Lucene search
K
CvelistMost viewed

364493 matches found

Cvelist
Cvelist
•added 2024/07/18 7:42 a.m.•357 views

CVE-2024-40764

Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service DoS...

0.007EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/17 7:32 a.m.•352 views

CVE-2024-6220 简数采集器 (Keydatas) <= 2.5.2 - Unauthenticated Arbitrary File Upload

The 简数采集器 Keydatas plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the keydatasdownloadImages function in all versions up to, and including, 2.5.2. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected...

9.8CVSS0.35708EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/11/06 8:10 p.m.•351 views

CVE-2025-12490 Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability

Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Netgate pfSense. Authentication is required to exploit this vulnerability. The specific flaw exists within the Suricata...

8.8CVSS0.20316EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/08/25 4:6 p.m.•347 views

CVE-2025-53118 Securden Unified PAM Authentication Bypass

An authentication bypass vulnerability exists which allows an unauthenticated attacker to control administrator backup functions, leading to compromise of passwords, secrets, and application session tokens stored by the Unified PAM...

9.8CVSS0.29365EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/02 1:4 p.m.•345 views

CVE-2026-2699 EAR vulnerability in Progress ShareFile Storage Zones Controller (SZC)

Customer Managed ShareFile Storage Zones Controller SZC allows an unauthenticated attacker to access restricted configuration pages. This leads to changing system configuration and potential remote code execution...

9.8CVSS0.49424EPSS
Exploits1References1
Cvelist
Cvelist
•added 2024/10/20 8:40 a.m.•341 views

CVE-2024-49607 WordPress WP Dropbox Dropins plugin <= 1.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in redhopit WP Dropbox Dropins wp-dropbox-dropins allows Upload a Web Shell to a Web Server.This issue affects WP Dropbox Dropins: from n/a through = 1.0...

10CVSS0.01026EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/20 8:38 a.m.•340 views

CVE-2024-6497 SEO Plugin by Squirrly SEO <= 12.3.19 - Authenticated (Contributor+) SQL Injection via url Parameter

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 12.3.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

8.8CVSS0.10969EPSS
Exploits1References4
Cvelist
Cvelist
•added 2026/05/22 9:10 p.m.•339 views

CVE-2026-41073 RT: Spreadsheet downloads vulnerable to CSV/formula injection in Microsoft Excel and similar apps

RT is an open source, enterprise-grade issue and ticket tracking system. Versions prior to 5.0.10 and 6.0.0 through 6.0.2 contain a spreadsheet CSV/formula injection vulnerability. User-controlled data in spreadsheet exports is not sanitized before being written to the output file, which can caus...

4.6CVSS0.00166EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/11/18 2:22 p.m.•336 views

CVE-2024-52427 WordPress Event Tickets with Ticket Scanner plugin <= 2.3.11 - Remote Code Execution (RCE) vulnerability

Deserialization of Untrusted Data vulnerability in Vollstart Event Tickets with Ticket Scanner event-tickets-with-ticket-scanner allows Server Side Include SSI Injection.This issue affects Event Tickets with Ticket Scanner: from n/a through = 2.3.11...

9.9CVSS0.00726EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/10/28 11:28 a.m.•335 views

CVE-2024-50450 WordPress MDTF – Meta Data and Taxonomies Filter plugin <= 1.3.3.4 - Bypass Vulnerability vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allows Code Injection.This issue affects MDTF: from n/a through = 1.3.3.4...

7.3CVSS0.01152EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/10/10 12:0 a.m.•335 views

CVE-2023-44487

The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...

7AI score0.99999EPSS
Exploits19References144
Cvelist
Cvelist
•added 2024/11/18 2:23 p.m.•333 views

CVE-2024-52433 WordPress My Geo Posts Free plugin <= 1.2 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Mindstien Technologies My Geo Posts Free my-geo-posts-free allows Object Injection.This issue affects My Geo Posts Free: from n/a through = 1.2...

9.8CVSS0.0307EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/16 5:36 p.m.•330 views

CVE-2024-7646

A security issue was discovered in ingress-nginx where an actor with permission to create Ingress objects in the networking.k8s.io or extensions API group can bypass annotation validation to inject arbitrary commands and obtain the credentials of the ingress-nginx controller. In the default...

8.8CVSS0.27018EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/11/18 2:27 p.m.•329 views

CVE-2024-52430 WordPress Lis Video Gallery plugin <= 0.2.1 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in bublick Lis Video Gallery lis-video-gallery allows Object Injection.This issue affects Lis Video Gallery: from n/a through = 0.2.1...

9.8CVSS0.0105EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/02/25 3:41 a.m.•325 views

CVE-2026-27636 FreeScout: Missing .htaccess in Restricted File Extensions Allows Remote Code Execution on Apache

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

8.8CVSS0.02121EPSS
Exploits3References3
Cvelist
Cvelist
•added 2024/10/31 5:31 a.m.•325 views

CVE-2024-10392 AI Power: Complete AI Pack <= 1.8.89 - Unauthenticated Arbitrary File Upload

The AI Power: Complete AI Pack plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'handleimageupload' function in all versions up to, and including, 1.8.89. This makes it possible for unauthenticated attackers to upload arbitrary files on the...

9.8CVSS0.1313EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/09/25 4:12 p.m.•324 views

CVE-2025-20333

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to improper...

9.9CVSS0.40391EPSS
Exploits1References1
Cvelist
Cvelist
•added 2025/03/24 11:29 p.m.•324 views

CVE-2025-1098 ingress-nginx controller - configuration injection via unsanitized mirror annotations

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the mirror-target and mirror-host Ingress annotations can be used to inject arbitrary configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx...

8.8CVSS0.83066EPSS
Exploits7References1
Cvelist
Cvelist
•added 2025/01/08 3:38 p.m.•324 views

CVE-2024-55656 RedisBloom Integer Overflow Remote Code Execution Vulnerability

RedisBloom adds a set of probabilistic data structures to Redis. There is an integer overflow vulnerability in RedisBloom, which is a module used in Redis. The integer overflow vulnerability allows an attacker a redis client which knows the password to allocate memory in the heap lesser than the...

8.8CVSS0.15009EPSS
Exploits1References1
Cvelist
Cvelist
•added 2025/03/21 12:0 a.m.•322 views

CVE-2025-30349

Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute that may use base64-encoded JavaScript code, as exploited in the wild in March 2025...

7.2CVSS0.30164EPSS
Exploits0References13
Cvelist
Cvelist
•added 2024/11/18 2:19 p.m.•316 views

CVE-2024-52429 WordPress WP Quick Setup plugin <= 2.0 - Arbitrary Plugin and Theme Installation to Remote Code Execution vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in AntonHoelstad WP Quick Setup wp-quick-setup allows Upload a Web Shell to a Web Server.This issue affects WP Quick Setup: from n/a through = 2.0...

9.9CVSS0.00901EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/10/29 8:48 a.m.•312 views

CVE-2025-12058 Vulnerability in Keras Model.load_model Leading to Arbitrary Local File Loading and SSRF

The Keras.Model.loadmodel method, including when executed with the intended security mitigation safemode=True, is vulnerable to arbitrary local file loading and Server-Side Request Forgery SSRF. This vulnerability stems from the way the StringLookup layer is handled during model loading from a...

5.9CVSS0.00239EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/01/29 9:19 p.m.•312 views

CVE-2025-0851 Path traversal issue in Deep Java Library

A path traversal issue in ZipUtils.unzip and TarUtils.untar in Deep Java Library DJL on all platforms allows a bad actor to write files to arbitrary locations...

9.8CVSS0.23267EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/01/06 12:0 a.m.•312 views

CVE-2024-48456

An issue in Netis Wifi6 Router NX10 2.0.1.3643 and 2.0.1.3582 and Netis Wifi 11AC Router NC65 3.0.0.3749 and Netis Wifi 11AC Router NC63 3.0.0.3327 and 3.0.0.3503 and Netis Wifi 11AC Router NC21 3.0.0.3800, 3.0.0.3500 and 3.0.0.3329 and Netis Wifi Router MW5360 1.0.1.3442 and 1.0.1.3031 allows a...

0.17289EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/03/24 11:29 p.m.•311 views

CVE-2025-1097 ingress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation

A security issue was discovered in ingress-nginx https://github.com/kubernetes/ingress-nginx where the auth-tls-match-cn Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of...

8.8CVSS0.34677EPSS
Exploits7References1
Cvelist
Cvelist
•added 2024/11/06 9:9 p.m.•311 views

CVE-2024-50340 Ability to change environment from query in symfony/runtime

symfony/runtime is a module for the Symphony PHP framework which enables decoupling PHP applications from global state. When the registerargvargc php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment or debug mode used by...

7.3CVSS0.63422EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/01/08 6:41 a.m.•310 views

CVE-2024-11613 WordPress File Upload <= 4.24.15 - Unauthenticated Remote Code Execution, Arbitrary File Read, and Arbitrary File Deletion

The WordPress File Upload plugin for WordPress is vulnerable to Remote Code Execution, Arbitrary File Read, and Arbitrary File Deletion in all versions up to, and including, 4.24.15 via the 'wfufiledownloader.php' file. This is due to lack of proper sanitization of the 'source' parameter and...

9.8CVSS0.04354EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/07/11 4:14 p.m.•310 views

CVE-2024-39538 Junos OS Evolved: ACX7000 Series: When multicast traffic with a specific (S,G) is received evo-pfemand crashes

A Buffer Copy without Checking Size of Input vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS.When multicast traffic with a specific, valid S,G is received,...

7.1CVSS0.00332EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/11/15 3:59 p.m.•307 views

CVE-2022-20649 Cisco Redundancy Configuration Manager Debug Remote Code Execution Vulnerability

A vulnerability in Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform remote code execution on the application with root-level privileges in the context of the configured container. This vulnerability exists because the debug mode is incorrectly enabled...

8.1CVSS0.11636EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/10/29 4:31 p.m.•307 views

CVE-2024-9989 Crypto <= 2.18 - Authentication Bypass via log_in

The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.18. This is due to a limited arbitrary method call to 'cryptoconnectajaxprocess::login' function in the 'cryptoconnectajaxprocess' function. This makes it possible for unauthenticated...

9.8CVSS0.07217EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/11/16 3:20 a.m.•306 views

CVE-2024-9849 Real3D Flipbook Lite – 3D FlipBook, PDF Viewer, PDF Embedder <= 4.8 - Authenticated (Author+) Arbitrary File Upload

The Real3D Flipbook Lite – 3D FlipBook, PDF Viewer, PDF Embedder plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'r3dfbsavethumbnailcallback' function in all versions up to, and including, 4.8. This makes it possible for authenticated...

8.8CVSS0.01189EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/11/15 10:53 a.m.•306 views

CVE-2022-1884 Remote Command Execution in gogs/gogs

A remote command execution vulnerability exists in gogs/gogs versions =0.12.7 when deployed on a Windows server. The vulnerability arises due to improper validation of the treepath parameter during file uploads. An attacker can set treepath=.git. to upload a file into the .git directory, allowing...

10CVSS0.01774EPSS
Exploits1References1
Cvelist
Cvelist
•added 2025/03/11 1:28 p.m.•305 views

CVE-2025-27363

An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a...

8.1CVSS0.26049EPSS
Exploits1References1
Cvelist
Cvelist
•added 2024/08/30 12:0 a.m.•305 views

CVE-2024-45488

One Identity Safeguard for Privileged Passwords before 7.5.2 allows unauthorized access because of an issue related to cookies. This only affects virtual appliance installations VMware or HyperV. The fixed versions are 7.0.5.1 LTS, 7.4.2, and 7.5.2...

0.50172EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/02/24 12:0 a.m.•303 views

CVE-2025-27364

In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is running on via a crafted web...

10CVSS0.23813EPSS
Exploits2References6
Cvelist
Cvelist
•added 2024/10/03 12:0 a.m.•303 views

CVE-2024-46658

Syrotech SY-GOPON-8OLT-L3 v1.6.0240629 was discovered to contain an authenticated command injection vulnerability...

0.23112EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/05/03 1:56 a.m.•303 views

CVE-2023-27363 Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability

Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS8.2AI score0.46994EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/09 5:34 a.m.•302 views

CVE-2024-5441 Modern Events Calendar <= 7.11.0 - Authenticated (Subscriber+) Arbitrary File Upload

The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the setfeaturedimage function in all versions up to, and including, 7.11.0. This makes it possible for authenticated attackers, with subscriber access and above, to uploa...

8.8CVSS0.01117EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/09/10 9:36 a.m.•301 views

CVE-2024-44087

A vulnerability has been identified in Automation License Manager V5 All versions, Automation License Manager V6.0 All versions V6.0 SP12 Upd3, Automation License Manager V6.2 All versions V6.2 Upd3. Affected applications do not properly validate certain fields in incoming network packets on port...

9.2CVSS0.10609EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/03/25 12:0 a.m.•300 views

CVE-2025-29635

A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /goform/setprohibiting via the corresponding function, triggering remote command execution...

0.87239EPSS
Exploits1References1
Cvelist
Cvelist
•added 2025/02/27 12:0 a.m.•300 views

CVE-2024-53944

An issue was discovered on Tuoshi/Dionlink LT15D 4G Wi-Fi devices through M7628NNxlSPv2xUIv1.0.1802.10.08P4 and LT21B devices through M7628xUSAxUIv2v1.0.1481.15.02P0. A unauthenticated remote attacker with network access can exploit a command injection vulnerability. The /goform/formJsonAjaxReq...

0.39247EPSS
Exploits0References5
Cvelist
Cvelist
•added 2024/07/10 2:2 a.m.•297 views

CVE-2023-7061 Advanced File Manager Shortcode <= 2.5.3 - Authenticated (Contributor+) Arbitrary File Upload

The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3. This makes it possible for authenticated attackers with contributor access or above to upload arbitrary files on the affected site's server which may make...

8.8CVSS0.00831EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/09 7:38 a.m.•297 views

CVE-2024-6314 IQ Testimonials <= 2.2.7 - Unauthenticated Arbitrary File Upload

The IQ Testimonials plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'processimageupload' function in versions up to, and including, 2.2.7. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected...

9.8CVSS0.00905EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/04 8:32 a.m.•296 views

CVE-2024-6319 IMGspider <= 2.3.10 - Authenticated (Contributor+) Arbitrary File Upload via 'upload'

The IMGspider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upload' function in all versions up to, and including, 2.3.10. This makes it possible for authenticated attackers, with contributor-level and above permissions, to upload arbitra...

8.8CVSS0.00947EPSS
Exploits0References3
Cvelist
Cvelist
•added 2023/10/23 6:50 a.m.•295 views

CVE-2023-43622 Apache HTTP Server: DoS in HTTP/2 with initial windows size 0

An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker resources in the server, similar to the well known "slow loris" attack pattern. This has been fixed in...

7.7AI score0.70595EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/31 3:0 p.m.•294 views

CVE-2024-7340 W&B Weave server remote arbitrary file leak and privilege escalation

The Weave server API allows remote users to fetch files from a specific directory, but due to a lack of input validation, it is possible to traverse and leak arbitrary files remotely. In various common scenarios, this allows a low-privileged user to assume the role of the server admin...

8.8CVSS0.04974EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/10/09 6:59 p.m.•292 views

CVE-2024-3656 Keycloak: unguarded admin rest api endpoints allows low privilege users to use administrative functionalities

A flaw was found in Keycloak. Certain endpoints in Keycloak's admin REST API allow low-privilege users to access administrative functionalities. This flaw allows users to perform actions reserved for administrators, potentially leading to data breaches or system compromise...

8.1CVSS0.02837EPSS
Exploits0References5
Cvelist
Cvelist
•added 2024/10/29 4:31 p.m.•289 views

CVE-2024-9988 Crypto <= 2.19 - Authentication Bypass via register

The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.19. This is due to missing validation on the user being supplied in the 'cryptoconnectajaxprocess::register' function. This makes it possible for unauthenticated attackers to log in as any...

9.8CVSS0.0108EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/09/19 3:48 p.m.•289 views

CVE-2024-8698 Keycloak-saml-core: improper verification of saml responses leading to privilege escalation in keycloak

A flaw exists in the SAML signature validation method within the Keycloak XMLSignatureUtil class. The method incorrectly determines whether a SAML signature is for the full document or only for specific assertions based on the position of the signature in the XML document, rather than the Referen...

7.7CVSS0.0203EPSS
Exploits0References14
Cvelist
Cvelist
•added 2024/01/31 5:51 p.m.•289 views

CVE-2024-21888

A privilege escalation vulnerability in web component of Ivanti Connect Secure 9.x, 22.x and Ivanti Policy Secure 9.x, 22.x allows a user to elevate privileges to that of an administrator...

8.8CVSS9.3AI score0.86806EPSS
Exploits4References1
Total number of security vulnerabilities5000