Lucene search
+L
AttackerkbMost viewed

75301 matches found

attackerkb
attackerkb
added 2026/05/27 8:34 a.m.16 views

CVE-2025-13167

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in contact functionality in Synology Contacts before 1.0.10-20659 allows remote authenticated users to read or write specific files containing non-sensitive information via unspecified vectors...

5.4CVSS5.8AI score0.00254EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/27 8:6 a.m.16 views

CVE-2026-40851

A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability...

8.4CVSS5.9AI score0.00133EPSS
Exploits0References2Affected Software4
attackerkb
attackerkb
added 2026/05/27 7:33 a.m.16 views

CVE-2026-49001

Cross-site request forgery CSRF vulnerabilities allow attackers to exploit a user's authenticated session to forge cross-site requests, inducing the execution of unintended operations such as tampering with configuration data...

5.3CVSS5.8AI score0.00109EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/27 1:30 a.m.16 views

CVE-2026-9632

A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the function strcpy of the file /goform/formGroupConfig of the component Web Management Interface. Executing a manipulation of the argument Profile can lead to stack-based buffer overflow. It is possibl...

9CVSS6.2AI score0.00463EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/26 7:36 p.m.16 views

CVE-2026-9642

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.7AI score0.00053EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/26 7:15 p.m.16 views

CVE-2026-9574

A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability affects unknown code of the file /admin/modules/student/trans.php. Executing a manipulation of the argument studentId/cid can lead to sql injection. The attack can be launched remotely. The exploit...

7.5CVSS6.9AI score0.00259EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/05/26 4:43 p.m.16 views

CVE-2026-30895

Lack of output escaping leads to a XSS vector in the readmore links for comcontent...

6.9CVSS5.8AI score0.00175EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/26 2:8 p.m.16 views

CVE-2026-41917

OpenKM 6.3.12 contains a local file inclusion vulnerability in the administrative scripting interface at /admin/Scripting that allows authenticated administrators to read arbitrary files by supplying an attacker-controlled filesystem path through the fsPath parameter with action=Load. Attackers c...

6.9CVSS5.9AI score0.00387EPSS
Exploits0References7
attackerkb
attackerkb
added 2026/05/25 8:20 p.m.16 views

CVE-2026-48589

Apache Shiro’s Jakarta EE module used the HTTP Referer header in certain cases to issue redirect after a user login. In affected versions, insufficient validation of this client-controlled value could allow an attacker to influence the redirect target in applications using the Jakarta EE module...

5.8AI score0.00352EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/25 7:11 p.m.16 views

CVE-2026-48843

Roundcube Webmail 1.6.x between 1.6.14 and 1.6.16,and 1.7.x before 1.7.1 has Insufficient Cascading Style Sheets CSS sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if stylesheet links point to local network hosts. The issue stems from an insufficient fix fo...

7.2CVSS5.8AI score0.0036EPSS
Exploits0References6Affected Software1
attackerkb
attackerkb
added 2026/05/25 3:0 p.m.16 views

CVE-2026-42797

Exposure of Sensitive Information Through Data Queries vulnerability in Apache Syncope. An administrator with adequate entitlements for Derived Schemas can create a malicious JEXL expression which allows any administrator with sufficient entitlements for User read to access User-related...

5.8AI score0.00436EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/25 2:15 p.m.16 views

CVE-2018-25375

SocuSoft iPod Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by overwriting the structured exception handler. Attackers can craft malicious input in the Registration Name and Registration Key fields to...

8.6CVSS6.6AI score0.00182EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/05/25 4:0 a.m.16 views

CVE-2026-9424

A weakness has been identified in Edimax EW-7438RPn 1.31. The affected element is the function formWlanMP of the file /goform/formWlanMP of the component Content-Type Handler. Executing a manipulation of the argument...

6.5CVSS5.6AI score0.01158EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/25 2:15 a.m.16 views

CVE-2026-9417

A vulnerability was detected in code-projects Employee Management System 1.0. Affected is an unknown function of the file /myprofileup.php. Performing a manipulation of the argument ID results in cross site scripting. The attack is possible to be carried out remotely. The exploit is now public an...

5.3CVSS4.3AI score0.00263EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/05/24 8:0 p.m.16 views

CVE-2026-9395

A vulnerability was identified in Besen BS20 EV Charging Station up to 20260426. Affected is an unknown function of the component BLE/UDP. The manipulation leads to insufficiently protected credentials. The attack needs to be initiated within the local network. The original disclosure mentions,...

5.1CVSS5.5AI score0.00158EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/05/24 7:30 p.m.16 views

CVE-2026-9394

A vulnerability was determined in Besen BS20 EV Charging Station up to 20260426. This impacts an unknown function of the component Bluetooth Low Energy Handler. Executing a manipulation can lead to weak password requirements. The attack needs to be done within the local network. This attack is...

3.1CVSS5.2AI score0.00192EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/05/24 11:15 a.m.16 views

CVE-2026-9378

A security flaw has been discovered in Edimax BR-6675nD 1.12. This affects the function formHwSet of the file /goform/formHwSet of the component POST Request Handler. The manipulation of the argument regDomain/ABandregDomain/nic0Addr/nic1Addr/wlanAddr/inicAddr results in command injection. It is...

6.5CVSS6.4AI score0.01171EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/24 3:30 a.m.16 views

CVE-2026-9352

A weakness has been identified in NousResearch hermes-agent up to 2026.4.23. This issue affects the function makerunenv of the file tools/environments/local.py of the component Messaging Gateway Handler. Executing a manipulation can lead to information disclosure. The attack may be launched...

6.9CVSS5.7AI score0.00286EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/22 10:4 p.m.16 views

CVE-2026-45659

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS6AI score0.03219EPSS
Exploits4References2Affected Software3
attackerkb
attackerkb
added 2026/05/21 5:9 p.m.16 views

CVE-2026-48219

Open ISES Tickets before 3.44.2 contains a reflected cross-site scripting vulnerability in ics202.php that allows authenticated attackers to inject arbitrary JavaScript by passing an unsanitized value through the frmaddstr POST parameter directly into an HTML form hidden input value attribute...

5.4CVSS5.8AI score0.00212EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/05/21 2:32 p.m.16 views

CVE-2026-9089

The ConnectWise Automate™ Agent does not fully verify the authenticity of components obtained during plugin loading and self-update operations. This issue is addressed in Automate 2026.5...

8.8CVSS5.8AI score0.00311EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/21 7:34 a.m.16 views

CVE-2026-44067

A heap over-read in extended attribute EA header parsing in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to obtain limited information or cause a minor service disruption via crafted EA data...

4.2CVSS5.8AI score0.00292EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/21 7:34 a.m.16 views

CVE-2026-44050

A heap-based buffer overflow in the CNID daemon commrcv function in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to execute arbitrary code with escalated privileges or cause a denial of service...

9.9CVSS6.4AI score0.00418EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/21 4:27 a.m.16 views

CVE-2026-6279

The Avada Builder fusion-builder plugin for WordPress is vulnerable to Unauthenticated Remote Code Execution via PHP Function Injection in versions up to and including 3.15.2. This is due to the wpconditionaltags case in FusionBuilderConditionalRenderHelper::getvalue passing attacker-controlled...

9.8CVSS6.3AI score0.02163EPSS
Exploits4References13
attackerkb
attackerkb
added 2026/05/20 4:15 p.m.16 views

CVE-2026-20199

A vulnerability in the SSL certificate handling of Cisco ThousandEyes Virtual Appliance could allow an authenticated, remote attacker to execute commands on the underlying operating system as the root user. This vulnerability is due to insufficient validation of user-supplied input. An...

4.7CVSS6.2AI score0.00438EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/20 8:56 a.m.16 views

CVE-2026-41054

In src/havegecmd.c, the sockethandler function performs a credential check on the abstract UNIX socket \0/sys/entropy/haveged. However, while it detects if the connecting user is not root cred.uid != 0 and prepares a negative acknowledgement ASCIINAK, it fails to stop execution. The code proceeds...

7.8CVSS6AI score0.00185EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/19 3:8 a.m.16 views

CVE-2026-33565

in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS...

3.3CVSS5.8AI score0.00094EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/17 10:15 p.m.17 views

CVE-2026-8766

A flaw has been found in Kilo-Org kilocode up to 7.0.47. This issue affects the function Load of the file packages/opencode/src/config/config.ts of the component Environment Variable Handler. Executing a manipulation of the argument KILOCONFIGCONTENT can lead to information disclosure. It is...

5.3CVSS5.4AI score0.00316EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/05/17 2:15 a.m.16 views

CVE-2026-8728

A security vulnerability has been detected in Open5GS up to 2.7.7. The impacted element is the function ogssbidiscoveryoptionparseplmnlist in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument target-plmn-list leads to denial of service. The attack can be executed...

5.3CVSS5.5AI score0.0039EPSS
Exploits1References6
attackerkb
attackerkb
added 2026/05/15 7:24 p.m.16 views

CVE-2026-44568

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the AccountPending.svelte component renders the admin-configured "Pending User Overlay Content" using marked.parse inside @html with an incorrect DOMPurify application order. An admi...

4.8CVSS5.9AI score0.0017EPSS
Exploits1References2Affected Software1
attackerkb
attackerkb
added 2026/05/15 2:59 a.m.16 views

CVE-2025-52532

A race condition in the MxGPU-Virtualization driver’s ioctl path caused by concurrent unsynchronized access to the global variable amdgvcmd in an unlocked ioctl handler could be exploited by an attacker to trigger a heap-based buffer overflow, potentially resulting in denial-of-service within the...

2CVSS5.9AI score0.00072EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/15 2:36 a.m.16 views

CVE-2023-31316

Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor ASP could allow an attacker with the ability to write outside the trusted memory range TMR to change the execution flow of the Video Core Next VCN firmware potentially...

7.1CVSS5.9AI score0.00095EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/14 7:52 p.m.16 views

CVE-2026-8579

Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted print file. Chromium security severity: Medium...

5.8AI score0.00134EPSS
Exploits0References3Affected Software1
attackerkb
attackerkb
added 2026/05/14 5:34 a.m.16 views

CVE-2026-6063

GitLab has remediated an issue in GitLab EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that under certain conditions could have allowed an authenticated user with developer-role permissions to remove code owner approval rules from merge request...

4.3CVSS5.9AI score0.0019EPSS
Exploits0References4Affected Software1
attackerkb
attackerkb
added 2026/05/13 8:27 a.m.16 views

CVE-2026-5545

libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated HTTPS request after a Negotiate-authenticated one, when both use the same host. libcurl features a pool of recent connections so that subsequent requests can reuse an existing connection to avoid...

5.8AI score0.00414EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/05/13 8:27 a.m.16 views

CVE-2026-4873

A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If an initial transfer is made in clear-text via IMAP, SMTP, or POP3, a subsequent request to that same host bypasses the TLS requirement and instead transm...

5.8AI score0.00329EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/05/12 9:6 p.m.16 views

CVE-2026-44871

Command injection vulnerabilities exist in the command line interface CLI service accessed by the PAPI protocol of AOS-8 and AOS-10 Operating Systems. Successful exploitation of these vulnerabilities could allow an authenticated remote attacker to execute arbitrary commands on the underlying...

7.2CVSS6.1AI score0.01226EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/12 1:28 p.m.16 views

CVE-2026-42006

An attacker can cause uncontrolled memory usage with excessive bracing over IMAP. The fix in CVE-2026-27857 was incomplete, only blocking one way of doing this, so there was still another way left open. In particular, the fix was for closing braces, but you could still use open braces to bypass t...

7.5CVSS5.7AI score0.00667EPSS
Exploits1References2
attackerkb
attackerkb
added 2026/05/12 5:42 a.m.16 views

CVE-2026-0541

ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if a...

6.7CVSS5.8AI score0.00096EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/11 9:25 p.m.16 views

CVE-2026-42188

Geyser is a bridge between Minecraft: Bedrock Edition and Minecraft: Java Edition. Prior to 2.9.3, a server-side request forgery SSRF vulnerability exists in Geyser’s handling of Bedrock player head texture data. By supplying a crafted Base64-encoded skin texture URL via the /give command, an...

2.4CVSS5.9AI score0.00158EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/10 12:44 p.m.16 views

CVE-2021-47945

Argus Surveillance DVR 4.0 contains an unquoted service path vulnerability in the DVRWatchdog service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers can place a malicious executable in the Program Files directory to be executed with LocalSystem...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/09 5:15 p.m.16 views

CVE-2026-8190

A vulnerability was determined in Wavlink NU516U1 M16U1V240425. Affected by this issue is the function wan of the file /cgi-bin/adm.cgi. This manipulation of the argument pppusername/ppppasswd/rwanip/rwanmask/rwangateway is directly passed by the attacker/so we can control the...

6.5CVSS6.4AI score0.05344EPSS
Exploits1References4
attackerkb
attackerkb
added 2026/05/08 10:11 p.m.16 views

CVE-2026-42345

FastGPT is an AI Agent building platform. In versions 4.14.11 and prior, FastGPT's isInternalAddress function in packages/service/common/system/utils.ts blocks cloud metadata endpoints using a fullUrl.startsWith check against a hardcoded list. This check can be bypassed using at least 7 different...

7.7CVSS5.8AI score0.00213EPSS
Exploits0References2Affected Software1
attackerkb
attackerkb
added 2026/05/06 11:27 a.m.16 views

CVE-2026-43161

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Skip dev-iotlb flush for inaccessible PCIe device without scalable mode PCIe endpoints with ATS enabled and passed through to userspace e.g., QEMU, DPDK can hard-lock the host when their link drops, either by surprise...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/05/06 3:27 a.m.16 views

CVE-2026-3208

The Mercado Pago payments for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'mppiximage' WooCommerce API endpoint in all versions up to, and including, 8.7.11. This makes it possible for unauthenticated attackers to retrieve...

5.3CVSS6AI score0.00499EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/05/05 6:43 a.m.16 views

CVE-2026-5192

The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to Path Traversal in versions up to, and including, 1.52.1 via the 'upload-1filefilepath' parameter. This makes it possible for unauthenticated attackers to read the contents of arbitrary...

7.5CVSS5.9AI score0.00773EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/05/01 12:0 a.m.16 views

CVE-2026-37540

OpenAMP v2025.10.0 ELF loader contains an integer overflow vulnerability in firmware image parsing. In elfloader.c, it performs multiplication of two attacker-controlled 16-bit values from the ELF header without overflow checking. On 32-bit embedded systems STM32MP1, Zynq, i.MX, large values can...

8.4CVSS5.9AI score0.00253EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/05/01 12:0 a.m.16 views

CVE-2026-43001

An issue was discovered in OpenStack Keystone before 29.0.2. POST /v3/credentials did not validate that the caller-supplied projectid for an EC2-type credential matched the project of the authenticating application credential. This allowed an attacker holding an unrestricted application credentia...

8.5CVSS5.8AI score0.00446EPSS
Exploits1References4Affected Software1
attackerkb
attackerkb
added 2026/04/28 7:0 p.m.16 views

CVE-2026-7303

A security flaw has been discovered in Xuxueli xxl-job up to 3.3.2. Impacted is the function logDetailCat of the file xxl-job-admin/src/main/java/com/xxl/job/admin/controller/biz/JobLogController.java of the component Execution Log Handler. The manipulation of the argument logId results in improp...

6.3CVSS4.3AI score0.00418EPSS
Exploits0References7Affected Software1
attackerkb
attackerkb
added 2026/04/27 11:24 p.m.16 views

CVE-2026-41366

OpenClaw before 2026.3.31 contains a local roots self-whitelisting vulnerability in appendLocalMediaParentRoots that allows model-initiated arbitrary host file read. Attackers can exploit improper media parent directory validation to exfiltrate credentials and access sensitive files...

6CVSS5.5AI score0.00181EPSS
Exploits0References4
Total number of security vulnerabilities5000