13538 matches found
Apache Storm Remote Code Execution (CVE-2021-40865)
A remote code execution vulnerability exists in Apache Storm. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CWP Panel Remote Code Execution (CVE-2021-45467; CVE-2021-45466)
A remote code execution vulnerability exists in CWP Panel. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SAP NetWeaver AS JAVA XML External Entity Injection (CVE-2016-9563)
An XML external entity injection vulnerability exists in SAP NetWeaver. Successful exploitation of this vulnerability could result in the disclosure of file contents from the target system...
VMware vRealize Operations Manager API Server Side Request Forgery (CVE-2021-21975)
A sever-side request forgery vulnerability exists in VMware vRealize Operations Manager. Successful exploitation of this vulnerability could possibly lead to an attacker accessing administrative credentials...
Adobe Magento Commerce Reflected Cross Site Scripting (CVE-2021-21029)
A reflected cross site scripting vulnerability exists in Adobe Magento Commerce. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Microsoft Windows Background Intelligent Transfer Service Privilege Escalation (CVE-2020-0787)
A privilege escalation exists in Microsoft Windows Background Intelligent Transfer Service. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...
IBM Planning Analytics Remote Code Execution (CVE-2019-4716)
A remote code execution vulnerability exists in IBM Planning Analytics. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Asus Rt-N53 Buffer Overflow (CVE-2019-20082)
A buffer overflow vulnerability exists in ASUS RT-N53. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system...
Mozilla Firefox IonMonkey JIT Compiler Type Confusion (CVE-2019-17026)
A type confusion vulnerability exists in Mozilla Firefox IonMonkey JIT Compiler. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress WP_Query SQL Injection (CVE-2022-21661)
An SQL injection vulnerability exists in WordPress WPQuery. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...
Apple iOS Use After Free (CVE-2021-30858)
A use after free vulnerability exists in Apple iOS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
PHP XML Parser Remote Code Execution (CVE-2021-21707)
A remote code execution vulnerability exists in PHP XML Parser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
HP Multi-Function Printers Information Disclosure (CVE-2021-39237; CVE-2021-39238)
An information disclosure vulnerability exists in HP Multi-Function Printers. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
SAP NetWeaver Application Server Remote Code Execution (CVE-2022-22536)
A remote code execution vulnerability exists in SAP NetWeaver Application Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
F5 BIG-IP Buffer Overflow (CVE-2021-22991)
A buffer overflow vulnerability exists in F5 BIG-IP. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system...
MITRE Caldera Command Injection (CVE-2021-42561)
A command injection vulnerability exists in MITRE Caldera Human plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Google Chrome WebGL Use After Free (CVE-2020-6492)
A use-after-free vulnerability exists in Google Chrome WebGL. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Zoho ManageEngine ServiceDesk Authentication Bypass (CVE-2021-37415)
An authentication bypass vulnerability exists in the Zoho ManageEngine ServiceDesk. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...
Exim Use After Free (CVE-2020-28018)
A use after free vulnerability exists in Exim. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SonicWall Email Security Arbitrary File Upload (CVE-2021-20022)
An arbitrary file upload vulnerability exists in SonicWall Email Security. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Emotet Maldoc Download Page
Emotet Maldoc Download Page is web page that automatically downloads malicious Microsoft Office documents to the victim's computer. Successful execution will infect the machine with the Emotet botnet and allow the attacker to take control of the infected machine and to download additional malware...
Apache Airflow Authentication Bypass (CVE-2020-13927)
An authentication bypass vulnerability exists in Apache Airflow API. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...
Microsoft Windows DWM Core Library Elevation of Privilege (CVE-2022-21994)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Named Pipe File System Elevation of Privilege (CVE-2022-22715)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Print Spooler Elevation of Privilege (CVE-2022-22718)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Common Log File System Driver Elevation of Privilege (CVE-2022-22000)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Kernel Elevation of Privilege (CVE-2022-21989)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2022-21996)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Sitecore XP Remote Code Execution (CVE-2021-42237)
A remote code execution vulnerability exists in Sitecore XP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
SonicWall SMA100 Buffer Overflow (CVE-2021-20038)
A buffer overflow vulnerability exists in SonicWall SMA100. Successful exploitation of this vulnerability could result in a denial of service or execution of arbitrary code into the affected system...
Atlassian Confluence Server Arbitrary File Read (CVE-2021-26085; CVE-2021-26086)
An arbitrary file read vulnerability exists in Atlassian Confluence Server. Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to access and read arbitrary file...
D-Link Routers Cookie Command Injection
A command injection vulnerability exists in D-Link Routers Cookie header. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
October CMS Authentication Bypass (CVE-2021-32648)
An authentication bypass vulnerability exists in October CMS. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...
Node.JS System Information Command Injection (CVE-2021-21315)
A command injection vulnerability exists in Node.JS System Information. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Oracle Business Intelligence Enterprise Edition Information Disclosure (CVE-2020-14864)
An information disclosure vulnerability exists in Oracle Business Intelligence Enterprise Edition. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Apache Druid Information Disclosure (CVE-2021-36749)
An information disclosure vulnerability exists in Apache Druid. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Google Chrome Heap Corruption (CVE-2021-37975)
A heap corruption vulnerability exists in Google Chrome. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress AccessPress Themes Webshell Upload (CVE-2021-24867)
An attacker might upload a webshell backdoor to WordPress AccessPress Themes. A successful exploitation might allow the attacker to run arbitrary code, or use the server as a bot for further attacks...
Nagios XI Remote Code Execution (CVE-2021-40344)
A remote code execution vulnerability exists in Nagios XI. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
H2 Database Console Remote Code Execution (CVE-2021-42392)
A remote code execution vulnerability exists in H2 Database Console. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Micro Focus Access Manager SQL Injection (CVE-2021-22506)
An SQL Injection vulnerability exists in Micro Focus Access Manager. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Google Chrome Browser V8 Remote Code Execution (CVE-2021-30563)
A remote code execution vulnerability exists in Google Chrome Browser V8. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Google Chromium V8 Engine Use-After-Free (CVE-2021-4102)
A use-after-free vulnerability exists in Google Chromium V8 Engine. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
IBM Data Risk Manager Authentication Bypass (CVE-2020-4427)
An authentication bypass vulnerability exists in IBM Data Risk Manager. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...
Google Chrome Remote Code Execution (CVE-2021-21224)
A remote code execution vulnerability exists in Google Chrome. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
FlashGet Buffer Overflow (CVE-2020-28967)
A buffer overflow vulnerability exists in the FlashGet download manager. The vulnerability is due to lack of proper validation of user data in 'current path directory' function...
SonicWall Email Security Directory Traversal (CVE-2021-20023)
A directory traversal vulnerability exists in SonicWall Email Security. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...
Microsoft Windows Kernel Elevation of Privilege (CVE-2022-21881)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft HTTP Protocol Stack Remote Code Execution (CVE-2022-21907)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2022-21887)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...