Lucene search
K
CvelistMost viewed

366237 matches found

Cvelist
Cvelist
•added 2026/05/07 8:58 p.m.•69 views

CVE-2026-33111 Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability

...

7.5CVSS0.01135EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/06 6:13 p.m.•69 views

CVE-2026-8001

Use After Free in Printing in Google Chrome on Linux, Mac, ChromeOS prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Low...

0.00178EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/05 8:52 p.m.•69 views

CVE-2026-40068 Claude Code arbitrary code execution via git worktree commondir trust dialog bypass

In versions 2.1.63 through 2.1.83 of Claude Code, the folder trust determination logic used the git worktree commondir file without validating its contents. An attacker could craft a malicious repository with a commondir file pointing to a path the victim had previously trusted, causing Claude Co...

7.7CVSS0.00281EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/05 3:37 a.m.•69 views

CVE-2026-4665 WP Carousel Free <= 2.7.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'data-caption' Attribute

The WP Carousel Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via crafted fancybox data-caption attributes in all versions up to, and including, 2.7.10. This is due to the fancybox-config.js script reading the carousel container's id attribute directly from the DOM to...

6.4CVSS0.00281EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/05/04 8:13 p.m.•69 views

CVE-2026-42238 Unauthenticated Remote Code Execution via Backup Restore in nginx-ui

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint POST /api/restore that is completely unauthenticated during the first 10 minutes after process startup on any fresh installation. An unauthenticated remote attacker can...

9CVSS0.00764EPSS
Exploits1References2
Cvelist
Cvelist
•added 2026/05/04 6:28 p.m.•69 views

CVE-2026-42230 n8n: Open Redirect in MCP OAuth Consent Flow

n8n is an open source workflow automation platform. Prior to versions 1.123.32, 2.17.4, and 2.18.1, the /mcp-oauth/register endpoint accepted OAuth client registrations without authentication, allowing arbitrary redirecturi values to be registered. When a user denies the MCP OAuth consent dialog,...

5.1CVSS0.00181EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/02 5:29 a.m.•69 views

CVE-2026-5112 Gravity Forms <= 2.10.0 - Unauthenticated Stored Cross-Site Scripting via Calculation Product Field in Repeater

The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping of Calculation Product field product names when rendered inside Repeater fields. The validat...

7.2CVSS0.00232EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/04/30 12:0 a.m.•69 views

CVE-2026-40684

In Exim before 4.99.2, on systems using musl libc not glibc, an attacker can crash the connection instance when malformed DNS data is present in PTR records. This is caused by a dnexpand oddity in octal printing...

5.9CVSS0.00362EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/04/06 4:47 p.m.•69 views

CVE-2026-35030 LiteLLM has an authentication bypass via OIDC userinfo cache key collision

LiteLLM is a proxy server AI Gateway to call LLM APIs in OpenAI or native format. Prior to 1.83.0, when JWT authentication is enabled enablejwtauth: true, the OIDC userinfo cache uses token:20 as the cache key. JWT headers produced by the same signing algorithm generate identical first 20...

9.4CVSS0.0049EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/03/30 7:47 a.m.•69 views

CVE-2026-5121 Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing

A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for...

7.5CVSS0.01073EPSS
Exploits0References36
Cvelist
Cvelist
•added 2025/10/16 5:54 p.m.•69 views

CVE-2025-62412 LibreNMS alert-rules Cross-Site Scripting Vulnerability

LibreNMS is a community-based GPL-licensed network monitoring system. The alert rule name in the Alerts Alert Rules page is not properly sanitized, and can be used to inject HTML code. This vulnerability is fixed in 25.10.0...

3.8CVSS0.00258EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/08/09 2:2 a.m.•70 views

CVE-2025-55009 AuthKit: Sensitive auth data rendered in HTML

The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix. In versions 0.14.1 and below, @workos-inc/authkit-remix exposed sensitive authentication artifacts — specifically sealedSession and accessToken — by returning the...

7.1CVSS0.00364EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/03/06 12:0 a.m.•69 views

CVE-2025-26699

An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2.20. The django.utils.text.wrap method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings...

5CVSS0.00766EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/02/24 7:52 p.m.•69 views

CVE-2025-26529 Stored XSS risk in admin live log

Description information displayed in the site administration live log required additional sanitizing to prevent a stored XSS risk...

8.3CVSS0.00478EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/02/14 12:0 a.m.•69 views

CVE-2025-26519

musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8...

8.1CVSS0.00347EPSS
Exploits0References3
Cvelist
Cvelist
•added 2025/01/02 9:16 a.m.•69 views

CVE-2024-56036 WordPress odPhotogallery plugin <= 0.5.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ondrej Donek odPhotogallery od-photogallery-plugin allows Reflected XSS.This issue affects odPhotogallery: from n/a through = 0.5.3...

7.1CVSS0.00254EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/12/17 8:50 p.m.•69 views

CVE-2024-12539 Elasticsearch Incorrect Authorization

An issue was discovered where improper authorization controls affected certain queries that could allow a malicious actor to circumvent Document Level Security in Elasticsearch and get access to documents that their roles would normally not allow...

6CVSS0.004EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/12/06 3:0 p.m.•69 views

CVE-2024-54141 phpMyFAQ Generates an Error Message Containing Sensitive Information if database server is not available

phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases. Prior to 4.0.0, phpMyFAQ exposes the database ie postgreSQL server's credential when connection to DB fails. This vulnerability is fixed in 4.0.0...

8.6CVSS0.00487EPSS
Exploits1References2
Cvelist
Cvelist
•added 2024/11/15 3:36 p.m.•69 views

CVE-2022-20685 Multiple Cisco Products Snort Modbus Denial of Service Vulnerability

A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit th...

7.5CVSS0.01386EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/11/13 2:2 a.m.•69 views

CVE-2024-10038 WP-Strava <= 2.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting

The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

6.1CVSS0.00345EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/08/28 12:0 a.m.•69 views

CVE-2024-42905

Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file...

0.15482EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/07/29 4:20 p.m.•69 views

CVE-2024-6748 SQL Injection

Zohocorp ManageEngine OpManager, OpManager Plus, OpManager MSP and RMM versions 128317 and below are vulnerable to authenticated SQL injection in the URL monitoring...

8.3CVSS0.23784EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/07/16 10:39 p.m.•69 views

CVE-2024-21147

...

7.4CVSS0.01136EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/06/19 2:53 p.m.•69 views

CVE-2024-34443 WordPress Slider Revolution plugin < 6.7.11 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in ThemePunch OHG Slider Revolution allows Stored XSS.This issue affects Slider Revolution: from n/a before 6.7.11...

5.9CVSS0.00283EPSS
Exploits1References2
Cvelist
Cvelist
•added 2024/05/07 8:31 a.m.•69 views

CVE-2024-4345 Startklar Elementor Addons <= 1.7.13 - Unauthenticated Arbitrary File Upload

The Startklar Elementor Addons plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'process' function in the 'startklarDropZoneUploadProcess' class in versions up to, and including, 1.7.13. This makes it possible for unauthenticated attacke...

9.8CVSS10AI score0.01444EPSS
Exploits0References3
Cvelist
Cvelist
•added 2024/05/03 2:13 a.m.•69 views

CVE-2023-42116 Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability

Exim SMTP Challenge Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling o...

8.1CVSS8.3AI score0.03158EPSS
Exploits2References1
Cvelist
Cvelist
•added 2024/04/29 1:2 p.m.•69 views

CVE-2024-27322

Deserialization of untrusted data can occur in the R statistical programming language, on any version starting at 1.4.0 up to and not including 4.4.0, enabling a maliciously crafted RDS R Data Serialization formatted file or R package to run arbitrary code on an end user’s system when interacted...

8.8CVSS8.9AI score0.23618EPSS
Exploits0References6
Cvelist
Cvelist
•added 2024/04/03 12:0 a.m.•69 views

CVE-2023-35812

An issue was discovered in the Amazon Linux packages of OpenSSH 7.4 for Amazon Linux 1 and 2, because of an incomplete fix for CVE-2019-6111 within these specific packages. The fix had only covered cases where an absolute path is passed to scp. When a relative path is used, there is no verificati...

5.3CVSS6.5AI score0.00411EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/03/22 12:55 p.m.•69 views

CVE-2024-29943

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox 124.0.1...

5.8AI score0.22935EPSS
Exploits2References3
Cvelist
Cvelist
•added 2024/03/11 5:56 p.m.•69 views

CVE-2023-6444 Seriously Simple Podcasting < 3.0.0 - Unauthenticated Administrator Email Disclosure

The Seriously Simple Podcasting WordPress plugin before 3.0.0 discloses the Podcast owner's email address which by default is the admin email address via an unauthenticated crafted request...

6.9AI score0.02463EPSS
Exploits3References1
Cvelist
Cvelist
•added 2024/02/05 8:45 p.m.•69 views

CVE-2023-50782 Python-cryptography: bleichenbacher timing oracle attack against rsa decryption - incomplete fix for cve-2020-25659

A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data...

7.5CVSS6.6AI score0.01118EPSS
Exploits0References2
Cvelist
Cvelist
•added 2024/01/29 10:41 p.m.•69 views

CVE-2024-23829 aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Security-sensitive parts of the Python HTTP parser retained minor differences in allowable character sets, that must trigger error handling to robustly match frame boundaries of proxies in order to protect against...

6.5CVSS7.3AI score0.0102EPSS
Exploits1References5
Cvelist
Cvelist
•added 2023/12/24 12:0 a.m.•69 views

CVE-2023-51766

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports . but...

5.8AI score0.01072EPSS
Exploits1References20
Cvelist
Cvelist
•added 2023/09/12 7:57 p.m.•69 views

CVE-2023-41331 SOFARPC Remote Command Execution (RCE) Vulnerability

SOFARPC is a Java RPC framework. Versions prior to 5.11.0 are vulnerable to remote command execution. Through a carefully crafted payload, an attacker can achieve JNDI injection or system command execution. In the default configuration of the SOFARPC framework, a blacklist is used to filter out...

9.8CVSS10AI score0.01344EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/05/11 8:51 p.m.•69 views

CVE-2023-31146 Vyper vulnerable to OOB DynArray access when array is on both LHS and RHS of an assignment

Vyper is a Pythonic smart contract language for the Ethereum virtual machine. Prior to version 0.3.8, during codegen, the length word of a dynarray is written before the data, which can result in out-of-bounds array access in the case where the dynarray is on both the lhs and rhs of an assignment...

7.5CVSS9.5AI score0.01241EPSS
Exploits1References2
Cvelist
Cvelist
•added 2023/04/25 12:0 a.m.•69 views

CVE-2022-40723 Configuration-based MFA Bypass in PingID RADIUS PCV.

The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations...

6.5CVSS6.9AI score0.00517EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/04/11 7:13 p.m.•69 views

CVE-2023-23384 Microsoft SQL Server Remote Code Execution Vulnerability

...

7.3CVSS7.7AI score0.00871EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/02/15 2:58 p.m.•69 views

CVE-2023-25578 Starlite DoS vulnerability when parsing multipart request body

Starlite is an Asynchronous Server Gateway Interface ASGI framework. Prior to version 1.5.2, the request body parsing in starlite allows a potentially unauthenticated attacker to consume a large amount of CPU time and RAM. The multipart body parser processes an unlimited number of file parts and ...

7.5CVSS7.7AI score0.01004EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/01/20 10:49 p.m.•69 views

CVE-2023-22742 libgit2 fails to verify SSH keys by default

libgit2 is a cross-platform, linkable library implementation of Git. When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. Prior versions of libgit2 require the caller to set the certificatecheck field of libgit2's gitremotecallbacks...

5.3CVSS6.1AI score0.0058EPSS
Exploits0References7
Cvelist
Cvelist
•added 2022/12/27 9:13 p.m.•69 views

CVE-2021-4238 Insufficient randomness in github.com/Masterminds/goutils

Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by...

9.3AI score0.01319EPSS
Exploits1References2
Cvelist
Cvelist
•added 2022/11/11 3:49 p.m.•69 views

CVE-2022-36380

Uncontrolled search path in the installer software for some Intelr NUC Kit Wireless Adapter drivers for Windows 10 before version 22.40 may allow an authenticated user to potentially enable escalation of privilege via local access...

6.7CVSS7.6AI score0.00169EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/09/21 10:15 a.m.•69 views

CVE-2022-38177 Memory leak in ECDSA DNSSEC verification code

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources...

7.5CVSS7.8AI score0.02299EPSS
Exploits0References9
Cvelist
Cvelist
•added 2022/09/13 6:41 p.m.•69 views

CVE-2022-30170 Windows Credential Roaming Service Elevation of Privilege Vulnerability

...

7.3CVSS8.5AI score0.0147EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/05/19 5:20 p.m.•69 views

CVE-2021-32934 ThroughTek P2P SDK - Cleartext Transmission of Sensitive Information

The affected ThroughTek P2P products SDKs using versions before 3.1.5, any versions with nossl tag, device firmware not using AuthKey for IOTC conneciton, firmware using AVAPI module without enabling DTLS mechanism, and firmware using P2PTunnel or RDT module do not sufficiently protect data...

9.1CVSS9.1AI score0.00607EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/02/18 7:51 p.m.•69 views

CVE-2022-24052

MariaDB CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7CVSS8.3AI score0.00689EPSS
Exploits0References6
Cvelist
Cvelist
•added 2021/12/22 5:12 p.m.•69 views

CVE-2021-45261

An Invalid Pointer vulnerability exists in GNU patch 2.7 via the anotherhunk function, which causes a Denial of Service...

5.6AI score0.00705EPSS
Exploits1References1
Cvelist
Cvelist
•added 2021/12/07 10:55 p.m.•69 views

CVE-2021-44420

In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths...

7.5AI score0.02295EPSS
Exploits0References6
Cvelist
Cvelist
•added 2021/12/06 3:55 p.m.•69 views

CVE-2021-24917 WPS Hide Login < 1.9.1 - Protection Bypass with Referer-Header

The WPS Hide Login WordPress plugin before 1.9.1 has a bug which allows to get the secret login page by setting a random referer string and making a request to /wp-admin/options.php as an unauthenticated user...

7.8AI score0.71532EPSS
Exploits5References2
Cvelist
Cvelist
•added 2021/10/11 10:45 a.m.•69 views

CVE-2021-24683 Weather Effect < 1.3.4 - CSRF to Stored Cross-Site Scripting

The Weather Effect WordPress plugin before 1.3.4 does not have any CSRF checks in place when saving its settings, and do not validate or escape them, which could lead to Stored Cross-Site Scripting issue...

5.6AI score0.00399EPSS
Exploits2References1
Cvelist
Cvelist
•added 2021/03/15 5:3 p.m.•69 views

CVE-2021-25667

A vulnerability has been identified in RUGGEDCOM RM1224 All versions = V4.3 and = V4.3 and = V4.3 and = V2.0 and V2.1.3, SCALANCE XB-200 All versions V4.1, SCALANCE XC-200 All versions V4.1, SCALANCE XF-200BA All versions V4.1, SCALANCE XM400 All versions V6.2, SCALANCE XP-200 All versions V4.1,...

9.1AI score0.00852EPSS
Exploits0References2
Total number of security vulnerabilities5000