Lucene search
K
CvelistMost viewed

364953 matches found

Cvelist
Cvelist
added 2025/05/04 6:31 a.m.58 views

CVE-2025-4249 PHPGurukul e-Diary Management System manage-categories.php sql injection

A vulnerability was found in PHPGurukul e-Diary Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /manage-categories.php. The manipulation of the argument ID leads to sql injection. The attack may be launched remotely. The exploit h...

7.5CVSS0.00432EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/05/02 5:22 a.m.58 views

CVE-2025-3488 WPML Multilingual CMS 3.6.0 - 4.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpml_language_switcher Shortcode

The WPML plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wpmllanguageswitcher shortcode in versions 3.6.0 - 4.7.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...

6.4CVSS0.00247EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/01 5:20 p.m.58 views

CVE-2025-46337 SQL injection in ADOdb PostgreSQL driver pg_insert_id() method

ADOdb is a PHP database class library that provides abstractions for performing queries and managing databases. Prior to version 5.22.9, improper escaping of a query parameter may allow an attacker to execute arbitrary SQL statements when the code using ADOdb connects to a PostgreSQL database and...

10CVSS0.00664EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/15 7:22 p.m.58 views

CVE-2025-32445 Users can gain privileged access to the host system and cluster with EventSource and Sensor CR

Argo Events is an event-driven workflow automation framework for Kubernetes. A user with permission to create/modify EventSource and Sensor custom resources can gain privileged access to the host system and cluster, even without having direct administrative privileges. The EventSource and Sensor...

9.9CVSS0.00724EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/12 11:41 p.m.58 views

CVE-2025-2814 Crypt::CBC versions between 1.21 and 3.05 for Perl may use insecure rand() function for cryptographic functions

Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand function as the default source of entropy, which is not cryptographically secure, for cryptographic functions. This issue affects operating systems where "/dev/urandom'" is unavailable. In that case, Crypt::CBC will fallback to...

0.00176EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/06 4:29 p.m.58 views

CVE-2025-0337 Authorization bypass in Now Platform

ServiceNow has addressed an authorization bypass vulnerability that was identified in the Washington release of the Now Platform. This vulnerability, if exploited, potentially could enable an authenticated user to access unauthorized data stored within the Now Platform that the user otherwise wou...

7.1CVSS0.0036EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/05 12:0 a.m.58 views

CVE-2025-27663

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Weak Password Encryption / Encoding OVE-20230524-0007...

0.00353EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/28 9:0 p.m.58 views

CVE-2025-27410 PwnDoc Arbitrary File Write to RCE using Path Traversal in backup restore as admin

PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable to path traversal in the TAR entry's name, allowing an attacker to overwrite any file on the system with their content. By overwriting an included .js file and restarting the...

6.5CVSS0.01934EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/14 7:24 p.m.58 views

CVE-2025-25296 Label Studio allows Cross-Site Scripting (XSS) via GET request to `/projects/upload-example` endpoint

Label Studio is an open source data labeling tool. Prior to version 1.16.0, Label Studio's /projects/upload-example endpoint allows injection of arbitrary HTML through a GET request with an appropriately crafted labelconfig query parameter. By crafting a specially formatted XML label config with...

6.1CVSS0.01778EPSS
Exploits2References2
Cvelist
Cvelist
added 2025/01/09 8:21 p.m.58 views

CVE-2024-13297 Eloqua - Moderately critical - Arbitrary PHP code execution - SA-CONTRIB-2024-063

Deserialization of Untrusted Data vulnerability in Drupal Eloqua allows Object Injection.This issue affects Eloqua: from 7.X- before 7.X-1.15...

0.00399EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/20 3:37 a.m.58 views

CVE-2023-42867

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges...

0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/25 7:37 a.m.58 views

CVE-2024-10451 Org.keycloak:keycloak-quarkus-server: sensitive data exposure in keycloak build process

A flaw was found in Keycloak. This issue occurs because sensitive runtime values, such as passwords, may be captured during the Keycloak build process and embedded as default values in bytecode, leading to unintended information disclosure. In Keycloak 26, sensitive data specified directly in...

5.9CVSS0.00937EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/11/14 2:51 p.m.58 views

CVE-2022-2232 Keycloak: ldap injection on username input

A flaw was found in the Keycloak package. This flaw allows an attacker to utilize an LDAP injection to bypass the username lookup or potentially perform other malicious actions...

7.5CVSS0.00642EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/11/12 5:49 p.m.58 views

CVE-2024-8068 Privilege escalation to NetworkService Account access

Privilege escalation to NetworkService Account access in Citrix Session Recording when an attacker is an authenticated user in the same Windows Active Directory domain as the session recording server domain...

5.1CVSS0.01399EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/12 4:44 p.m.58 views

CVE-2024-49369 Icinga 2 has a TLS Certificate Validation Bypass for JSON-RPC and HTTP API Connections

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generates performance data for reporting. The TLS certificate validation in all Icinga 2 versions starting from 2.4.0 was flawed, allowing an attacker to impersonate both trusted clust...

9.8CVSS0.02934EPSS
Exploits1References7
Cvelist
Cvelist
added 2024/11/09 2:7 p.m.58 views

CVE-2024-51613 WordPress TradeMe widgets plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bidbud TradeMe widgets trademe-widget allows Stored XSS.This issue affects TradeMe widgets: from n/a through = 1.2...

6.5CVSS0.00243EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/06 2:0 p.m.58 views

CVE-2024-10915 D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection

A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is the function cgiuseradd of the file /cgi-bin/accountmgr.cgi?cmd=cgiuseradd. The manipulation of the argument group leads to os command injection. T...

9.2CVSS0.79135EPSS
Exploits2References5
Cvelist
Cvelist
added 2024/10/22 5:33 a.m.58 views

CVE-2024-8852 All-in-One WP Migration and Backup <= 7.86 - Unauthenticated Information Disclosure via Error Logs

The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.86 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information such as full...

5.3CVSS0.01175EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/07 8:6 p.m.58 views

CVE-2024-45292 PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via JavaScript hyperlinks

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. \PhpOffice\PhpSpreadsheet\Writer\Html does not sanitize "javascript:" URLs from hyperlink href attributes, resulting in a Cross-Site Scripting vulnerability. This issue has been addressed in release versions 1.29.2,...

5.4CVSS0.00316EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/05 3:22 p.m.58 views

CVE-2024-47370 WordPress Author Avatars List/Block plugin <= 2.1.21 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paul Bearne Author Avatars List/Block author-avatars allows Stored XSS.This issue affects Author Avatars List/Block: from n/a through = 2.1.21...

6.5CVSS0.00247EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/04 12:18 p.m.58 views

CVE-2024-47654 No Rate Limiting vulnerability

This vulnerability exists in Shilpi Client Dashboard due to lack of rate limiting and Captcha protection for OTP requests in certain API endpoint. An unauthenticated remote attacker could exploit this vulnerability by sending multiple OTP request through vulnerable API endpoints, which could lead...

7.1CVSS0.00492EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/02 3:35 p.m.58 views

CVE-2024-47805

Jenkins Credentials Plugin 1380.va435002fa924 and earlier, except 1371.1373.v4ebfab7161e9, does not redact encrypted values of credentials using the SecretBytes type when accessing item config.xml via REST API or CLI...

0.00591EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/18 5:14 p.m.58 views

CVE-2024-46986 Arbitrary file write leading to RCE in Camaleon CMS

Camaleon CMS is a dynamic and advanced content management system based on Ruby on Rails. An arbitrary file write vulnerability accessible via the upload method of the MediaController allows authenticated users to write arbitrary files to any location on the web server Camaleon CMS is running on...

9.9CVSS0.35461EPSS
Exploits2References5
Cvelist
Cvelist
added 2024/09/10 4:53 p.m.58 views

CVE-2024-37965 Microsoft SQL Server Elevation of Privilege Vulnerability

...

8.8CVSS0.01702EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/09 7:7 p.m.58 views

CVE-2024-45296 path-to-regexp outputs backtracking regular expressions

path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event...

7.5CVSS0.00932EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/08/20 8:11 p.m.58 views

CVE-2024-41657 GHSL-2024-035: Casdoor CORS misconfiguration

Casdoor is a UI-first Identity and Access Management IAM / Single-Sign-On SSO platform. In Casdoor 1.577.0 and earlier, a logic vulnerability exists in the beego filter CorsFilter that allows any website to make cross domain requests to Casdoor as the logged in user. Due to the a logic error in...

8.1CVSS0.00748EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/08/06 2:19 a.m.58 views

CVE-2024-5963 An unquoted executable path exists in Hitachi Device Manager

Unquoted Executable Path vulnerability in Hitachi Device Manager on Windows Device Manager Server component.This issue affects Hitachi Device Manager: before 8.8.7-00...

6.7CVSS0.00165EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/01 2:5 p.m.58 views

CVE-2024-39777 Malicious remote can invite itself to an arbitrary local channel

Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6, 9.7.x = 9.7.5 and 9.8.x = 9.8.1 fail to disallow unsolicited invites to expose access to local channels, when shared channels are enabled, which allows a malicious remote to send an invite with the ID of an existing local channel, and that local...

8.7CVSS0.00363EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/25 7:5 p.m.58 views

CVE-2024-1724 snapd allows $HOME/bin symlink

In snapd versions prior to 2.62, when using AppArmor for enforcement of sandbox permissions, snapd failed to restrict writes to the $HOME/bin path. In Ubuntu, when this path exists, it is automatically added to the users PATH. An attacker who could convince a user to install a malicious snap whic...

6.3CVSS0.00306EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/07/23 3:46 p.m.58 views

CVE-2024-6714

An issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local attacker to escalate their privilege...

8.8CVSS0.00263EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/07/15 6:21 p.m.58 views

CVE-2024-40631 Cross-site Scripting (XSS) in media embed element when using custom URL parsers in plate media

Plate media is an open source, rich-text editor for React. Editors that use MediaEmbedElement and pass custom urlParsers to the useMediaState hook may be vulnerable to XSS if a custom parser allows javascript:, data: or vbscript: URLs to be embedded. Editors that do not use urlParsers and consume...

8.1CVSS0.00498EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/11 4:27 p.m.58 views

CVE-2024-39549 Junos OS and Junos OS Evolved: Receipt of malformed BGP path attributes leads to a memory leak

A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a malformed BGP Path attribute update which allocates memory used to log the bad path attribute. This memory is not...

8.7CVSS0.00466EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 5:3 p.m.58 views

CVE-2024-38058 BitLocker Security Feature Bypass Vulnerability

...

6.8CVSS0.00929EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 5:2 p.m.58 views

CVE-2024-38024 Microsoft SharePoint Server Remote Code Execution Vulnerability

...

7.2CVSS0.45219EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/09 5:2 p.m.58 views

CVE-2024-38088 SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

...

8.8CVSS0.01678EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/02 7:51 p.m.58 views

CVE-2023-24531 Output of "go env" does not sanitize values in cmd/go

Command go env is documented as outputting a shell script containing the Go environment. However, go env doesn't sanitize values, so executing its output as a shell script can cause various bad bahaviors, including executing arbitrary commands or inserting new environment variables. This issue is...

0.00833EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/21 9:39 a.m.58 views

CVE-2024-31890 IBM i privilege escalation

IBM i 7.3, 7.4, and 7.5 product IBM TCP/IP Connectivity Utilities for i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system. IBM X-Force ID: 288171...

7.8CVSS0.00171EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/19 2:54 p.m.58 views

CVE-2021-47599 btrfs: use latest_dev in btrfs_show_devname

In the Linux kernel, the following vulnerability has been resolved: btrfs: use latestdev in btrfsshowdevname The test case btrfs/238 reports the warning below: WARNING: CPU: 3 PID: 481 at fs/btrfs/super.c:2509 btrfsshowdevname+0x104/0x1e8 btrfs CPU: 2 PID: 1 Comm: systemd Tainted: G W O...

0.00148EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/18 9:0 p.m.58 views

CVE-2024-6129 spa-cartcms Username login observable behavioral discrepancy

A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. Affected is an unknown function of the file /login of the component Username Handler. The manipulation of the argument email leads to observable behavioral discrepancy. It is possible to launch the attack...

6.3CVSS0.00605EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/14 9:54 a.m.58 views

CVE-2024-5685 Broken Function Level Authorization (BFLA) in snipe/snipe-it

Users with "User:edit" and "Self:api" permissions can promote or demote themselves or other users by performing changes to the group's memberships via API call.This issue affects snipe-it: from v4.6.17 through v6.4.1...

7.6CVSS0.00407EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/12 4:28 p.m.58 views

CVE-2024-5908 GlobalProtect App: Encrypted Credential Exposure via Log Files

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting...

5.5CVSS0.00366EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/12 3:5 p.m.58 views

CVE-2024-37297 WooCommerce has a Cross-Site Scripting Vulnerability in checkout & registration forms

WooCommerce is an open-source e-commerce platform built on WordPress. A vulnerability introduced in WooCommerce 8.8 allows for cross-site scripting. A bad actor can manipulate a link to include malicious HTML & JavaScript content. While the content is not saved to the database, the links may be...

5.4CVSS0.00483EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/11 5:0 p.m.58 views

CVE-2024-35253 Microsoft Azure File Sync Elevation of Privilege Vulnerability

...

4.4CVSS0.00738EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 2:32 p.m.58 views

CVE-2024-23111

An improper neutralization of input during web page Generation 'Cross-site Scripting' vulnerability CWE-79 in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions reboot page may allow a remote privileged...

6.8CVSS0.01042EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 12:40 p.m.58 views

CVE-2024-5689

In addition to detecting when a user was taking a screenshot XXX, a website was able to overlay the 'My Shots' button that appeared, and direct the user to a replica Firefox Screenshots page that could be used for phishing. This vulnerability affects Firefox 127...

0.00398EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/07 9:33 a.m.58 views

CVE-2023-5424 WS Form LITE <= 1.9.217 - Unauthenticated CSV Injection

The WS Form LITE plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.9.217. This allows unauthenticated attackers to embed untrusted input into exported CSV files, which can result in code execution when these files are downloaded and opened on a local system...

4.7CVSS0.00493EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/21 3:22 p.m.58 views

CVE-2023-52733

...

6.8AI score
Exploits0
Cvelist
Cvelist
added 2024/05/17 8:50 a.m.58 views

CVE-2024-24934 WordPress Elementor plugin <= 3.19.0 - Arbitrary File Deletion and Phar Deserialization vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0...

8.5CVSS8.4AI score0.00715EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/13 7:6 a.m.58 views

CVE-2024-32700 WordPress Kognetiks Chatbot for WordPress plugin <= 2.0.0 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Kognetiks Kognetiks Chatbot for WordPress.This issue affects Kognetiks Chatbot for WordPress: from n/a through 2.0.0...

10CVSS9.8AI score0.02585EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.58 views

CVE-2023-41230 D-Link DIR-3040 HTTP Request Processing Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 HTTP Request Processing Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is not required to exploit this...

7.5CVSS8.2AI score0.00759EPSS
Exploits0References2
Total number of security vulnerabilities5000