Lucene search
K
CvelistMost viewed

364882 matches found

Cvelist
Cvelist
added 2025/04/15 7:22 p.m.58 views

CVE-2025-32445 Users can gain privileged access to the host system and cluster with EventSource and Sensor CR

Argo Events is an event-driven workflow automation framework for Kubernetes. A user with permission to create/modify EventSource and Sensor custom resources can gain privileged access to the host system and cluster, even without having direct administrative privileges. The EventSource and Sensor...

9.9CVSS0.00724EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/12 11:41 p.m.58 views

CVE-2025-2814 Crypt::CBC versions between 1.21 and 3.05 for Perl may use insecure rand() function for cryptographic functions

Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. This issue affects operating systems where "/dev/urandom'" is unavailable. In that case, Crypt::CBC will fallback to...

0.00176EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/28 2:42 p.m.58 views

CVE-2025-29928 authentik's deletion of sessions did not revoke sessions when using database session storage

authentik is an open-source identity provider. Prior to versions 2024.12.4 and 2025.2.3, when authentik was configured to use the database for session storage which is a non-default setting, deleting sessions via the Web Interface or the API would not revoke the session and the session holder wou...

8CVSS0.00364EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/06 4:29 p.m.58 views

CVE-2025-0337 Authorization bypass in Now Platform

ServiceNow has addressed an authorization bypass vulnerability that was identified in the Washington release of the Now Platform. This vulnerability, if exploited, potentially could enable an authenticated user to access unauthorized data stored within the Now Platform that the user otherwise wou...

7.1CVSS0.0036EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/05 12:0 a.m.58 views

CVE-2025-27663

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Weak Password Encryption / Encoding OVE-20230524-0007...

0.00353EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/28 9:0 p.m.58 views

CVE-2025-27410 PwnDoc Arbitrary File Write to RCE using Path Traversal in backup restore as admin

PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable to path traversal in the TAR entry's name, allowing an attacker to overwrite any file on the system with their content. By overwriting an included .js file and restarting the...

6.5CVSS0.01934EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/14 7:24 p.m.58 views

CVE-2025-25296 Label Studio allows Cross-Site Scripting (XSS) via GET request to `/projects/upload-example` endpoint

Label Studio is an open source data labeling tool. Prior to version 1.16.0, Label Studio's /projects/upload-example endpoint allows injection of arbitrary HTML through a GET request with an appropriately crafted labelconfig query parameter. By crafting a specially formatted XML label config with...

6.1CVSS0.01778EPSS
Exploits2References2
Cvelist
Cvelist
added 2025/01/09 8:21 p.m.58 views

CVE-2024-13297 Eloqua - Moderately critical - Arbitrary PHP code execution - SA-CONTRIB-2024-063

Deserialization of Untrusted Data vulnerability in Drupal Eloqua allows Object Injection.This issue affects Eloqua: from 7.X- before 7.X-1.15...

0.00392EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/14 2:51 p.m.58 views

CVE-2022-2232 Keycloak: ldap injection on username input

A flaw was found in the Keycloak package. This flaw allows an attacker to utilize an LDAP injection to bypass the username lookup or potentially perform other malicious actions...

7.5CVSS0.00642EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/11/12 5:49 p.m.58 views

CVE-2024-8068 Privilege escalation to NetworkService Account access

Privilege escalation to NetworkService Account access in Citrix Session Recording when an attacker is an authenticated user in the same Windows Active Directory domain as the session recording server domain...

5.1CVSS0.01399EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/12 4:44 p.m.58 views

CVE-2024-49369 Icinga 2 has a TLS Certificate Validation Bypass for JSON-RPC and HTTP API Connections

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. The TLS certificate validation in all Icinga 2 versions starting from 2.4.0 was flawed, allowing an attacker to impersonate both trusted clust...

9.8CVSS0.02934EPSS
Exploits1References7
Cvelist
Cvelist
added 2024/11/09 2:7 p.m.58 views

CVE-2024-51613 WordPress TradeMe widgets plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bidbud TradeMe widgets trademe-widget allows Stored XSS.This issue affects TradeMe widgets: from n/a through = 1.2...

6.5CVSS0.00243EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/06 2:0 p.m.58 views

CVE-2024-10915 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection

A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument group leads to os command injection. T...

9.2CVSS0.79135EPSS
Exploits2References5
Cvelist
Cvelist
added 2024/10/08 5:35 p.m.58 views

CVE-2024-43533 Remote Desktop Client Remote Code Execution Vulnerability

...

8.8CVSS0.01475EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/07 8:6 p.m.58 views

CVE-2024-45292 PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via JavaScript hyperlinks

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. \PhpOffice\PhpSpreadsheet\Writer\Html does not sanitize "javascript:" URLs from hyperlink href attributes, resulting in a Cross-Site Scripting vulnerability. This issue has been addressed in release versions 1.29.2,...

5.4CVSS0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/05 3:22 p.m.58 views

CVE-2024-47370 WordPress Author Avatars List/Block plugin <= 2.1.21 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paul Bearne Author Avatars List/Block author-avatars allows Stored XSS.This issue affects Author Avatars List/Block: from n/a through = 2.1.21...

6.5CVSS0.00237EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/04 12:18 p.m.58 views

CVE-2024-47654 No Rate Limiting vulnerability

This vulnerability exists in Shilpi Client Dashboard due to lack of rate limiting and Captcha protection for OTP requests in certain API endpoint. An unauthenticated remote attacker could exploit this vulnerability by sending multiple OTP request through vulnerable API endpoints, which could lead...

7.1CVSS0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/02 3:35 p.m.58 views

CVE-2024-47805

Jenkins Credentials Plugin 1380.va435002fa924 and earlier, except 1371.1373.v4ebfab7161e9, does not redact encrypted values of credentials using the SecretBytes type when accessing item config.xml via REST API or CLI...

0.00591EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/18 5:14 p.m.58 views

CVE-2024-46986 Arbitrary file write leading to RCE in Camaleon CMS

Camaleon CMS is a dynamic and advanced content management system based on Ruby on Rails. An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS is running on...

9.9CVSS0.35461EPSS
Exploits2References5
Cvelist
Cvelist
added 2024/09/10 4:53 p.m.58 views

CVE-2024-37965 Microsoft SQL Server Elevation of Privilege Vulnerability

...

8.8CVSS0.01702EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/20 8:11 p.m.58 views

CVE-2024-41657 GHSL-2024-035: Casdoor CORS misconfiguration

Casdoor is a UI-first Identity and Access Management IAM / Single-Sign-On SSO platform. In Casdoor 1.577.0 and earlier, a logic vulnerability exists in the beego filter CorsFilter that allows any website to make cross domain requests to Casdoor as the logged in user. Due to the a logic error in...

8.1CVSS0.00748EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/12 3:39 p.m.58 views

CVE-2024-42485 Filament Excel Vulnerable to Path Traversal Attack on Export Download Endpoint

Filament Excel enables excel export for Filament admin resources. The export download route /filament-excel/path allowed downloading any file without login when the webserver allows ../ in the URL. Patched with Version v2.3.3...

7.5CVSS0.0057EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/06 2:19 a.m.58 views

CVE-2024-5963 An unquoted executable path exists in Hitachi Device Manager

Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows Device Manager Server component.This issue affects Hitachi Device Manager: before 8.8.7-00...

6.7CVSS0.00165EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/05 2:31 a.m.58 views

CVE-2024-7467 Raisecom MSG1200/MSG2100E/MSG2200/MSG2300 Web Interface list_ip_network.php sslvpn_config_mod os command injection

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified as critical. Affected by this issue is the function sslvpnconfigmod of the file /vpn/listipnetwork.php of the component Web Interface. The manipulation of the argument template/stylenum leads to os...

6.5CVSS0.23402EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/08/01 2:5 p.m.58 views

CVE-2024-39777 Malicious remote can invite itself to an arbitrary local channel

Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6, 9.7.x = 9.7.5 and 9.8.x = 9.8.1 fail to disallow unsolicited invites to expose access to local channels, when shared channels are enabled, which allows a malicious remote to send an invite with the ID of an existing local channel, and that local...

8.7CVSS0.00363EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/25 7:5 p.m.58 views

CVE-2024-1724 snapd allows $HOME/bin symlink

In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An attacker who could convince a user to install a malicious snap whic...

6.3CVSS0.00306EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/07/23 3:46 p.m.58 views

CVE-2024-6714

An issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local attacker to escalate their privilege...

8.8CVSS0.00263EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/07/21 7:29 a.m.58 views

CVE-2024-37489 WordPress Ocean Extra plugin <= 2.2.9 - Authenticated Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in OceanWP Ocean Extra allows Stored XSS.This issue affects Ocean Extra: from n/a through 2.2.9...

6.5CVSS0.00314EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/15 6:21 p.m.58 views

CVE-2024-40631 Cross-site Scripting (XSS) in media embed element when using custom URL parsers in plate media

Plate media is an open source, rich-text editor for React. Editors that use MediaEmbedElement and pass custom urlParsers to the useMediaState hook may be vulnerable to XSS if a custom parser allows javascript:, data: or vbscript: URLs to be embedded. Editors that do not use urlParsers and consume...

8.1CVSS0.00498EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/11 4:27 p.m.58 views

CVE-2024-39549 Junos OS and Junos OS Evolved: Receipt of malformed BGP path attributes leads to a memory leak

A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a malformed BGP Path attribute update which allocates memory used to log the bad path attribute. This memory is not...

8.7CVSS0.00466EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 5:3 p.m.58 views

CVE-2024-38058 BitLocker Security Feature Bypass Vulnerability

...

6.8CVSS0.00929EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 5:2 p.m.58 views

CVE-2024-38024 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

7.2CVSS0.45219EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/09 5:2 p.m.58 views

CVE-2024-38088 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

...

8.8CVSS0.01678EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/02 7:51 p.m.58 views

CVE-2023-24531 Output of "go env" does not sanitize values in cmd/go

Command go env is documented as outputting a shell script containing the Go environment. However, go env doesn't sanitize values, so executing its output as a shell script can cause various bad bahaviors, including executing arbitrary commands or inserting new environment variables. This issue is...

0.00833EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/21 9:39 a.m.58 views

CVE-2024-31890 IBM i privilege escalation

IBM i 7.3, 7.4, and 7.5 product IBM TCP/IP Connectivity Utilities for i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system. IBM X-Force ID: 288171...

7.8CVSS0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/19 2:54 p.m.58 views

CVE-2021-47599 btrfs: use latest_dev in btrfs_show_devname

In the Linux kernel, the following vulnerability has been resolved: btrfs: use latestdev in btrfsshowdevname The test case btrfs/238 reports the warning below: WARNING: CPU: 3 PID: 481 at fs/btrfs/super.c:2509 btrfsshowdevname+0x104/0x1e8 btrfs CPU: 2 PID: 1 Comm: systemd Tainted: G W O...

0.00148EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/12 3:5 p.m.58 views

CVE-2024-37297 WooCommerce has a Cross-Site Scripting Vulnerability in checkout & registration forms

WooCommerce is an open-source e-commerce platform built on WordPress. A vulnerability introduced in WooCommerce 8.8 allows for cross-site scripting. A bad actor can manipulate a link to include malicious HTML & JavaScript content. While the content is not saved to the database, the links may be...

5.4CVSS0.00483EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/11 5:0 p.m.58 views

CVE-2024-35253 Microsoft Azure File Sync Elevation of Privilege Vulnerability

...

4.4CVSS0.00738EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 12:40 p.m.58 views

CVE-2024-5689

In addition to detecting when a user was taking a screenshot XXX, a website was able to overlay the 'My Shots' button that appeared, and direct the user to a replica Firefox Screenshots page that could be used for phishing. This vulnerability affects Firefox 127...

0.00398EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/11 2:1 a.m.58 views

CVE-2024-2473 WPS Hide Login <= 1.9.15.2 - Login Page Disclosure

The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 1.9.15.2. This is due to a bypass that is created when the 'action=postpass' parameter is supplied. This makes it possible for attackers to easily discover any login page that may...

5.3CVSS0.01235EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/06/07 9:33 a.m.58 views

CVE-2023-5424 WS Form LITE <= 1.9.217 - Unauthenticated CSV Injection

The WS Form LITE plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.9.217. This allows unauthenticated attackers to embed untrusted input into exported CSV files, which can result in code execution when these files are downloaded and opened on a local system...

4.7CVSS0.00493EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/21 3:22 p.m.58 views

CVE-2023-52733

...

6.8AI score
Exploits0
Cvelist
Cvelist
added 2024/05/17 8:50 a.m.58 views

CVE-2024-24934 WordPress Elementor plugin <= 3.19.0 - Arbitrary File Deletion and Phar Deserialization vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0...

8.5CVSS8.4AI score0.00715EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/13 7:6 a.m.58 views

CVE-2024-32700 WordPress Kognetiks Chatbot for WordPress plugin <= 2.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Kognetiks Kognetiks Chatbot for WordPress.This issue affects Kognetiks Chatbot for WordPress: from n/a through 2.0.0...

10CVSS9.8AI score0.02585EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 12:0 a.m.58 views

CVE-2024-30851

Directory Traversal vulnerability in codesiddhant Jasmin Ransomware v.1.0.1 allows an attacker to obtain sensitive information via the downloadfile.php component...

9.2AI score0.04611EPSS
Exploits7References2
Cvelist
Cvelist
added 2024/03/29 8:31 a.m.58 views

CVE-2024-2411 MasterStudy LMS <= 3.3.0 - Unauthenticated Local File Inclusion via modal

The MasterStudy LMS plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.0 via the 'modal' parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code i...

9.8CVSS10AI score0.0154EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/18 12:0 a.m.58 views

CVE-2024-29156

In OpenStack Murano through 16.0.0, when YAQL before 3.0.0 is used, the Murano service's MuranoPL extension to the YAQL language fails to sanitize the supplied environment, leading to potential leakage of sensitive service account information...

6.5AI score0.0074EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/03/13 3:48 p.m.58 views

CVE-2024-23672 Apache Tomcat: WebSocket DoS with incomplete closing handshake

Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through 10.1.18, from...

7.8AI score0.02313EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/20 9:58 a.m.58 views

CVE-2023-49109 Remote Code Execution in Apache Dolphinscheduler

Exposure of Remote Code Execution in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue...

7.4AI score0.02301EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/02/13 2:5 p.m.58 views

CVE-2023-5679 Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution

A bad interaction between DNS64 and serve-stale may cause named to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through...

7.5CVSS7.8AI score0.01231EPSS
Exploits0References7
Total number of security vulnerabilities5000