Lucene search
+L
CvelistMost viewed

366864 matches found

Cvelist
Cvelist
•added 2023/02/03 8:26 p.m.•75 views

CVE-2023-23941 SwagPayPal payment not sent to PayPal correctly

SwagPayPal is a PayPal integration for shopware/platform. If JavaScript-based PayPal checkout methods are used PayPal Plus, Smart Payment Buttons, SEPA, Pay Later, Venmo, Credit card, the amount and item list sent to PayPal may not be identical to the one in the created order. The problem has bee...

7.5CVSS7.7AI score0.00297EPSS
Exploits0References2
Cvelist
Cvelist
•added 2022/10/06 12:0 a.m.•75 views

CVE-2022-39273 Default OAuth Authorization Server secret in FlyteAdmin

FlyteAdmin is the control plane for the data processing platform Flyte. Users who enable the default Flyte’s authorization server without changing the default clientid hashes will be exposed to the public internet. In an effort to make enabling authentication easier for Flyte administrators, the...

4.8CVSS7.8AI score0.0067EPSS
Exploits0References3
Cvelist
Cvelist
•added 2021/06/08 5:45 p.m.•75 views

CVE-2021-32674 Remote Code Execution via traversal in TAL expressions

Zope is an open-source web application server. This advisory extends the previous advisory at https://github.com/zopefoundation/Zope/security/advisories/GHSA-5pr9-v234-jw36 with additional cases of TAL expression traversal vulnerabilities. Most Python modules are not available for using in TAL...

8.8CVSS8.9AI score0.01574EPSS
Exploits0References4
Cvelist
Cvelist
•added 2021/01/04 2:26 a.m.•75 views

CVE-2021-3007

Laminas Project laminas-http before 2.14.2, and Zend Framework 3.0.0, has a deserialization vulnerability that can lead to remote code execution if the content is controllable, related to the destruct method of the Zend\Http\Response\Stream class in Stream.php. NOTE: Zend Framework is no longer...

10AI score0.75313EPSS
Exploits3References5
Cvelist
Cvelist
•added 2020/12/15 12:0 a.m.•75 views

CVE-2020-10770

A flaw was found in Keycloak before 13.0.0, where it is possible to force the server to call out an unverified URL using the OIDC parameter requesturi. This flaw allows an attacker to use this parameter to execute a Server-side request forgery SSRF attack...

4.7AI score0.69724EPSS
Exploits5References2
Cvelist
Cvelist
•added 2020/12/02 12:0 a.m.•75 views

CVE-2020-27813

An integer overflow vulnerability exists with the length of websocket frames received via a websocket connection. An attacker would use this flaw to cause a denial of service attack on an HTTP Server allowing websocket connections...

7.3AI score0.02103EPSS
Exploits0References4
Cvelist
Cvelist
•added 2020/08/07 3:27 p.m.•75 views

CVE-2020-11984

Apache HTTP server 2.4.32 to 2.4.44 modproxyuwsgi info disclosure and possible RCE...

9.5AI score0.90039EPSS
Exploits2References32
Cvelist
Cvelist
•added 2018/01/21 10:0 p.m.•75 views

CVE-2016-10708

sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c...

6AI score0.15716EPSS
Exploits1References11
Cvelist
Cvelist
•added 2017/12/26 10:0 p.m.•75 views

CVE-2017-17931

PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter...

10AI score0.01147EPSS
Exploits1References1
Cvelist
Cvelist
•added 2011/12/27 6:0 p.m.•75 views

CVE-2007-6750

The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the modreqtimeout module in versions before 2.2.15...

7.1AI score0.71634EPSS
Exploits1References11
Cvelist
Cvelist
•added 2011/11/08 11:0 a.m.•75 views

CVE-2011-4415

The appregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the modsetenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service memory consumption or NULL...

7.2AI score0.031EPSS
Exploits4References4
Cvelist
Cvelist
•added 2011/09/30 5:0 p.m.•75 views

CVE-2011-3580

IceWarp WebMail in IceWarp Mail Server before 10.3.3 allows remote attackers to obtain configuration information via a direct request to the /server URI, which triggers a call to the phpinfo function...

6.2AI score0.0161EPSS
Exploits2References7
Cvelist
Cvelist
•added 2026/06/30 3:11 p.m.•74 views

CVE-2026-48282 ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interactio...

10CVSS0.28583EPSS
Exploits3References1
Cvelist
Cvelist
•added 2026/06/03 4:9 p.m.•74 views

CVE-2026-20230 Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct server-side request forgery SSRF attacks through an affected device. This vulnerability ...

8.6CVSS0.41694EPSS
Exploits3References1
Cvelist
Cvelist
•added 2026/06/01 9:30 p.m.•74 views

CVE-2026-10294 PackageKit API pk-transaction.c g_file_test improper authorization

A vulnerability has been found in PackageKit up to 1.3.5. Affected is the function gfiletest of the file src/pk-transaction.c of the component API. Such manipulation of the argument frontend-socket leads to improper authorization. The attack can be executed remotely. The exploit has been disclose...

5.3CVSS0.00222EPSS
Exploits0References6
Cvelist
Cvelist
•added 2026/05/28 9:40 a.m.•74 views

CVE-2026-46201 drm/xe: Fix dma-buf attachment leak in xe_gem_prime_import()

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix dma-buf attachment leak in xegemprimeimport When xedmabufinitobj fails, the attachment from dmabufdynamicattach is not detached. Add dmabufdetach before returning the error. Note: we cannot use goto outerr here becaus...

7.8CVSS0.00138EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/26 1:56 p.m.•74 views

CVE-2026-4480 Samba: samba: remote code execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9CVSS0.12797EPSS
Exploits9References14
Cvelist
Cvelist
•added 2026/05/22 12:43 a.m.•74 views

CVE-2026-34909

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account...

10CVSS0.02269EPSS
Exploits2References1
Cvelist
Cvelist
•added 2026/05/21 9:25 a.m.•74 views

CVE-2026-42000 Insufficient Validation of Names During AXFR

Insufficient Validation of Names During AXFR...

6.8CVSS0.00242EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/15 4:33 p.m.•74 views

CVE-2026-23695 Cockpit CMS 2.14.0 Stored XSS via Set Field Display Template

Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contains a stored cross-site scripting vulnerability in the Set field type's Display template option, where the template string is processed by the $interpolate function using new Function and rendered via Vue's v-html directive witho...

5.4CVSS0.00138EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/14 1:0 p.m.•74 views

CVE-2026-6479 PostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion

Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AFUNIX socket to achieve sustained denial of service. If SSL and GSS are both disabled, an attacker can do the same via access to a PostgreSQL TCP socket. Versions before PostgreSQL 18....

7.5CVSS0.00471EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/13 5:38 p.m.•74 views

CVE-2026-45411 vm2: Sandbox Breakout Using Async Generator

vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.3, it is possible to catch a host exception using the yield expression inside an async generator. When the generator is closed using the return function, the value is awaited on and exceptions thrown in the then call will be caught by th...

9.8CVSS0.00568EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/05/13 3:8 p.m.•74 views

CVE-2026-42266 JupyterLab has an Extension Manager API/GUI Policy Discrepancy allowing 3rd party (malicious) extensions install via POST request.

JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. From 4.0.0 to 4.5.6, the allow-list of extensions that can be installed from PyPI Extension Manager allowedextensionsuris is not correctly enforced by JupyterLab. The Py...

8.8CVSS0.0053EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/12 9:17 p.m.•74 views

CVE-2026-44242 Micronaut Framework: Unbounded bundleCache in ResourceBundleMessageSource Allows Memory Exhaustion via Accept-Language Header

Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. Prior to 4.10.22, the bundleCache is keyed by Locale, baseName where the locale originates from the HTTP Accept-Language header. In applications that explicitly register a...

3.7CVSS0.00209EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/12 7:48 a.m.•75 views

CVE-2026-6237 Quick Table <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'style' Shortcode Attribute

The Quick Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'style' attribute of the 'qtbl' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00187EPSS
Exploits0References3
Cvelist
Cvelist
•added 2026/05/10 11:30 p.m.•74 views

CVE-2026-8253 Devs Palace ERP Online purchase_save cross site scripting

A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. Affected by this vulnerability is an unknown functionality of the file /inventory/purchasesave. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available a...

4.8CVSS0.00202EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/09 3:37 a.m.•74 views

CVE-2026-42051 Kirby: System API endpoint leaks license data and installed version to authenticated users

Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, the system API endpoint leaks license data and installed version to authenticated users. This issue has been patched in versions 4.9.0 and 5.4.0...

5.3CVSS0.00193EPSS
Exploits0References3
Cvelist
Cvelist
•added 2026/05/08 12:35 p.m.•74 views

CVE-2022-50994 DrayTek Vigor 2960 < 1.5.1.4 OS Command Injection via mainfunction.cgi

DrayTek Vigor 2960 firmware versions prior to 1.5.1.4 contain an OS command injection vulnerability in the CGI login handler that allows unauthenticated remote attackers to execute arbitrary commands by injecting shell metacharacters into the formpassword parameter. Attackers can exploit...

9.2CVSS0.01432EPSS
Exploits0References3
Cvelist
Cvelist
•added 2026/05/07 7:41 p.m.•74 views

CVE-2026-33814 Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net

When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGSMAXFRAMESIZE with a value of 0...

0.00781EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/05/07 1:42 p.m.•74 views

CVE-2026-44263 Weblate: Private Translation Enumeration via Screenshot API

Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and component link API allowed for the enumeration of translations in a project inaccessible to the user. This issue has been patched in version 5.17.1...

4.3CVSS0.00288EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/05 2:26 a.m.•74 views

CVE-2026-4409 Subscribe To Comments Reloaded <= 240119 - Improper Authorization to Unauthenticated Arbitrary Subscription Management

The Subscribe To Comments Reloaded plugin for WordPress is vulnerable to unauthorized modification of data due to a leaked secret key and usage of a weak hash generation algorithm in all versions up to, and including, 240119. This makes it possible for unauthenticated attackers to extract the...

6.5CVSS0.00227EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/04 6:30 p.m.•74 views

CVE-2026-42231 n8n: Prototype Pollution in XML Webhook Body Parser Leads to RCE

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, a flaw in the xml2js library used to parse XML request bodies in n8n's webhook handler allowed prototype pollution via a crafted XML payload. An authenticated user with permission to create or modi...

9.4CVSS0.00851EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/04/23 12:11 p.m.•74 views

CVE-2026-39440 WordPress FunnelFormsPro plugin <= 3.8.1 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Funnelforms LLC FunnelFormsPro allows Remote Code Inclusion.This issue affects FunnelFormsPro: from n/a through 3.8.1...

9.9CVSS0.00364EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/04/10 3:48 p.m.•74 views

CVE-2026-40228

In systemd 259, systemd-journald can send ANSI escape sequences to the terminals of arbitrary users when a "logger -p emerg" command is executed, if ForwardToWall=yes is set...

2.9CVSS0.00173EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/03/25 1:25 p.m.•74 views

CVE-2026-1519 Excessive NSEC3 iterations cause high CPU load during insecure delegation validation

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS0.01545EPSS
Exploits0References4
Cvelist
Cvelist
•added 2025/06/13 12:0 a.m.•74 views

CVE-2025-45988

Blink routers BL-WR9000 V2.4.9 , BL-AC2100AZ3 V1.0.4, BL-X10AC8 v1.0.5 , BL-LTE300 v1.2.3, BL-F1200AT1 v1.0.0, BL-X26AC8 v1.2.8, BLAC450MAE4 v4.0.0 and BL-X26DA3 v1.2.7 were discovered to contain multiple command injection vulnerabilities via the cmd parameter in the bsSetCmd function...

0.10161EPSS
Exploits1References1
Cvelist
Cvelist
•added 2025/01/29 9:40 p.m.•74 views

CVE-2024-11187 Many records in the additional section cause CPU exhaustion

It is possible to construct a zone such that some queries to it will generate responses containing numerous records in the Additional section. An attacker sending many such queries can cause either the authoritative server itself or an independent resolver to use disproportionate resources...

7.5CVSS0.15465EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/11/18 4:33 p.m.•74 views

CVE-2024-47533 Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes

Cobbler, a Linux installation server that allows for rapid setup of network installation environments, has an improper authentication vulnerability starting in version 3.0.0 and prior to versions 3.2.3 and 3.3.7. utils.getsharedsecret always returns -1, which allows anyone to connect to cobbler...

9.8CVSS0.03948EPSS
Exploits6References3
Cvelist
Cvelist
•added 2024/10/17 1:59 a.m.•74 views

CVE-2024-45766

Dell OpenManage Enterprise, versions OME 4.1 and prior, contains an Improper Control of Generation of Code 'Code Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

8CVSS0.00531EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/09/26 5:21 p.m.•74 views

CVE-2024-47171 Agnai vulnerable to Relative Path Traversal in Image Upload

Agnai is an artificial-intelligence-agnostic multi-user, mult-bot roleplaying chat system. A vulnerability in versions prior to 1.0.330 permits attackers to upload image files at attacker-chosen location on the server. This issue can lead to image file uploads to unauthorized or unintended...

4.3CVSS0.00495EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/08/28 7:43 p.m.•74 views

CVE-2024-43805 HTML injection in Jupyter Notebook and JupyterLab leading to DOM Clobbering

jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using JupyterLab preview feature. A malicious user c...

7.6CVSS0.00373EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/13 5:29 p.m.•74 views

CVE-2024-38213 Windows Mark of the Web Security Feature Bypass Vulnerability

...

6.5CVSS0.1337EPSS
Exploits1References1
Cvelist
Cvelist
•added 2024/08/13 3:51 p.m.•74 views

CVE-2024-36505

An improper access control vulnerability CWE-284 in FortiOS 7.4.0 through 7.4.3, 7.2.5 through 7.2.7, 7.0.12 through 7.0.14 and 6.4.x may allow an attacker who has already successfully obtained write access to the underlying system via another hypothetical exploit to bypass the file integrity...

5.1CVSS0.00159EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/08 1:59 a.m.•74 views

CVE-2024-38202 Windows Update Stack Elevation of Privilege Vulnerability

...

7.3CVSS0.01678EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/07 1:27 p.m.•74 views

CVE-2024-43044

Jenkins 2.470 and earlier, LTS 2.452.3 and earlier allows agent processes to read arbitrary files from the Jenkins controller file system by using the ClassLoaderProxyfetchJar method in the Remoting library...

0.28782EPSS
Exploits4References1
Cvelist
Cvelist
•added 2024/06/20 2:33 p.m.•74 views

CVE-2024-6162 Undertow: url-encoded request path information can be broken on ajp-listener

A vulnerability was found in Undertow, where URL-encoded request paths can be mishandled during concurrent requests on the AJP listener. This issue arises because the same buffer is used to decode the paths for multiple requests simultaneously, leading to incorrect path information being processe...

7.5CVSS0.01702EPSS
Exploits0References6
Cvelist
Cvelist
•added 2024/05/01 2:57 p.m.•74 views

CVE-2024-33512

There is a buffer overflow vulnerability in the underlying Local User Authentication Database service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's access point management protocol UDP port 8211. Successful exploitation ...

9.8CVSS10AI score0.14617EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/04/04 2:59 p.m.•75 views

CVE-2024-3116 Remote Code Execution Vulnerability through the validate binary path API in pgAdmin 4

pgAdmin = 8.4 is affected by a Remote Code Execution RCE vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the database management system's integrity and the security of the...

7.4CVSS8.1AI score0.64846EPSS
Exploits5References3
Cvelist
Cvelist
•added 2024/03/21 9:50 p.m.•74 views

CVE-2024-28117 Grav vulnerable to Server Side Template Injection (SSTI)

Grav is an open-source, flat-file content management system. Prior to version 1.7.45, Grav validates accessible functions through the Utils::isDangerousFunction function, but does not impose restrictions on twig functions like twigarraymap, allowing attackers to bypass the validation and execute...

8.8CVSS9.4AI score0.01381EPSS
Exploits1References2
Cvelist
Cvelist
•added 2024/03/14 3:3 a.m.•74 views

CVE-2024-1222 Incorrect authorization controls in PaperCut NG/MF APIs

This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls...

8.6CVSS8.7AI score0.63984EPSS
Exploits0References1
Total number of security vulnerabilities5000