Lucene search
K
CvelistMost viewed

365247 matches found

Cvelist
Cvelist
•added 2025/08/12 5:10 p.m.•83 views

CVE-2025-53722 Windows Remote Desktop Services Denial of Service Vulnerability

...

7.5CVSS0.17942EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/07/10 4:57 p.m.•83 views

CVE-2025-49630 Apache HTTP Server: mod_proxy_http2 denial of service

In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in modproxyhttp2. Configurations affected are a reverse proxy is configured for an HTTP/2 backend, with...

0.01149EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/06/02 7:20 p.m.•83 views

CVE-2025-48387 tar-fs has issue where extract can write outside the specified dir with a specific tarball

tar-fs provides filesystem bindings for tar-stream. Versions prior to 3.0.9, 2.1.3, and 1.16.5 have an issue where an extract can write outside the specified dir with a specific tarball. This has been patched in versions 3.0.9, 2.1.3, and 1.16.5. As a workaround, use the ignore option to ignore n...

8.7CVSS0.00474EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/07/11 5:15 p.m.•83 views

CVE-2024-6531

...

Exploits0
Cvelist
Cvelist
•added 2024/07/05 12:0 a.m.•83 views

CVE-2024-32498

An issue was discovered in OpenStack Cinder through 24.0.0, Glance before 28.0.2, and Nova before 29.0.3. Arbitrary file access can occur via custom QCOW2 external data. By supplying a crafted QCOW2 image that references a specific data file path, an authenticated user may convince systems to...

0.00835EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/06/19 12:0 a.m.•83 views

CVE-2024-36680

In the module "Facebook" pkfacebook =1.0.1 from Promokit.eu for PrestaShop, a guest can perform SQL injection. The ajax script facebookConnect.php have a sensitive SQL call that can be executed with a trivial http call and exploited to forge a SQL injection...

0.10087EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/04/15 12:0 a.m.•83 views

CVE-2024-31497

In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is able to read messages signed by PuTTY or Pageant...

5.6AI score0.05773EPSS
Exploits0References27
Cvelist
Cvelist
•added 2021/04/09 5:50 p.m.•83 views

CVE-2021-20022

SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host...

8.5AI score0.16509EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/04/07 6:20 p.m.•83 views

CVE-2021-21425 Unauthenticated Arbitrary YAML Write/Update leads to Code Execution

Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and earlier, an unauthenticated user can execute some methods of administrator controller without needing any credentials. Particular method execution will result in...

9.3CVSS9.7AI score0.806EPSS
Exploits12References4
Cvelist
Cvelist
•added 2019/05/09 12:0 a.m.•84 views

CVE-2019-11840

An issue was discovered in the supplementary Go cryptography library, golang.org/x/crypto, before v0.0.0-20190320223903-b7391e95e576. A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystream i...

5.8AI score0.03465EPSS
Exploits0References11
Cvelist
Cvelist
•added 2018/03/09 8:0 p.m.•83 views

CVE-2016-8612

Apache HTTP Server modcluster before version httpd 2.4.23 is vulnerable to an Improper Input Validation in the protocol parsing logic in the load balancer resulting in a Segmentation Fault in the serving httpd process...

5AI score0.04692EPSS
Exploits0References6
Cvelist
Cvelist
•added 2017/06/20 1:0 a.m.•83 views

CVE-2017-3169

In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, modssl may dereference a NULL pointer when third-party modules call aphookprocessconnection during an HTTP request to an HTTPS port...

9.6AI score0.19953EPSS
Exploits0References42
Cvelist
Cvelist
•added 2026/05/20 9:28 a.m.•82 views

CVE-2026-6728 Slider Revolution <= 7.0.9 - Unauthenticated Sensitive Information Exposure via 'sliders/stream'

The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.0.9 via the 'getstreamdata' function. This makes it possible for unauthenticated attackers to extract sensitive data including published password-protected post, page, an...

5.3CVSS0.00332EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/17 6:15 a.m.•82 views

CVE-2026-8736 Oinone Pamirs RestController LocalFileClient.java request.getParameter path traversal

A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the function request.getParameter of the file LocalFileClient.java of the component RestController. Performing a manipulation of the argument uniqueFileName results in path traversal. The attack may be...

4.3CVSS0.00216EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/12 2:21 a.m.•82 views

CVE-2026-40135 OS Command Injection vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform

An OS Command Injection vulnerability exists in the SAP NetWeaver Application Server for ABAP and ABAP Platform that allows an authenticated attacker with administrative access to execute specially crafted shell commands on the server, bypassing the logging mechanism. This allows the execution of...

6.5CVSS0.01398EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/11 6:6 p.m.•82 views

CVE-2026-43969 Cookie Request Header Injection via Unvalidated Encoder in cow_cookie:cookie/1

Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in ninenines cowlib allows HTTP request splitting and cookie smuggling via unvalidated cookie name and value fields. cowcookie:cookie/1 in cowlib builds a client-side Cookie: request header from a list of name-value pairs...

2.1CVSS0.00145EPSS
Exploits0References3
Cvelist
Cvelist
•added 2026/05/10 4:13 a.m.•82 views

CVE-2026-7259 Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init()

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to a NULL pointer dereference, resulting in a segmentation fault and denial of service. The vulnerability is exploitable when...

2.1CVSS0.00202EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/06 11:28 a.m.•82 views

CVE-2026-43215 cifs: Fix locking usage for tcon fields

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix locking usage for tcon fields We used to use the cifstcpseslock to protect a lot of objects that are not just the server, ses or tcon lists. We later introduced srvlock, seslock and tclock to protect fields within the...

8.8CVSS0.00298EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/05/04 7:0 a.m.•82 views

CVE-2026-7742 CodeAstro Online Classroom facultylogin sql injection

A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...

6.5CVSS0.00241EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/05/02 11:16 a.m.•83 views

CVE-2026-6320 Salon Booking System – Free Version <= 10.30.25 - Unauthenticated Arbitrary File Read via Booking File Field Path Traversal

The Salon Booking System – Free Version plugin for WordPress is vulnerable to Arbitrary File Read in versions up to, and including, 10.30.25. This is due to the public booking flow accepting attacker-controlled file-field values and later using those stored values as trusted paths for email...

7.5CVSS0.00373EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/04/29 11:35 a.m.•82 views

CVE-2026-22745 CVE-2026-22745 : Denial of service in static resource handling on Windows platforms

Spring MVC and WebFlux applications are vulnerable to Denial of Service attacks when resolving static resources. More precisely, an application can be vulnerable when all the following are true: the application is using Spring MVC or Spring WebFlux the application is serving static resources from...

5.3CVSS0.00341EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/03/12 9:30 p.m.•82 views

CVE-2026-3910

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

0.02EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/12/13 4:31 a.m.•82 views

CVE-2025-11693 Export WP Page to Static HTML & PDF <= 4.3.4 - Unauthenticated Cookie Exposure via Log File

The Export WP Page to Static HTML & PDF plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.4 through publicly exposed cookies.txt files containing authentication cookies. This makes it possible for unauthenticated attackers to cookies th...

9.8CVSS0.01954EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/11/10 2:20 p.m.•82 views

CVE-2025-12480

Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete...

9.1CVSS0.90532EPSS
Exploits1References4
Cvelist
Cvelist
•added 2025/06/10 5:2 p.m.•82 views

CVE-2025-47163 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

8.8CVSS0.11509EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/05/30 5:57 a.m.•82 views

CVE-2025-41235 CVE-2025-41235: Spring Cloud Gateway Server Forwards Headers from Untrusted Proxies

Spring Cloud Gateway Server forwards the X-Forwarded-For and Forwarded headers from untrusted proxies...

8.6CVSS0.0029EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/04/10 12:0 a.m.•82 views

CVE-2024-58136

Yii 2 before 2.0.52 mishandles the attaching of behavior that is defined by an class array key, a CVE-2024-4990 regression, as exploited in the wild in February through April 2025...

9CVSS0.84758EPSS
Exploits1References5
Cvelist
Cvelist
•added 2024/11/19 4:31 p.m.•82 views

CVE-2024-51831 WordPress Persian Nested Show/Hide Text plugin <= 1.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aboutorab Pourhaghani Persian Nested Show/Hide Text persian-nested-showhide-text allows Stored XSS.This issue affects Persian Nested Show/Hide Text: from n/a through = 1.5...

6.5CVSS0.00374EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/10 12:0 a.m.•82 views

CVE-2024-39614

An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. getsupportedlanguagevariant was subject to a potential denial-of-service attack when used with very long strings containing specific characters...

0.28637EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/06/30 6:12 p.m.•82 views

CVE-2023-50964 IBM InfoSphere Information Server cross-site scripting

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 276102...

5.4CVSS0.00261EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/12/07 11:5 a.m.•82 views

CVE-2022-45362 WordPress Paytm Payment Gateway Plugin <= 2.7.0 is vulnerable to Server Side Request Forgery (SSRF)

Server-Side Request Forgery SSRF vulnerability in Paytm Paytm Payment Gateway.This issue affects Paytm Payment Gateway: from n/a through 2.7.0...

7.2CVSS7.2AI score0.40506EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/01/25 9:34 p.m.•82 views

CVE-2022-3094 An UPDATE message flood may cause named to exhaust all available memory

Sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This, in turn, may cause named to exit due to a lack of free memory. We are not aware of any cases where this has been exploited. Memory is allocated prior to the checking of access permissions ACLs and is...

7.5CVSS7.8AI score0.13108EPSS
Exploits0References1
Cvelist
Cvelist
•added 2018/01/18 11:0 p.m.•82 views

CVE-2012-6708

jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '' character anywhere in the string, giving...

6.1AI score0.08632EPSS
Exploits6References11
Cvelist
Cvelist
•added 2017/09/18 3:0 p.m.•82 views

CVE-2017-9798

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through 2.4.27. The attacker...

7.8AI score0.94999EPSS
Exploits9References55
Cvelist
Cvelist
•added 2017/07/27 9:0 p.m.•82 views

CVE-2016-2161

In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to modauthdigest can cause the server to crash, and each instance continues to crash even for subsequently valid requests...

7.5AI score0.20952EPSS
Exploits0References27
Cvelist
Cvelist
•added 2026/06/15 9:11 p.m.•81 views

CVE-2026-12087 Socket versions before 2.041 for Perl have an out-of-bounds heap read

Socket versions before 2.041 for Perl have an out-of-bounds heap read. In Socket.xs, packipmreqsource checks the length of its source argument before the argument is read, so the check tests the byte length carried over from the preceding multiaddr argument instead. Both addresses occupy a 4-byte...

0.00389EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/06/05 7:31 a.m.•81 views

CVE-2026-48907 Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5

A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated users, ultimately resulting in PHP code upload and execution...

10CVSS0.80425EPSS
Exploits19References1
Cvelist
Cvelist
•added 2026/05/30 1:50 a.m.•81 views

CVE-2026-48840

Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client...

5.3CVSS0.00264EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/27 7:16 p.m.•81 views

CVE-2026-44886 Pi.Alert: Web Interface Vulnerable to Unauthenticated Blind SQL Injection

Pi.Alert is a WIFI / LAN intruder detector with web service monitoring. From 2024-06-29 to before 2026-05-07, the web application endpoint is vulnerable to SQL injection. The /pialert/php/server/devices.php route accepts requests from unauthenticated users when the action URL parameter is set to...

8.7CVSS0.00248EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/26 2:15 p.m.•81 views

CVE-2026-45247 Mirasvit Cache Warmer for Magento < 1.11.12 PHP Object Injection

Mirasvit Full Page Cache Warmer for Magento 2 before version 1.11.12 contains a PHP object injection vulnerability that allows unauthenticated attackers to achieve remote code execution by supplying a crafted serialized PHP object in the CacheWarmer cookie. Attackers can exploit the unrestricted...

9.8CVSS0.27546EPSS
Exploits1References3
Cvelist
Cvelist
•added 2026/05/22 2:31 a.m.•81 views

CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh

SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil...

0.00394EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/12 2:20 a.m.•81 views

CVE-2026-34260 SQL injection vulnerability in SAP S/4HANA (SAP Enterprise Search for ABAP)

SAP S/4HANA SAP Enterprise Search for ABAP contains a SQL injection vulnerability that allows an authenticated attacker to inject malicious SQL statements through user-controlled input. The application directly concatenates this malicious user input into SQL queries, which are then passed to the...

9.6CVSS0.00466EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/04 1:11 p.m.•81 views

CVE-2025-58074 Privilege escalation during the installation of Norton Secure VPN via the Microsoft Store

A privilege escalation vulnerability exists during the installation of Norton Secure VPN via the Microsoft Store. A low-privilege user can replace files during the installation process, which may result in deletion of arbitrary files that can lead to elevation of privileges...

8.8CVSS0.00127EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/01 2:15 p.m.•81 views

CVE-2026-43042 mpls: add seqcount to protect the platform_label{,s} pair

In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platformlabel,s pair The RCU-protected codepaths mplsforward, mplsdumproutes can have an inconsistent view of platformlabels vs platformlabel in case of a concurrent resize...

7.1CVSS0.0011EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/10/20 2:43 p.m.•81 views

CVE-2025-57738 Apache Syncope: Remote Code Execution by delegated administrators

Apache Syncope offers the ability to extend / customize the base behavior on every deployment by allowing to provide custom implementations of a few Java interfaces; such implementations can be provided either as Java or Groovy classes, with the latter being particularly attractive as the machine...

0.23107EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/10/14 2:14 p.m.•81 views

CVE-2025-10242

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution...

7.2CVSS0.2084EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/06/23 8:42 p.m.•81 views

CVE-2025-2828 SSRF Vulnerability in RequestsToolkit in langchain-ai/langchain

A Server-Side Request Forgery SSRF vulnerability exists in the RequestsToolkit component of the langchain-community package specifically, langchaincommunity.agenttoolkits.openapi.toolkit.RequestsToolkit in langchain-ai/langchain version 0.0.27. This vulnerability occurs because the toolkit does n...

8.4CVSS0.14732EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/05/13 4:58 p.m.•81 views

CVE-2025-29971 Web Threat Defense (WTD.sys) Denial of Service Vulnerability

...

7.5CVSS0.58338EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/04/25 3:4 p.m.•81 views

CVE-2025-32432 Craft CMS Allows Remote Code Execution

Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. Starting from version 3.0.0-RC1 to before 3.9.15, 4.0.0-RC1 to before 4.14.15, and 5.0.0-RC1 to before 5.6.17, Craft is vulnerable to remote code execution. This is a high-impact, low-complexity...

10CVSS0.99803EPSS
Exploits14References5
Cvelist
Cvelist
•added 2024/10/24 12:0 a.m.•81 views

CVE-2024-45242

EnGenius ENH1350EXT A8J-ENH1350EXT devices through 3.9.3.2c1.9.51 allow blind OS Command Injection via shell metacharacters to the Ping or Speed Test utility. During the time of initial setup, the device creates an open unsecured network whose admin panel is configured with the default credential...

0.34662EPSS
Exploits0References2
Total number of security vulnerabilities5000