Lucene search
K
CvelistMost viewed

366266 matches found

Cvelist
Cvelist
added 2023/06/20 2:45 p.m.223 views

CVE-2023-2533 PaperCut MF/NG 22.0.10 (Build 65996 2023-03-27) - Remote code execution via CSRF

A Cross-Site Request Forgery CSRF vulnerability has been identified in PaperCut NG/MF, which, under specific conditions, could potentially enable an attacker to alter security settings or execute arbitrary code. This could be exploited if the target is an admin with a current login session...

8.4CVSS9.1AI score0.29246EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/05/03 10:50 a.m.223 views

CVE-2022-30995

Sensitive information disclosure due to improper authentication. The following products are affected: Acronis Cyber Protect 15 Windows, Linux before build 29486, Acronis Cyber Backup 12.5 Windows, Linux before build 16545...

9.3CVSS7.5AI score0.03265EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/08 12:0 a.m.222 views

CVE-2024-45257

A Command Injection issue in the payload build page in BYOB Build Your Own Botnet 2.0 allows attackers to execute arbitrary commands on the server via a crafted build parameter. This occurs in freeze in core/generators.py...

0.03891EPSS
Exploits3References3
Cvelist
Cvelist
added 2024/07/03 12:0 a.m.222 views

CVE-2024-39844

In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...

0.03862EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/02/08 7:1 p.m.222 views

CVE-2023-0286 X.400 address type confusion in X.509 GeneralName

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrectly specified the type of the x400Address field as ASN1TYPE. This field is subsequentl...

7.7AI score0.59501EPSS
Exploits0References7
Cvelist
Cvelist
added 2022/12/27 12:0 a.m.222 views

CVE-2022-46764

A SQL injection issue in the web API in TrueConf Server 5.2.0.10225 fixed in 5.2.6.10025 allows remote unauthenticated attackers to execute arbitrary SQL commands, ultimately leading to remote code execution...

9.8CVSS10AI score0.02067EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/07/19 8:15 p.m.222 views

CVE-2022-31144 Potential heap overflow in Redis

Redis is an in-memory database that persists on disk. A specially crafted XAUTOCLAIM command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. This problem affects versions on the 7.x branch prior to 7.0.4. The patch is released in version...

7CVSS9.1AI score0.02383EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/24 12:16 a.m.221 views

CVE-2026-22739 Spring Cloud Config Profile Substitution Can Allow Unintended Access To Files And Enable SSRF Attacks

Vulnerability in Spring Cloud when substituting the profile parameter from a request made to the Spring Cloud Config Server configured to the native file system as a backend, because it was possible to access files outside of the configured search directories.This issue affects Spring Cloud: from...

8.6CVSS0.0122EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/19 1:43 p.m.221 views

CVE-2025-71257 BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Authentication Bypass

BMC FootPrints ITSM versions 20.20.02 through 20.24.01.001 contain an authentication bypass vulnerability due to improper enforcement of security filters on restricted REST API endpoints and servlets. Unauthenticated remote attackers can bypass access controls to invoke restricted functionality a...

7.3CVSS0.044EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/11/14 8:32 p.m.221 views

CVE-2023-5528 Kubernetes - Windows nodes - Insufficient input sanitization in in-tree storage plugin leads to privilege escalation

A security issue was discovered in Kubernetes where a user that can create pods and persistent volumes on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they are using an in-tree storage plugin for Windows nodes...

7.2CVSS8.9AI score0.03578EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/07 12:0 a.m.221 views

CVE-2023-2442

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A specially crafted merge request could lead to a stored XSS on the client side which allows attackers to perform arbitrary actions on behalf of...

8.7CVSS8.2AI score0.96058EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/08/29 12:0 a.m.221 views

CVE-2022-1043

A flaw was found in the Linux kernel’s iouring implementation. This flaw allows an attacker with a local account to corrupt system memory, crash the system or escalate privileges...

8.6AI score0.03718EPSS
Exploits4References5
Cvelist
Cvelist
added 2026/03/23 8:25 p.m.219 views

CVE-2026-23482 Blinko: Unauthorized Arbitrary File Read - /api/file/temp

Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, the file server endpoint does not perform permission checks on the temp/ path and does not filter path traversal sequences, allowing unauthorized attackers to read arbitrary files on the server. When scheduled backup tasks...

8.2CVSS0.01523EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/03/31 4:0 p.m.219 views

CVE-2025-3002 Digital China DCME-520 mon_merge_stat_hist.php os command injection

A vulnerability, which was classified as critical, has been found in Digital China DCME-520 up to 20250320. This issue affects some unknown processing of the file /usr/local/WWW/function/audit/newstatistics/monmergestathist.php. The manipulation of the argument typename leads to os command...

7.5CVSS0.18662EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/08/05 12:0 a.m.219 views

CVE-2022-37434

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call...

10AI score0.16004EPSS
Exploits1References27
Cvelist
Cvelist
added 2023/06/14 12:0 a.m.218 views

CVE-2023-34756

bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the cid parameter at admin/index.php?mode=settings&page=charset&action=edit...

10AI score0.04228EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/02 4:57 p.m.217 views

CVE-2026-35388

OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions...

2.5CVSS0.0013EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/06/14 12:0 a.m.217 views

CVE-2023-34751

bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the gid parameter at admin/index.php?mode=user&page=groups&action=edit...

10AI score0.04228EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/01/24 12:0 a.m.217 views

CVE-2022-3572

A cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions from 13.5 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2. It was possible to exploit a vulnerability in setting the Jira Connect integration which could lead to a reflected XSS that allowed...

9.3CVSS8.6AI score0.01074EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/07/15 12:10 p.m.217 views

CVE-2022-31097 Stored XSS in Grafana's Unified Alerting

Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored cross-site scripting via the Unified Alerting feature of Grafana. An attacker can exploit this vulnerability to escalate...

7.3CVSS7.8AI score0.68603EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/11 2:31 p.m.216 views

CVE-2024-23110

A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0 all versions allows attacker to execute unauthorized code or commands via specially crafted commands...

7.8CVSS0.00281EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/23 7:2 p.m.216 views

CVE-2022-22629

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8AI score0.03668EPSS
Exploits0References6
Cvelist
Cvelist
added 2020/07/24 12:0 a.m.216 views

CVE-2020-15778

scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a...

7.9AI score0.12996EPSS
Exploits6References6
Cvelist
Cvelist
added 2025/10/31 7:26 a.m.215 views

CVE-2025-10897 WooCommerce Designer Pro <= 1.9.28 - Unauthenticated Arbitrary File Read

The WooCommerce Designer Pro theme for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 1.9.28. This makes it possible for unauthenticated attackers to read arbitrary files on the server, which can expose DB credentials when the wp-config.php file is read...

8.6CVSS0.01844EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/09 12:0 a.m.215 views

CVE-2024-48956

Serviceware Processes 6.0 through 7.3 before 7.4 allows attackers without valid authentication to send a specially crafted HTTP request to a service endpoint resulting in remote code execution...

9.8CVSS0.00862EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/19 5:37 a.m.213 views

CVE-2024-6132 Pexels: Free Stock Photos <= 1.2.2 - Authenticated (Contributor+) Arbitrary File Upload

The Pexels: Free Stock Photos plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'pexelsfspimagesoptionsvalidate' function in all versions up to, and including, 1.2.2. This makes it possible for authenticated attackers, with contributor-level a...

8.8CVSS0.01371EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/14 12:0 a.m.213 views

CVE-2023-34754

bloofox v0.5.2.1 was discovered to contain a SQL injection vulnerability via the pid parameter at admin/index.php?mode=settings&page=plugins&action=edit...

10AI score0.03449EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/12/09 11:24 p.m.212 views

CVE-2024-55636 Drupal core - Less critical - Gadget chain - SA-CORE-2024-006

Deserialization of Untrusted Data vulnerability in Drupal Core allows Object Injection.This issue affects Drupal Core: from 8.0.0 before 10.2.11, from 10.3.0 before 10.3.9, from 11.0.0 before 11.0.8. Drupal core contains a chain of methods that is exploitable when an insecure deserialization...

0.00904EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/09 12:0 a.m.212 views

CVE-2023-0050

An issue has been discovered in GitLab affecting all versions starting from 13.7 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. A specially crafted Kroki diagram could lead to a stored XSS on the client side which allows attackers to...

8.7CVSS8.2AI score0.9242EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/07/04 8:7 p.m.212 views

CVE-2022-34918

An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nftseteleminit leading to a buffer overflow could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. The attacker can obtain root access, but must start with an...

7.8AI score0.05496EPSS
Exploits10References10
Cvelist
Cvelist
added 2026/01/26 5:6 p.m.211 views

CVE-2026-21509 Microsoft Office Security Feature Bypass Vulnerability

...

7.8CVSS0.72152EPSS
Exploits12References1
Cvelist
Cvelist
added 2022/04/13 5:5 p.m.211 views

CVE-2022-22955

VMware Workspace ONE Access has two authentication bypass vulnerabilities CVE-2022-22955 & CVE-2022-22956 in the OAuth2 ACS framework. A malicious actor may bypass the authentication mechanism and execute any operation due to exposed endpoints in the authentication framework...

10AI score0.50694EPSS
Exploits5References1
Cvelist
Cvelist
added 2022/03/25 12:0 a.m.211 views

CVE-2022-0435

A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges...

9.2AI score0.67994EPSS
Exploits2References3
Cvelist
Cvelist
added 2022/03/07 12:0 a.m.211 views

CVE-2022-0847

A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copypagetoiterpipe and pushpipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cach...

7.8AI score0.89063EPSS
Exploits100References10
Cvelist
Cvelist
added 2025/03/10 4:44 p.m.210 views

CVE-2025-24813 Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT

Path Equivalence: 'file.Name' Internal Dot leading to Remote Code Execution and/or Information disclosure and/or malicious content added to uploaded files via write enabled Default Servlet in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.2, from 10.1.0-M1 through...

0.99945EPSS
Exploits47References1
Cvelist
Cvelist
added 2022/07/01 3:50 p.m.210 views

CVE-2022-2185

A critical issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 where an authenticated user authorized to import projects could import a maliciously crafted project leading to remote code execution...

9.9CVSS9.6AI score0.76884EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/24 10:56 p.m.209 views

CVE-2025-46272 Planet Technology Network Products OS Command Injection

WGS-80HPT-V2 and WGS-4215-8T2S are vulnerable to a command injection attack that could allow an unauthenticated attacker to execute OS commands on the host system...

9.3CVSS0.01419EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/22 4:12 p.m.209 views

CVE-2024-5443 Remote Code Execution via Path Traversal in parisneo/lollms

CVE-2024-4320 describes a vulnerability in the parisneo/lollms software, specifically within the ExtensionBuilder.buildextension function. The vulnerability arises from the /mountextension endpoint, where a path traversal issue allows attackers to navigate beyond the intended directory structure...

9.8CVSS0.34354EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/06/14 2:57 a.m.209 views

CVE-2024-3080 ASUS Router - Improper Authentication

Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device...

9.8CVSS0.43456EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/17 11:38 a.m.209 views

CVE-2022-32276

Grafana 8.4.3 allows unauthenticated access via for example a /dashboard/snapshot/?orgId=0 URI. NOTE: the vendor considers this a UI bug, not a vulnerability...

7.8AI score0.03487EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/01/31 5:48 p.m.209 views

CVE-2021-42631

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below deserializes attacker controlled leading to pre-auth remote code execution...

8.6AI score0.0612EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/06/14 4:36 a.m.208 views

CVE-2024-4936 Canto <= 3.0.8 - Unauthenticated Remote File Inclusion

The Canto plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and including, 3.0.8 via the abspath parameter. This makes it possible for unauthenticated attackers to include remote files on the server, resulting in code execution. This required allowurlinclude to be...

9.8CVSS0.01027EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/04/25 11:2 a.m.208 views

CVE-2024-2434 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab

An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 prior to 16.9.6, 16.10 prior to 16.10.4, and 16.11 prior to 16.11.1 where path traversal could lead to DoS and restricted file read...

8.5CVSS8.4AI score0.22889EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/11/11 12:0 a.m.208 views

CVE-2002-20001

The Diffie-Hellman Key Agreement Protocol allows remote attackers from the client side to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a DHEat or DHEater attack. The client needs very little CPU resources...

7.5AI score0.23061EPSS
Exploits1References13
Cvelist
Cvelist
added 2024/06/25 11:53 p.m.207 views

CVE-2024-38526 pdoc embeds link to malicious CDN if math mode is enabled

pdoc provides API Documentation for Python Projects. Documentation generated with pdoc --math linked to JavaScript files from polyfill.io. The polyfill.io CDN has been sold and now serves malicious code. This issue has been fixed in pdoc 14.5.1...

7.2CVSS0.03832EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/14 4:0 a.m.207 views

CVE-2024-27172 Remote Code Execution

Remote Command program allows an attacker to get Remote Code Execution. As for the affected products/models/versions, see the reference URL...

9.8CVSS0.26811EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/16 3:31 p.m.207 views

CVE-2024-4956 Nexus Repository 3 - Path Traversal

Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files. Fixed in version 3.68.1...

7.5CVSS7.7AI score0.18245EPSS
Exploits16References1
Cvelist
Cvelist
added 2023/12/18 12:0 a.m.207 views

CVE-2023-48795

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted from the extension negotiation message, and a client and server may consequently end up with a connecti...

6.8AI score0.93305EPSS
Exploits4References118
Cvelist
Cvelist
added 2023/12/18 10:13 p.m.206 views

CVE-2023-49155 WordPress Button Generator – easily Button Builder Plugin <= 2.3.8 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Wow-Company Button Generator – easily Button Builder.This issue affects Button Generator – easily Button Builder: from n/a through 2.3.8...

4.3CVSS8.9AI score0.00294EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/06 6:29 p.m.206 views

CVE-2022-32275

Grafana 8.4.3 allows reading files via for example a /dashboard/snapshot/%7B%7Bconstructor.constructor'/.. /.. /.. /.. /.. /.. /.. /.. /etc/passwd URI. NOTE: the vendor's position is that there is no vulnerability; this request yields a benign error page, not /etc/passwd content...

7.7AI score0.08606EPSS
Exploits1References6
Total number of security vulnerabilities5000