Lucene search
+L
CvelistMost viewed

366848 matches found

Cvelist
Cvelist
added 2024/05/27 8:4 p.m.82 views

CVE-2024-29415

The ip package through 2.0.1 for Node.js might allow SSRF because some IP addresses such as 127.1, 01200034567, 012.1.2.3, 000:0:0000::01, and ::fFFf:127.0.0.1 are improperly categorized as globally routable via isPublic. NOTE: this issue exists because of an incomplete fix for CVE-2023-42282...

9.7AI score0.08279EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/18 9:13 p.m.82 views

CVE-2024-24578 RaspberryMatic Unauthenticated Remote Code Execution vulnerability through HMServer File Upload

RaspberryMatic is an open-source operating system for HomeMatic internet-of-things devices. RaspberryMatic / OCCU prior to version 3.75.6.20240316 contains a unauthenticated remote code execution RCE vulnerability, caused by multiple issues within the Java based HMIPServer.jar component...

10CVSS10AI score0.08739EPSS
Exploits4References1
Cvelist
Cvelist
added 2024/01/11 2:21 a.m.82 views

CVE-2024-22194 cdo-local-uuid vulnerable to insertion of artifact derived from developer's Present Working Directory into demonstration code

cdo-local-uuid project provides a specialized UUID-generating function that can, on user request, cause a program to generate deterministic UUIDs. An information leakage vulnerability is present in cdo-local-uuid at version 0.4.0, and in case-utils in unpatched versions matching the pattern 0.x.0...

2.2CVSS3.9AI score0.0041EPSS
Exploits1References14
Cvelist
Cvelist
added 2023/11/02 12:0 a.m.82 views

CVE-2023-46695

An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS denial of service attack via certain inputs with a very large number of...

7.5AI score0.49774EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/02/17 12:0 a.m.82 views

CVE-2023-24078

Real Time Logic FuguHub v8.1 and earlier was discovered to contain a remote code execution RCE vulnerability via the component /FuguHub/cmsdocs/...

9.3AI score0.53239EPSS
Exploits9References2
Cvelist
Cvelist
added 2023/02/14 8:9 p.m.82 views

CVE-2023-21808 .NET and Visual Studio Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.01148EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/17 12:0 a.m.82 views

CVE-2022-39195

A cross-site scripting XSS vulnerability in the LISTSERV 17 web interface allows remote attackers to inject arbitrary JavaScript or HTML via the c parameter...

6.1AI score0.06314EPSS
Exploits4References2
Cvelist
Cvelist
added 2022/11/10 12:0 a.m.82 views

CVE-2022-45063

xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions...

9.8AI score0.04949EPSS
Exploits1References11
Cvelist
Cvelist
added 2022/08/22 8:5 a.m.82 views

CVE-2022-2841 CrowdStrike Falcon Uninstallation authorization

A vulnerability was found in CrowdStrike Falcon 6.31.14505.0/6.42.15610/6.44.15806. It has been classified as problematic. Affected is an unknown function of the component Uninstallation Handler. The manipulation leads to missing authorization. It is possible to launch the attack remotely. The...

2.7CVSS4.1AI score0.03672EPSS
Exploits4References5
Cvelist
Cvelist
added 2022/06/06 9:55 p.m.82 views

CVE-2022-32511

jmespath.rb aka JMESPath for Ruby before 1.6.1 uses JSON.load in a situation where JSON.parse is preferable...

9.7AI score0.02131EPSS
Exploits0References5
Cvelist
Cvelist
added 2019/01/31 12:0 a.m.82 views

CVE-2019-6109

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8AI score0.03807EPSS
Exploits0References13
Cvelist
Cvelist
added 2018/03/26 3:0 p.m.82 views

CVE-2018-1301

A specially crafted request could have crashed the Apache HTTP Server prior to version 2.4.30, due to an out of bound access after a size limit is reached by reading the HTTP header. This vulnerability is considered very hard if not impossible to trigger in non-debug mode both log and build level...

7.6AI score0.15564EPSS
Exploits0References28
Cvelist
Cvelist
added 2017/03/11 2:11 a.m.82 views

CVE-2017-5638

The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception handling and error-message generation during file-upload attempts, which allows remote attackers to execute arbitrary commands via a crafted Content-Type, Content-Disposition, or...

9.2AI score0.99999EPSS
Exploits44References33
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.81 views

CVE-2026-38329

Bludit CMS before version 3.18.4 allows Remote Code Execution RCE via the API Plugin. The POST /api/files/key endpoint in bl-plugins/api/plugin.php fails to perform authorization checks and lacks file extension validation. An attacker with a valid API token can upload a malicious PHP script and...

0.00627EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/05 10:31 a.m.81 views

CVE-2026-50259 Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb setmap request via mapwidths indexing

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. XkbSetMapChecks declares a fixed-size stack buffer mapWidths256 indexed by key type index. The helper function CheckKeyTypes writes to this buffer at a client-controlled offset, allowing a stack buffer overflow. This...

7.8CVSS0.00165EPSS
Exploits0References25
Cvelist
Cvelist
added 2026/05/11 5:15 a.m.81 views

CVE-2026-8276 bettercap MySQL Server mysql_server.go integer coercion

A flaw has been found in bettercap up to 2.41.5. Affected by this issue is some unknown functionality of the file modules/mysqlserver/mysqlserver.go of the component MySQL Server. Executing a manipulation can lead to integer coercion error. The attack can be launched remotely. The attack requires...

6.3CVSS0.00389EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/07 8:58 p.m.81 views

CVE-2026-33844 Azure Managed Instance for Apache Cassandra Remote Code Execution Vulnerability

...

9CVSS0.00988EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/15 9:6 a.m.81 views

CVE-2026-3505 Unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion.

Allocation of resources without limits or throttling, Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpg on all pg modules. This vulnerability is associated with program files AEADEncDataPacket.Java, BcAEADUtil.Java, JceAEADUtil.Java,...

8.7CVSS0.00758EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/09 2:49 p.m.81 views

CVE-2026-4878 Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()

A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use TOCTOU race condition in the capsetfile function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled file. By doing so,...

6.7CVSS0.00188EPSS
Exploits1References34
Cvelist
Cvelist
added 2025/06/23 7:1 p.m.81 views

CVE-2025-49144 Notepad++ Privilege Escalation in Installer via Uncontrolled Executable Search Path

Notepad++ is a free and open-source source code editor. In versions 8.8.1 and prior, a privilege escalation vulnerability exists in the Notepad++ v8.8.1 installer that allows unprivileged users to gain SYSTEM-level privileges through insecure executable search paths. An attacker could use social...

7.3CVSS0.00429EPSS
Exploits4References3
Cvelist
Cvelist
added 2025/01/13 8:41 p.m.81 views

CVE-2025-22134 heap-buffer-overflow with visual mode in Vim < 9.1.1003

When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctly reset the visu...

4.2CVSS0.00367EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/02 2:49 p.m.81 views

CVE-2024-8785 WhatsUp Gold Registry Overwrite Remote Code Execution Vulnerability

In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEYLOCALMACHINE\SOFTWARE\WOW6432Node\Ipswitch...

9.8CVSS0.09741EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/11/27 6:16 a.m.81 views

CVE-2024-36467 Authentication privilege escalation via user groups due to missing authorization checks

An authenticated user with API access e.g.: user with default User role, more specifically a user with access to the user.update API endpoint is enough to be able to add themselves to any group e.g.: Zabbix Administrators, except to groups that are disabled or having restricted GUI access...

7.5CVSS0.0073EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/23 5:4 p.m.81 views

CVE-2024-9014 OAuth2 client id and secret exposed through the web browser in pgAdmin 4

pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data...

9.9CVSS0.09685EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/08/28 12:0 a.m.81 views

CVE-2024-44913

An issue in the component EXR!ReadEXR+0x40ef1 of Irfanview v4.67.1.0 allows attackers to cause an access violation via a crafted EXR file. This vulnerability can lead to a Denial of Service DoS...

0.00284EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/08/27 7:31 p.m.81 views

CVE-2024-8213 D-Link DNS-1550-04 hd_config.cgi cgi_FMT_R12R5_1st_DiskMGR command injection

A vulnerability classified as critical has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814. Affected is th...

6.5CVSS0.07178EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/08/11 3:15 a.m.81 views

CVE-2024-7589 OpenSSH pre-authentication async signal safety issue

A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 120 by default. This signal handler executes in the context of the sshd8's privileged code, which is not sandbox...

0.02038EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/06/10 9:35 p.m.81 views

CVE-2024-37169 @jmondi/url-to-png arbitrary file read via Playwright's screenshot feature exploiting file wrapper

@jmondi/url-to-png is a self-hosted URL to PNG utility. Versions prior to 2.0.3 are vulnerable to arbitrary file read if a threat actor uses the Playright's screenshot feature to exploit the file wrapper. Version 2.0.3 mitigates this issue by requiring input URLs to be of protocol http or https. ...

5.3CVSS0.00529EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/06 9:26 p.m.81 views

CVE-2024-24198

smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c...

0.00461EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/29 5:0 a.m.81 views

CVE-2024-21512

Versions of the package mysql2 before 3.9.8 are vulnerable to Prototype Pollution due to improper user input sanitization passed to fields and tables when using nestTables...

8.2CVSS8.2AI score0.03114EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/14 6:46 p.m.81 views

CVE-2024-32004 Git vulnerable to Remote Code Execution while cloning special-crafted local repositories

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1,...

8.1CVSS7.8AI score0.01271EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/05/09 8:3 p.m.81 views

CVE-2024-4605 Breakdance <= 1.7.1 - Authenticated (Contributor+) Remote Code Execution

The Breakdance plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.7.1 via post meta data. This is due to the plugin storing custom data in metadata without an underscore prefix. This makes it possible for lower privileged users, such as contributor...

8.8CVSS9.6AI score0.00902EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/21 5:31 p.m.81 views

CVE-2024-1705 Shopwind Installation DefaultController.php actionCreate code injection

A vulnerability was found in Shopwind up to 4.6. It has been rated as critical. This issue affects the function actionCreate of the file /public/install/controllers/DefaultController.php of the component Installation. The manipulation leads to code injection. The attack may be initiated remotely...

5.6CVSS6.2AI score0.00594EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/06 9:0 p.m.81 views

CVE-2024-1259 Juanpao JPShop API AppController.php unrestricted upload

A vulnerability was found in Juanpao JPShop up to 1.5.02. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/controllers/admin/app/AppController.php of the component API. The manipulation of the argument apppicurl leads to unrestricted upload. The...

6.5CVSS9.7AI score0.00676EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/02/18 11:23 p.m.81 views

CVE-2021-45082

An issue was discovered in Cobbler before 3.3.1. In the templar.py file, the function checkforinvalidimports can allow Cheetah code to import Python modules via the "from MODULE import" substring. Only lines beginning with import are blocked...

7.9AI score0.00495EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/01/28 10:0 p.m.81 views

CVE-2022-21721 DOS Vulnerability in next.js

Next.js is a React framework. Starting with version 12.0.0 and prior to version 12.0.9, vulnerable code could allow a bad actor to trigger a denial of service attack for anyone using i18n functionality. In order to be affected by this CVE, one must use next start or a custom server and the built-...

5.9CVSS7.7AI score0.02153EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/05/13 6:55 p.m.81 views

CVE-2021-29510 Use of "infinity" as an input to datetime and date fields causes infinite loop in pydantic

Pydantic is a data validation and settings management using Python type hinting. In affected versions passing either 'infinity', 'inf' or float'inf' or their negatives to datetime or date fields causes validation to run forever with 100% CPU usage on one CPU. Pydantic has been patched with fixes...

3.3CVSS7.6AI score0.00967EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/05/11 7:11 p.m.81 views

CVE-2021-26419 Scripting Engine Memory Corruption Vulnerability

...

7.5CVSS8.7AI score0.22595EPSS
Exploits3References2
Cvelist
Cvelist
added 2019/10/09 12:0 a.m.81 views

CVE-2019-16905

OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing...

8AI score0.0217EPSS
Exploits2References9
Cvelist
Cvelist
added 2018/08/28 8:0 a.m.81 views

CVE-2018-15919

Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration or...

5.2AI score0.03557EPSS
Exploits1References3
Cvelist
Cvelist
added 2016/04/21 10:0 a.m.81 views

CVE-2016-2293

The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL...

8.5AI score0.01994EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/08/03 12:0 a.m.81 views

CVE-2015-5600

The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service CPU consumptio...

5.7AI score0.09302EPSS
Exploits1References33
Cvelist
Cvelist
added 2006/09/11 5:0 p.m.81 views

CVE-2006-4683

IBM Director before 5.10 allows remote attackers to obtain sensitive information from HTTP headers via HTTP TRACE...

6AI score0.0133EPSS
Exploits0References4
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.81 views

CVE-2002-1518

mv in IRIX 6.5 creates a directory with world-writable permissions while moving a directory, which could allow local users to modify files and directories...

6.4AI score0.00333EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/07/01 4:28 p.m.80 views

CVE-2026-20244 ClamAV DMG File Processing Denial of Service Vulnerability

A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in DMG...

7.5CVSS0.00389EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/01 4:28 p.m.80 views

CVE-2026-20217 ClamAV PESpin File Format Processing Out-of-Bounds Memory Corruption Vulnerability

A vulnerability in the PESpin file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in...

7.5CVSS0.00389EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/05 4:22 p.m.80 views

CVE-2026-7473 Arista EOS Unexpected Tunnel Protocol Decapsulation and Forwarding Bypass

On affected platforms running Arista EOS where a tunnel decapsulation configuration—such as VXLAN Virtual Extensible LAN, decap-groups, or a GRE Generic Routing Encapsulation tunnel interface—is present, the switch will incorrectly decapsulate and forward other unexpected tunneled packet with a...

6.9CVSS0.00836EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/04 2:21 p.m.80 views

CVE-2026-7774 tarfile.data_filter path traversal bypass allows writing outside the extraction directory

tarfile.datafilter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outside the intended extraction directory. This allowed a malicious tar archive to cause tarfile.extractall to write files outside the...

6.9CVSS0.00622EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/06/03 2:29 p.m.80 views

CVE-2026-3276 Potential DoS via quadratic complexity in unicodedata.normalize()

unicodedata.normalize can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters with alternating Canonical Combining Class values. This affects all normalization forms...

6.3CVSS0.00492EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/21 12:38 a.m.80 views

CVE-2026-48172

LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation possibly to root, as exploited in the wild in May 2026. Detection is best done via a command line of grep -rE "cpaneljsonapifunc=redisAble" /var/cpanel/logs /usr/local/cpanel/logs/ 2/dev/null in Bash. If you get no output,...

10CVSS0.18914EPSS
Exploits1References3
Total number of security vulnerabilities5000