Lucene search
K
CvelistMost viewed

366522 matches found

Cvelist
Cvelist
•added 2026/02/10 5:27 p.m.•71 views

CVE-2026-0651 Path Traversal on TP-Link Tapo D235 and C260 via Local https

A path traversal vulnerability was identified TP-Link Tapo C260 v1, D235 v1 and C520WS v2.6 within the HTTP server’s handling of GET requests. The server performs path normalization before fully decoding URL encoded input and falls back to using the raw path when normalization fails. An attacker...

6.9CVSS0.00303EPSS
Exploits2References6
Cvelist
Cvelist
•added 2025/10/22 7:29 p.m.•71 views

CVE-2025-62611 aiomysql allows arbitrary access to client files through vulnerability of a malicious MySQL server

aiomysql is a library for accessing a MySQL database from the asyncio. Prior to version 0.3.0, the client-side settings are not checked before sending local files to MySQL server, which allows obtaining arbitrary files from the client using a rogue server. It is possible to create a rogue MySQL...

8.2CVSS0.00354EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/05/20 6:0 p.m.•71 views

CVE-2025-22157

This High severity PrivEsc Privilege Escalation vulnerability was introduced in versions: 9.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Core Data Center and Server 5.12.0, 10.3.0, 10.4.0, and 10.5.0 of Jira Service Management Data Center and Server This PrivEsc Privilege Escalation vulnerability, wi...

7.2CVSS0.00612EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/05/01 6:40 p.m.•71 views

CVE-2025-32011 KUNBUS Revolution Pi Authentication Bypass by Primary Weakness

KUNBUS PiCtory versions 2.5.0 through 2.11.1 have an authentication bypass vulnerability where a remote attacker can bypass authentication to get access due to a path traversal...

9.8CVSS0.22202EPSS
Exploits0References2
Cvelist
Cvelist
•added 2025/05/01 5:20 p.m.•71 views

CVE-2025-46565 Vite's server.fs.deny bypassed with /. for files under project root

Vite is a frontend tooling framework for javascript. Prior to versions 6.3.4, 6.2.7, 6.1.6, 5.4.19, and 4.5.14, the contents of files in the project root that are denied by a file matching pattern can be returned to the browser. Only apps explicitly exposing the Vite dev server to the network usi...

6CVSS0.01077EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/02/11 5:58 p.m.•71 views

CVE-2025-21381 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS0.01113EPSS
Exploits0References1
Cvelist
Cvelist
•added 2025/01/03 9:31 p.m.•71 views

CVE-2024-13129 Roxy-WI roxy.py action_service os command injection

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by this vulnerability is the function actionservice of the file app/modules/roxywi/roxy.py. The manipulation of the argument action/service leads to os command injection. The attack can be launched...

9CVSS0.17797EPSS
Exploits0References8
Cvelist
Cvelist
•added 2024/11/13 2:2 a.m.•71 views

CVE-2024-10038 WP-Strava <= 2.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

6.1CVSS0.00345EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/11/11 5:52 a.m.•71 views

CVE-2024-51793 WordPress RepairBuddy plugin <= 3.8115 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Ateeq Rafeeq RepairBuddy computer-repair-shop allows Upload a Web Shell to a Web Server.This issue affects RepairBuddy: from n/a through = 3.8115...

10CVSS0.01794EPSS
Exploits4References1
Cvelist
Cvelist
•added 2024/10/31 4:15 p.m.•71 views

CVE-2024-51478 Use of a Broken or Risky Cryptographic Algorithm in YesWiki

YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered and used to reset the password of any account. This issue is fixed in 4.4.5...

9.9CVSS0.00368EPSS
Exploits1References3
Cvelist
Cvelist
•added 2024/09/10 6:50 p.m.•71 views

CVE-2024-45409 The Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector

The Ruby SAML library is for implementing the client side of a SAML authorization. Ruby-SAML in = 12.2 and 1.13.0 = 1.16.0 does not properly verify the signature of the SAML Response. An unauthenticated attacker with access to any signed saml document by the IdP can thus forge a SAML...

10CVSS0.10684EPSS
Exploits3References4
Cvelist
Cvelist
•added 2024/09/10 4:54 p.m.•71 views

CVE-2024-43470 Azure Network Watcher VM Agent Elevation of Privilege Vulnerability

...

7.3CVSS0.00855EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/08/28 12:0 a.m.•71 views

CVE-2024-42905

Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file...

0.15482EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/25 9:17 a.m.•71 views

CVE-2024-37084 CVE-2024-37084: Remote code execution in Spring Cloud Data Flow

In Spring Cloud Data Flow versions prior to 2.11.4, a malicious user who has access to the Skipper server api can use a crafted upload request to write an arbitrary file to any location on the file system which could lead to compromising the server...

9.8CVSS0.35211EPSS
Exploits4References1
Cvelist
Cvelist
•added 2024/07/22 5:22 p.m.•71 views

CVE-2024-40634 Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. This report details a security vulnerability in Argo CD, where an unauthenticated attacker can send a specially crafted large JSON payload to the /api/webhook endpoint, causing excessive memory allocation that leads to...

7.5CVSS0.01392EPSS
Exploits1References4
Cvelist
Cvelist
•added 2024/07/21 9:0 a.m.•71 views

CVE-2024-6947 Flute CMS Notification ContentParser.php replaceContent code injection

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been rated as critical. This issue affects the function replaceContent of the file app/Core/Support/ContentParser.php of the component Notification Handler. The manipulation leads to code injection. The attack may be initiated remotely...

5.8CVSS0.00593EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/07/16 10:39 p.m.•71 views

CVE-2024-21147

...

7.4CVSS0.01136EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/06/19 7:48 p.m.•71 views

CVE-2024-38355 Unhandled 'error' event in socket.io

Socket.IO is an open source, real-time, bidirectional, event-based, communication framework. A specially crafted Socket.IO packet can trigger an uncaught exception on the Socket.IO server, thus killing the Node.js process. This issue is fixed by commit 15af22fc22 which has been included in...

7.3CVSS0.0069EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/05/21 5:29 p.m.•71 views

CVE-2024-22274

The vCenter Server contains an authenticated remote code execution vulnerability. A malicious actor with administrative privileges on the vCenter appliance shell may exploit this issue to run arbitrary commands on the underlying operating system...

7.2CVSS7.5AI score0.02488EPSS
Exploits3References1
Cvelist
Cvelist
•added 2024/04/12 12:36 p.m.•71 views

CVE-2024-31289 WordPress Hello Elementor theme <= 3.0.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Elementor Hello Elementor.This issue affects Hello Elementor: from n/a through 3.0.0...

4.3CVSS5AI score0.002EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/03/29 12:0 a.m.•71 views

CVE-2024-28960

An issue was discovered in Mbed TLS 2.18.0 through 2.28.x before 2.28.8 and 3.x before 3.6.0, and Mbed Crypto. The PSA Crypto API mishandles shared memory...

7.6AI score0.0084EPSS
Exploits0References5
Cvelist
Cvelist
•added 2024/03/15 12:38 p.m.•71 views

CVE-2023-6725 Tripleo-ansible: bind keys are world readable

An access-control flaw was found in the OpenStack Designate component where private configuration information including access keys to BIND were improperly made world readable. A malicious attacker with access to any container could exploit this flaw to access sensitive information...

5.5CVSS6.4AI score0.00203EPSS
Exploits0References4
Cvelist
Cvelist
•added 2024/02/14 12:0 a.m.•71 views

CVE-2023-50868

The Closest Encloser Proof aspect of the DNS protocol in RFC 5155 when RFC 9276 guidance is skipped allows remote attackers to cause a denial of service CPU consumption for SHA-1 computations via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification...

7.7AI score0.81729EPSS
Exploits1References24
Cvelist
Cvelist
•added 2024/01/10 12:0 a.m.•71 views

CVE-2023-51126

Command injection vulnerability in /usr/www/res.php in FLIR AX8 up to 1.46.16 allows attackers to run arbitrary commands via the value parameter. NOTE: The vendor has stated that with the introduction of firmware version 1.49.16 Jan 2023 the FLIR AX8 should no longer be affected by the...

9.9AI score0.31097EPSS
Exploits1References1
Cvelist
Cvelist
•added 2024/01/08 1:20 p.m.•71 views

CVE-2024-21645 pyLoad Log Injection

pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in pyload allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by pyload. Forged or otherwise, corrupted log files can be used to cover an...

5.3CVSS5.7AI score0.24513EPSS
Exploits1References2
Cvelist
Cvelist
•added 2023/08/31 5:59 p.m.•71 views

CVE-2023-41045 Insecure source port usage for DNS queries in Graylog

Graylog is a free and open log management platform. Graylog makes use of only one single source port for DNS queries. Graylog binds a single socket for outgoing DNS queries and while that socket is bound to a random port number it is never changed again. This goes against recommended practice sin...

3.7CVSS5.4AI score0.00295EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/08/30 5:39 p.m.•71 views

CVE-2023-40582 Command Injection Vulnerability in find-exec

find-exec is a utility to discover available shell commands. Versions prior to 1.0.3 did not properly escape user input and are vulnerable to Command Injection via an attacker controlled parameter. As a result, attackers may run malicious shell commands in the context of the running process. This...

9.8CVSS10AI score0.01489EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/06/13 12:0 a.m.•71 views

CVE-2023-33695

Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile function at /core/io/FileUtil.java...

7AI score0.00244EPSS
Exploits1References1
Cvelist
Cvelist
•added 2023/04/18 9:32 p.m.•71 views

CVE-2023-30608 Parser contains an inefficient regular expression in sqlparse

sqlparse is a non-validating SQL parser module for Python. In affected versions the SQL parser contains a regular expression that is vulnerable to ReDoS Regular Expression Denial of Service. This issue was introduced by commit e75e358. The vulnerability may lead to Denial of Service DoS. This...

5.5CVSS7.9AI score0.0098EPSS
Exploits0References5
Cvelist
Cvelist
•added 2023/04/13 10:35 p.m.•71 views

CVE-2023-1326 local privilege escalation in apport-cli

A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate...

7.7CVSS8.1AI score0.00874EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/03/14 4:36 a.m.•71 views

CVE-2023-23857 Improper Access Control in SAP NetWeaver AS for Java

Due to missing authentication check, SAP NetWeaver AS for Java - version 7.50, allows an unauthenticated attacker to attach to an open interface and make use of an open naming and directory API to access services which can be used to perform unauthorized operations affecting users and services...

9.9CVSS9.5AI score0.00544EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/02/17 12:0 a.m.•71 views

CVE-2022-45701

Arris TG2482A firmware through 9.1.103GEM9 allow Remote Code Execution RCE via the ping utility feature...

9.2AI score0.42326EPSS
Exploits6References1
Cvelist
Cvelist
•added 2023/01/20 10:49 p.m.•71 views

CVE-2023-22742 libgit2 fails to verify SSH keys by default

libgit2 is a cross-platform, linkable library implementation of Git. When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. Prior versions of libgit2 require the caller to set the certificatecheck field of libgit2's gitremotecallbacks...

5.3CVSS6.1AI score0.0058EPSS
Exploits0References7
Cvelist
Cvelist
•added 2022/11/22 12:0 a.m.•71 views

CVE-2022-38724

Silverstripe silverstripe/framework through 4.11.0, silverstripe/assets through 1.11.0, and silverstripe/asset-admin through 1.11.0 allow XSS...

5.8AI score0.00653EPSS
Exploits1References4
Cvelist
Cvelist
•added 2022/09/07 11:17 p.m.•71 views

CVE-2022-38531

FPT G-97RG6M R4.2.98.035 and G-97RG3 R4.2.43.078 are vulnerable to Remote Command Execution in the ping function...

9.1AI score0.0188EPSS
Exploits1References1
Cvelist
Cvelist
•added 2022/07/17 10:24 p.m.•71 views

CVE-2022-30981

An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution...

9AI score0.01249EPSS
Exploits2References1
Cvelist
Cvelist
•added 2022/06/06 9:15 p.m.•71 views

CVE-2022-31027 Authorization Bypass Through User-Controlled Key when using CILogonOAuthenticator in oauthenticator

OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthenticator is provided by the OAuthenticator package, and lets users log in to a JupyterHub via CILogon. This is primarily used to restrict a JupyterHub only to users of a given institute. The allowedidps...

4.2CVSS6.6AI score0.00434EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/02/01 1:46 a.m.•71 views

CVE-2021-46667

MariaDB before 10.6.5 has a sqllex.cc integer overflow, leading to an application crash...

6.6AI score0.00425EPSS
Exploits1References6
Cvelist
Cvelist
•added 2021/12/22 5:12 p.m.•71 views

CVE-2021-45261

An Invalid Pointer vulnerability exists in GNU patch 2.7 via the anotherhunk function, which causes a Denial of Service...

5.6AI score0.00705EPSS
Exploits1References1
Cvelist
Cvelist
•added 2021/11/08 4:7 a.m.•71 views

CVE-2021-42078

PHP Event Calendar through 2021-11-04 allows persistent cross-site scripting XSS, as demonstrated by the /server/ajax/eventsmanager.php title parameter. This can be exploited by an adversary in multiple ways, e.g., to perform actions on the page in the context of other users, or to deface the sit...

6.3AI score0.00864EPSS
Exploits3References2
Cvelist
Cvelist
•added 2021/07/13 9:33 p.m.•71 views

CVE-2020-19721

A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service DOS...

6.7AI score0.01166EPSS
Exploits1References2
Cvelist
Cvelist
•added 2021/03/11 3:5 a.m.•71 views

CVE-2021-21364 Generated Code Contains Local Information Disclosure Vulnerability

swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger definition. In swagger-codegen before version 2.4.19, on Unix-Like systems, the system temporary...

5.3CVSS6.4AI score0.00282EPSS
Exploits0References2
Cvelist
Cvelist
•added 2020/06/10 5:27 p.m.•71 views

CVE-2020-2026 Kata Containers - Guests can trick the kata-runtime into mounting the container image on any host path

A malicious guest compromised before a container creation e.g. a malicious guest image or a guest running multiple containers can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects: Kata...

7.8CVSS8.8AI score0.00475EPSS
Exploits0References10
Cvelist
Cvelist
•added 2020/01/06 7:45 a.m.•71 views

CVE-2019-15984 Cisco Data Center Network Manager SQL Injection Vulnerabilities

Multiple vulnerabilities in the REST and SOAP API endpoints of Cisco Data Center Network Manager DCNM could allow an authenticated, remote attacker to execute arbitrary SQL commands on an affected device. To exploit these vulnerabilities, an attacker would need administrative privileges on the DC...

7.2CVSS8AI score0.46935EPSS
Exploits10References2
Cvelist
Cvelist
•added 2017/01/05 12:0 a.m.•71 views

CVE-2016-10010

sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c...

6.3AI score0.0424EPSS
Exploits2References13
Cvelist
Cvelist
•added 2016/10/25 2:0 p.m.•71 views

CVE-2016-5612

Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML...

5.6AI score0.0336EPSS
Exploits0References9
Cvelist
Cvelist
•added 2015/09/03 10:0 p.m.•71 views

CVE-2015-1299

Use-after-free vulnerability in the shared-timer implementation in Blink, as used in Google Chrome before 45.0.2454.85, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging erroneous timer firing, related to ThreadTimers.cpp and Timer.cpp...

9.1AI score0.01694EPSS
Exploits0References11
Cvelist
Cvelist
•added 2014/10/10 10:0 a.m.•71 views

CVE-2014-3581

The cachemergeheadersout function in modules/cache/cacheutil.c in the modcache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an empty HTTP Content-Type header...

6.5AI score0.13451EPSS
Exploits0References29
Cvelist
Cvelist
•added 2014/04/22 2:0 p.m.•71 views

CVE-2013-4116

lib/npm.js in Node Packaged Modules npm before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives...

6.1AI score0.00372EPSS
Exploits0References8
Cvelist
Cvelist
•added 2014/01/02 9:0 p.m.•71 views

CVE-2013-2119

Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service prevent application start or gain privileges by pre-creating a temporary "config" file in a directory with a predictable name in /tmp/ before it is used by the gem...

6.1AI score0.004EPSS
Exploits0References4
Total number of security vulnerabilities5000