15
attackerkb
attackerkb
added 2026/06/18 12:0 a.m.16 views

CVE-2026-38715

InHand Networks IR912 V1.0.0.r20042 and IR915 V1.0.0.r20042 including earlier versions were discovered to contain a command injection vulnerability in the log viewing function. This vulnerability allows remote attackers to execute arbitrary commands as root via a crafted input...

9.8CVSS5.9AI score0.01316EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/05 3:19 p.m.16 views

CVE-2026-48102

7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in the UDF disc image handler's File Identifier Descriptor parser. In CFileId::Parse CPP/7zip/Archive/Udf/UdfIn.cpp, after validating size 38 + idLen + impLen and...

3.1CVSS5.6AI score0.00189EPSS
Exploits1References2Affected Software1
attackerkb
attackerkb
added 2026/06/05 11:29 a.m.16 views

CVE-2026-11345

An Improper Authentication vulnerability in the /api/Cdn/GetFile endpoint of linqi allows unauthenticated, remote attackers to bypass file access controls. The ValidateAnonFileAccess function incorrectly grants access if an 'AnonFile' query parameter containing exactly 256 characters is provided...

6.9CVSS5.6AI score0.00414EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/04 11:6 p.m.16 views

CVE-2026-11255

Insufficient validation of untrusted input in Storage Access API in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. Chromium security severity: Low...

5.5AI score0.00264EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/04 11:5 p.m.16 views

CVE-2026-11204

Inappropriate implementation in Signin in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00201EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/03 1:35 p.m.16 views

CVE-2024-47263

An improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in Backup.Repository webapi component in Synology Hyper Backup before 4.1.2-4036 allows remote authenticated users with administrator privileges to write specific files containing non-sensitive informati...

4.1CVSS5.8AI score0.00297EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/02 10:51 p.m.16 views

CVE-2026-41412

alf.io is an open source ticket reservation system for conferences, trade shows, workshops, and meetups. Prior to version 2.0-M5-2606, the alf.io extension sandbox injects a fully-functional HTTP client simpleHttpClient into every extension script's scope. The postFileAndSaveResponse method accep...

4.9CVSS5.9AI score0.00317EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/06/02 2:1 p.m.16 views

CVE-2026-10622

Improper Authentication in REST API in Collibra Agent, allows a remote unauthenticated attacker to access privileged functionality via exposed '/rest/ endpoints...

5.8AI score0.00442EPSS
Exploits0References3Affected Software2
attackerkb
attackerkb
added 2026/06/01 5:49 p.m.16 views

CVE-2026-9311

IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to remote code execution caused by the bypass of security controls...

9CVSS6.4AI score0.00508EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/06/01 2:43 p.m.16 views

CVE-2026-48839

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in VeronaLabs WP Statistics allows DOM-Based XSS. This issue affects WP Statistics: from n/a through 14.16.6...

7.1CVSS5.8AI score0.00212EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/06/01 7:49 a.m.16 views

CVE-2026-42358

A bug in Apache Airflow's Variable response masker caused nested-key redaction triggered by secret-suffixed key names like password, token, secret, apikey to be bypassed when the JSON value's nesting depth exceeded the shared secrets masker's recursion limit: the masker returned the original nest...

3.7CVSS5.8AI score0.00421EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/06/01 7:49 a.m.16 views

CVE-2026-42359

A bug in Apache Airflow's XCom PATCH endpoint PATCH /api/v2/xcomEntries/key allowed an authenticated UI/API user with XCom write permission on a Dag to set XCom entries under reserved key names e.g. returnvalue that the matching POST endpoint already validated against FORBIDDENXCOMKEYS. The...

8.8CVSS5.8AI score0.00592EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/06/01 4:15 a.m.16 views

CVE-2026-10223

A weakness has been identified in NousResearch hermes-agent up to 2026.4.30. This affects the function scanmemorycontent of the file tools/memorytool.py. This manipulation causes injection. The attack can be initiated remotely. The exploit has been made available to the public and could be used f...

6.5CVSS6.3AI score0.00228EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/06/01 2:15 a.m.16 views

CVE-2026-10215

A security vulnerability has been detected in Dolibarr ERP CRM up to 23.0.1. Impacted is the function checkUserAccessToObject of the file htdocs/holiday/class/apiholidays.class.php of the component Leave Request REST API. The manipulation leads to improper authorization. The attack may be initiat...

5.3CVSS5.3AI score0.00259EPSS
Exploits0References9Affected Software1
attackerkb
attackerkb
added 2026/05/31 10:45 p.m.16 views

CVE-2026-10200

A vulnerability was found in Assimp up to 6.0.4. This affects the function glTFCommon::CopyValue in the library glTFCommon.h of the component 4x4 Matrix Parser. Performing a manipulation results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit has bee...

5.3CVSS6AI score0.00124EPSS
Exploits0References7
attackerkb
attackerkb
added 2026/05/31 2:15 p.m.16 views

CVE-2026-10187

A vulnerability was detected in Totolink N300RH 6.1c.1353B20190305. Affected by this issue is the function setWiFiBasicConfig of the file wireless.so of the component Web Management Interface. Performing a manipulation of the argument KeyStr results in stack-based buffer overflow. The attack is...

10CVSS7.9AI score0.01425EPSS
Exploits1References7Affected Software1
attackerkb
attackerkb
added 2026/05/29 6:0 p.m.16 views

CVE-2026-47742

Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, Sub-form Livewire components used in the product editor Edit, Inventory, Seo, Shipping, Files had no authorization on their store method. Any authenticated panel user, regardless of role, could mutate any product's pricing, stock, SEO...

6.5CVSS5.9AI score0.00221EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/05/29 2:29 p.m.16 views

CVE-2026-10042

manga-image-translator contains a remote code execution vulnerability in the shared API server mode due to unsafe deserialization of untrusted pickle data in the share.py module, where the /execute/methodname and /simpleexecute/methodname endpoints deserialize attacker-controlled HTTP request...

9.8CVSS6.7AI score0.00622EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/29 10:53 a.m.16 views

CVE-2025-41273

Nozomi Networks Labs identified a CWE-288: Authentication Bypass Using an Alternate Path or Channel in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to bypass authentication of the Console web application and...

9.3CVSS5.8AI score0.00407EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/29 8:51 a.m.16 views

CVE-2026-49200

The acercgi.log file in the device firmware is accessible without authentication via the web interface. This file contains cleartext login credentials for web and Telnet, leading to unauthorized system access...

10CVSS5.8AI score0.00518EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/29 5:32 a.m.16 views

CVE-2025-11993

The WooCommerce Infinite Scroll and Ajax Pagination plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.8 via the 'settings' parameter in the 'importsettings' function. This is due to deserialization of untrusted data supplied via the import...

8.8CVSS6AI score0.00378EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/29 3:39 a.m.16 views

CVE-2026-2128

The Breeze plugin for WordPress is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor in all versions up to, and including, 2.5.2 This is due to improper verification of the wordpressloggedin cookie in the inc/cache/execute-cache.php file when the "Cache Logged-in Users"...

5.3CVSS5.8AI score0.00273EPSS
Exploits0References8
attackerkb
attackerkb
added 2026/05/29 2:27 a.m.16 views

CVE-2026-8995

The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to and including 6.3.7. This is due to insufficient access controls on the 'ayspollgetuserinformation' AJAX action, which serializes and returns the...

4.3CVSS5.8AI score0.00283EPSS
Exploits0References10
attackerkb
attackerkb
added 2026/05/28 7:37 p.m.16 views

CVE-2026-33463

Operation on a Resource after Expiration or Termination CWE-672 in Kibana can lead to unauthorized information disclosure. A logic error in how expiration timestamps were validated allowed a time-bounded access token to remain usable beyond its intended validity window, enabling an unauthenticate...

5.3CVSS5.8AI score0.00238EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/28 4:59 p.m.16 views

CVE-2026-44797

Nautobot is a Network Source of Truth and Network Automation Platform. Prior to 2.4.33 and 3.1.2, Nautobot's Webhook data model and associated feature set could be configured by users with sufficient access to perform requests to various hosts and IP addresses that should not be permitted, allowi...

8.5CVSS5.8AI score0.00235EPSS
Exploits0References6Affected Software1
attackerkb
attackerkb
added 2026/05/28 11:36 a.m.16 views

CVE-2026-9658

Plack::Middleware::Security::Common versions before 0.13.1 for Perl did not block header injections in request paths. The header injection rule was ineffective at blocking header injections in the request paths unless they were double-encoded, for example, GET /path\r\nHTTP/1.1\r\nHost:...

5.8AI score0.00226EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/28 9:36 a.m.16 views

CVE-2026-46176

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5ibdevressrqinit mlx5ibdevressrqinit allocates two SRQs, s0 and s1. When ibcreatesrq fails for s1, the error branch destroys s0 but falls through and unconditionally assigns the freed ...

5.7AI score0.00142EPSS
Exploits0References6Affected Software1
attackerkb
attackerkb
added 2026/05/28 5:30 a.m.16 views

CVE-2026-7533

The Easy Digital Downloads plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.7. This is due to missing nonce verification in the handleoauthredirect function, which is registered on the admininit hook and processes Square OAuth tokens from ...

4.3CVSS5.8AI score0.00135EPSS
Exploits0References9
attackerkb
attackerkb
added 2026/05/27 8:52 p.m.16 views

CVE-2026-45137

Anchor is a framework providing several convenient developer tools for writing Solana programs. From 1.0.0 to before 1.0.2, an logic error causes anchor programs to accept any program id when requiring the system program id, causing false assumptions resulting in potential arbitrary cpi in progra...

8.2CVSS5.9AI score0.00246EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/27 8:20 p.m.16 views

CVE-2026-44709

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.8.7, pamusb-pinentry reads the PINENTRYFALLBACKAPP environment variable and executes it directly without any validation. Any process that can set environment variables before pamusb-pinentry is invoked ca...

7.8CVSS6AI score0.00151EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/27 8:11 p.m.16 views

CVE-2026-47269

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pamusb's denyremote feature checks utmpx utaddrv6 to detect whether an authentication request originates from a remote session. The outer guard was if utent-utaddrv60 != 0, which only tests the first...

7.4CVSS5.9AI score0.00307EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/05/27 3:59 p.m.16 views

CVE-2026-42081

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, the AMF in Free5GC does not verify the UE Security Capabilities received in NGAP PathSwitchRequest messages against its locally stored values, as mandated by 3GPP TS 33.501 §6.7.3.1. A malicious gNB can overwrite the...

6.1CVSS5.9AI score0.00266EPSS
Exploits1References2Affected Software1
attackerkb
attackerkb
added 2026/05/27 8:34 a.m.16 views

CVE-2025-13167

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in contact functionality in Synology Contacts before 1.0.10-20659 allows remote authenticated users to read or write specific files containing non-sensitive information via unspecified vectors...

5.4CVSS5.8AI score0.00254EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/27 8:6 a.m.16 views

CVE-2026-40851

A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability...

8.4CVSS5.9AI score0.00133EPSS
Exploits0References2Affected Software4
attackerkb
attackerkb
added 2026/05/27 7:33 a.m.16 views

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/27 1:30 a.m.16 views

CVE-2026-9632

A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the function strcpy of the file /goform/formGroupConfig of the component Web Management Interface. Executing a manipulation of the argument Profile can lead to stack-based buffer overflow. It is possibl...

9CVSS6.2AI score0.00463EPSS
Exploits0References4Affected Software1
Total number of security vulnerabilities5000