Lucene search
K
CvelistMost viewed

364826 matches found

Cvelist
Cvelist
•added 2025/07/29 10:11 p.m.•70 views

CVE-2025-54381 BentoML is Vulnerable to an SSRF Attack Through File Upload Processing

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. In versions 1.4.0 until 1.4.19, the file upload processing system contains an SSRF vulnerability that allows unauthenticated remote attackers to force the server to make arbitrary HTTP...

9.9CVSS0.11883EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/07/18 3:47 p.m.•70 views

CVE-2025-54075 mdc vulnerable to XSS in markdown rendering bypassing HTML filter. (N°4)

MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component. Prior to version 0.17.2, a remote script-inclusion / stored cross-site scripting vulnerability in @nuxtjs/mdc lets a Markdown author inject a element. The tag rewrites how all subsequent relative...

8.3CVSS0.00302EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/06/18 11:30 p.m.•70 views

CVE-2025-24286

A vulnerability allowing an authenticated user with the Backup Operator role to modify backup jobs, which could execute arbitrary code...

7.2CVSS0.1119EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/06/18 11:30 p.m.•70 views

CVE-2025-23121

A vulnerability allowing remote code execution RCE on the Backup Server by an authenticated domain user...

9.9CVSS0.12442EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/05/22 12:0 a.m.•70 views

CVE-2025-32813

An issue was discovered in Infoblox NETMRI before 7.6.1. Remote Unauthenticated Command Injection can occur...

0.43042EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/05/20 6:0 p.m.•70 views

CVE-2025-22157

This High severity PrivEsc Privilege Escalation vulnerability was introduced in versions: 9.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Core Data Center and Server 5.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Service Management Data Center and Server This PrivEsc Privilege Escalation vulnerability, wi...

7.2CVSS0.00445EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/05/01 6:40 p.m.•70 views

CVE-2025-32011 KUNBUS Revolution Pi Authentication Bypass by Primary Weakness

KUNBUS PiCtory versions 2.5.0 through 2.11.1 have an authentication bypass vulnerability where a remote attacker can bypass authentication to get access due to a path traversal...

9.8CVSS0.22202EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/05/01 5:20 p.m.•70 views

CVE-2025-46565 Vite's server.fs.deny bypassed with /. for files under project root

Vite is a frontend tooling framework for javascript. Prior to versions 6.3.4, 6.2.7, 6.1.6, 5.4.19, and 4.5.14, the contents of files in the project root that are denied by a file matching pattern can be returned to the browser. Only apps explicitly exposing the Vite dev server to the network usi...

6CVSS0.01077EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/04/30 4:30 p.m.•70 views

CVE-2025-3859 Firefox Focus elide URL allows address bar spoofing

Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick users into thinking they were on a different webpage. This vulnerability was fixed in Focus 138...

0.00172EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/04/22 4:32 p.m.•70 views

CVE-2025-34028 Commvault Command Center Innovation Release <= 11.38.25 Unathenticated Install Package Path Traversal

The Commvault Command Center Innovation Release allows an unauthenticated actor to upload ZIP files that represent install packages that, when expanded by the target server, are vulnerable to path traversal vulnerability that can result in Remote Code Execution via malicious JSP. This issue affec...

9.3CVSS0.97157EPSS
Exploits5References4
Cvelist
Cvelist
•added 2025/01/03 9:31 p.m.•70 views

CVE-2024-13129 Roxy-WI roxy.py action_service os command injection

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by this vulnerability is the function actionservice of the file app/modules/roxywi/roxy.py. The manipulation of the argument action/service leads to os command injection. The attack can be launched...

9CVSS0.17797EPSS
Exploits0References8
Cvelist
Cvelist
•added 2024/11/11 5:52 a.m.•70 views

CVE-2024-51793 WordPress RepairBuddy plugin <= 3.8115 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Ateeq Rafeeq RepairBuddy computer-repair-shop allows Upload a Web Shell to a Web Server.This issue affects RepairBuddy: from n/a through = 3.8115...

10CVSS0.01794EPSS
Exploits4References1
Cvelist
Cvelist
•added 2024/10/31 4:15 p.m.•70 views

CVE-2024-51478 Use of a Broken or Risky Cryptographic Algorithm in YesWiki

YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered and used to reset the password of any account. This issue is fixed in 4.4.5...

9.9CVSS0.00368EPSS
Exploits1References3
Cvelist
Cvelist
•added 2024/09/10 4:54 p.m.•70 views

CVE-2024-43470 Azure Network Watcher VM Agent Elevation of Privilege Vulnerability

...

7.3CVSS0.00855EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/28 7:43 p.m.•70 views

CVE-2024-43805 HTML injection in Jupyter Notebook and JupyterLab leading to DOM Clobbering

jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user interaction by opening a malicious notebook with Markdown cells, or Markdown file using JupyterLab preview feature. A malicious user c...

7.6CVSS0.00373EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/22 5:22 p.m.•70 views

CVE-2024-40634 Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to...

7.5CVSS0.01392EPSS
Exploits1References4
Cvelist
Cvelist
•added 2024/07/16 10:39 p.m.•70 views

CVE-2024-21131

...

3.7CVSS0.00953EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/09 5:2 p.m.•70 views

CVE-2024-38112 Windows MSHTML Platform Spoofing Vulnerability

...

7.5CVSS0.84345EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/01 6:10 p.m.•70 views

CVE-2024-36387 Apache HTTP Server: DoS by Null pointer in websocket over HTTP/2

Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, degrading performance...

0.01715EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/06/19 7:48 p.m.•70 views

CVE-2024-38355 Unhandled 'error' event in socket.io

Socket.IO is an open source, real-time, bidirectional, event-based, communication framework. A specially crafted Socket.IO packet can trigger an uncaught exception on the Socket.IO server, thus killing the Node.js process. This issue is fixed by commit 15af22fc22 which has been included in...

7.3CVSS0.0069EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/05/21 5:29 p.m.•70 views

CVE-2024-22274

The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit this issue to run arbitrary commands on the underlying operating system...

7.2CVSS7.5AI score0.02488EPSS
Exploits3References1
Cvelist
Cvelist
•added 2024/04/12 12:36 p.m.•70 views

CVE-2024-31289 WordPress Hello Elementor theme <= 3.0.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Elementor Hello Elementor.This issue affects Hello Elementor: from n/a through 3.0.0...

4.3CVSS5AI score0.002EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/03/29 12:0 a.m.•70 views

CVE-2024-28960

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory...

7.6AI score0.0084EPSS
Exploits0References5
Cvelist
Cvelist
•added 2024/03/15 12:38 p.m.•70 views

CVE-2023-6725 Tripleo-ansible: bind keys are world readable

An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information...

5.5CVSS6.4AI score0.00203EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/01/08 1:20 p.m.•70 views

CVE-2024-21645 pyLoad Log Injection

pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in pyload allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by pyload. Forged or otherwise, corrupted log files can be used to cover an...

5.3CVSS5.7AI score0.24513EPSS
Exploits1References2
Cvelist
Cvelist
•added 2023/12/22 4:19 p.m.•70 views

CVE-2023-49790 App PIN code can be bypassed in Nextcloud Files iOS

The Nextcloud iOS Files app allows users of iOS to interact with Nextcloud, a self-hosted productivity platform. Prior to version 4.9.2, the application can be used without providing the 4 digit PIN code. Nextcloud iOS Files app should be upgraded to 4.9.2 to receive the patch. No known workaroun...

4.3CVSS4.6AI score0.00288EPSS
Exploits0References3
Cvelist
Cvelist
•added 2023/11/07 5:26 a.m.•70 views

CVE-2023-28570 Buffer Copy without Checking Size of Input in Audio

Memory corruption while processing audio effects...

6.7CVSS8.1AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/08/31 5:33 a.m.•70 views

CVE-2023-3162 Stripe Payment Plugin for WooCommerce <= 3.7.7 - Authentication Bypass

The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.7.7. This is due to insufficient verification on the user being supplied during a Stripe checkout through the plugin. This allows unauthenticated attackers to...

9.8CVSS9.8AI score0.00966EPSS
Exploits2References3
Cvelist
Cvelist
•added 2023/06/23 2:44 p.m.•70 views

CVE-2023-34464 XWiki vulnerable to stored cross-site scripting via any wiki document and the displaycontent/rendercontent template

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting in version 2.2.1 until versions 14.4.8, 14.10.5, and 15.1RC1 of org.xwiki.platform:xwiki-platform-web and any version prior to 14.4.8, 14.10.5, and 15.1.RC1 of...

9CVSS8.8AI score0.00714EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/06/13 12:0 a.m.•70 views

CVE-2023-33695

Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile function at /core/io/FileUtil.java...

7AI score0.00244EPSS
Exploits1References1
Cvelist
Cvelist
•added 2023/03/29 9:0 a.m.•70 views

CVE-2023-1688 SourceCodester Earnings and Expense Tracker App cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Earnings and Expense Tracker App 1.0. This affects an unknown part of the file Master.php?a=saveexpense. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely...

4CVSS6.2AI score0.00363EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/03/24 12:0 a.m.•70 views

CVE-2022-20532

In parseTrackFragmentRun of MPEG4Extractor.cpp, there is a possible out of bounds read due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

9.2AI score0.00489EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/03/14 4:36 a.m.•70 views

CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java

Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access services which can be used to perform unauthorized operations affecting users and services...

9.9CVSS9.5AI score0.00544EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/01/11 12:0 a.m.•70 views

CVE-2022-4543

A flaw named "EntryBleed" was found in the Linux Kernel Page Table Isolation KPTI. This issue could allow a local attacker to leak KASLR base via prefetch side-channels based on TLB timing for Intel systems...

5.3AI score0.00954EPSS
Exploits1References2
Cvelist
Cvelist
•added 2022/10/20 12:0 a.m.•70 views

CVE-2022-3620 Exim DMARC dmarc.c dmarc_dns_lookup use after free

A vulnerability was found in Exim and classified as problematic. This issue affects the function dmarcdnslookup of the file dmarc.c of the component DMARC Handler. The manipulation leads to use after free. The attack may be initiated remotely. The name of the patch is...

5.6CVSS9.7AI score0.00734EPSS
Exploits0References5
Cvelist
Cvelist
•added 2022/09/07 11:17 p.m.•70 views

CVE-2022-38531

FPT G-97RG6M R4.2.98.035 and G-97RG3 R4.2.43.078 are vulnerable to Remote Command Execution in the ping function...

9.1AI score0.0188EPSS
Exploits1References1
Cvelist
Cvelist
•added 2022/09/05 6:40 a.m.•70 views

CVE-2022-39051 Perl Code execution in Template Toolkit

Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party package...

6.8CVSS9AI score0.00709EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/08/29 2:3 p.m.•70 views

CVE-2022-0851

There is a flaw in convert2rhel. When the --activationkey option is used with convert2rhel, the activation key is subsequently passed to subscription-manager via the command line, which could allow unauthorized users locally on the machine to view the activation key via the process command line v...

5.7AI score0.00303EPSS
Exploits1References2
Cvelist
Cvelist
•added 2022/08/22 6:28 p.m.•70 views

CVE-2022-32778

An information disclosure vulnerability exists in the cookie functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. The session cookie and the pass cookie miss the HttpOnly flag, making them accessible via JavaScript. The session cookie also misses the secure flag, which allows the...

7.5CVSS7.5AI score0.01983EPSS
Exploits0References2
Cvelist
Cvelist
•added 2022/07/17 10:24 p.m.•70 views

CVE-2022-30981

An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution...

9AI score0.01132EPSS
Exploits2References1
Cvelist
Cvelist
•added 2022/06/28 4:9 p.m.•70 views

CVE-2022-0987

A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the time the methods take to execute and know whether a file owned by root or other users exists...

4.2AI score0.00263EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/06/06 9:15 p.m.•70 views

CVE-2022-31027 Authorization Bypass Through User-Controlled Key when using CILogonOAuthenticator in oauthenticator

OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthenticator is provided by the OAuthenticator package, and lets users log in to a JupyterHub via CILogon. This is primarily used to restrict a JupyterHub only to users of a given institute. The allowedidps...

4.2CVSS6.6AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/02/18 7:51 p.m.•70 views

CVE-2022-24051

MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL...

7CVSS8.3AI score0.00657EPSS
Exploits0References6
Cvelist
Cvelist
•added 2022/02/04 10:32 p.m.•70 views

CVE-2022-23580 Abort caused by allocating a vector that is too large in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. During shape inference, TensorFlow can allocate a large vector based on a value from a tensor controlled by the user. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, a...

6.5CVSS6.7AI score0.00821EPSS
Exploits1References3
Cvelist
Cvelist
•added 2021/11/08 4:7 a.m.•70 views

CVE-2021-42078

PHP Event Calendar through 2021-11-04 allows persistent cross-site scripting XSS, as demonstrated by the /server/ajax/eventsmanager.php title parameter. This can be exploited by an adversary in multiple ways, e.g., to perform actions on the page in the context of other users, or to deface the sit...

6.3AI score0.00864EPSS
Exploits3References2
Cvelist
Cvelist
•added 2021/11/03 5:20 p.m.•70 views

CVE-2021-23820 Prototype Pollution

This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays...

5.6CVSS7.7AI score0.01813EPSS
Exploits1References3
Cvelist
Cvelist
•added 2021/10/01 1:53 p.m.•70 views

CVE-2021-41648

An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /action.php prId parameter. Using a post request does not sanitize the user input...

8.7AI score0.10013EPSS
Exploits4References5
Cvelist
Cvelist
•added 2021/09/07 9:25 a.m.•70 views

CVE-2021-36162 Unprotected yaml deserialization cause RCE

Apache Dubbo supports various rules to support configuration override or traffic routing called routing in Dubbo. These rules are loaded into the configuration center eg: Zookeeper, Nacos, ... and retrieved by the customers when making a request in order to find the right endpoint. When parsing...

8.8AI score0.02019EPSS
Exploits0References1
Cvelist
Cvelist
•added 2020/09/09 7:0 p.m.•70 views

CVE-2020-1913

An Integer signedness error in the JavaScript Interpreter in Facebook Hermes prior to commit 2c7af7ec481ceffd0d14ce2d7c045e475fd71dc6 allows attackers to cause a denial of service attack or a potential RCE via crafted JavaScript. Note that this is only exploitable if the application using Hermes...

7.8AI score0.01202EPSS
Exploits0References2
Cvelist
Cvelist
•added 2020/05/19 12:0 a.m.•70 views

CVE-2020-7656

jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "" HTML tags that contain a whitespace character, i.e: "", which results in the enclosed script logic to be executed...

6.2AI score0.06273EPSS
Exploits4References4
Total number of security vulnerabilities5000