Lucene search
K
CvelistMost viewed

365230 matches found

Cvelist
Cvelist
•added 2023/11/20 6:2 p.m.•58 views

CVE-2023-48292 XWiki Admin Tools Application Run Shell Command allows CSRF RCE attacks

The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an attacker to execute arbitrary shell commands ...

9.6CVSS10AI score0.22938EPSS
Exploits2References3
Cvelist
Cvelist
•added 2023/11/17 12:0 a.m.•58 views

CVE-2023-46402

git-urls 1.0.0 allows ReDOS Regular Expression Denial of Service in urls.go...

7.7AI score0.0085EPSS
Exploits1References1
Cvelist
Cvelist
•added 2023/11/03 7:33 a.m.•58 views

CVE-2023-46846 Squid: request/response smuggling in http/1.1 and icap

SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems...

9.3CVSS9.3AI score0.05255EPSS
Exploits0References13
Cvelist
Cvelist
•added 2023/10/25 8:48 p.m.•58 views

CVE-2023-46133 crypto-es PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

CryptoES is a cryptography algorithms library compatible with ES6 and TypeScript. Prior to version 2.1.0, CryptoES PBKDF2 is 1,000 times weaker than originally specified in 1993, and at least 1,300,000 times weaker than current industry standard. This is because it both defaults to SHA1, a...

9.1CVSS9.4AI score0.00446EPSS
Exploits1References2
Cvelist
Cvelist
•added 2023/10/20 7:29 a.m.•58 views

CVE-2023-4386 Essential Blocks <= 4.2.0 - Unauthenticated PHP Object Injection via queries

The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input in the getposts function. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable plugin. ...

8.1CVSS9AI score0.00768EPSS
Exploits2References2
Cvelist
Cvelist
•added 2023/10/10 6:38 p.m.•58 views

CVE-2023-45648 Apache Tomcat: Trailer header parsing too lenient

Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not correctly parse HTTP trailer headers. A specially crafted, invalid trailer header could cause Tomca...

6.7AI score0.05848EPSS
Exploits2References1
Cvelist
Cvelist
•added 2023/10/10 5:8 p.m.•58 views

CVE-2023-36420 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00982EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/10/03 11:0 a.m.•58 views

CVE-2023-25989 Cross-Site Request Forgery (CSRF) vulnerability in multiple WordPress plugins by Meks

Cross-Site Request Forgery CSRF vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading...

4.3CVSS9AI score0.00378EPSS
Exploits0References10
Cvelist
Cvelist
•added 2023/10/03 5:0 a.m.•58 views

CVE-2023-26150

Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. Note: This issue is a result of missing checks for services that require an active session...

6.5CVSS7.7AI score0.00454EPSS
Exploits1References7
Cvelist
Cvelist
•added 2023/09/06 5:33 p.m.•58 views

CVE-2023-41330 Unsafe deserialization in knplabs/knp-snappy

knplabs/knp-snappy is a PHP library allowing thumbnail, snapshot or PDF generation from a url or a html page. Issue On March 17th the vulnerability CVE-2023-28115 was disclosed, allowing an attacker to gain remote code execution through PHAR deserialization. Version 1.4.2 added a check if...

9.8CVSS10AI score0.01877EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/08/28 8:16 p.m.•58 views

CVE-2023-39968 Open Redirect Vulnerability in jupyter-server

jupyter-server is the backend for Jupyter web applications. Open Redirect Vulnerability. Maliciously crafted login links to known Jupyter Servers can cause successful login or an already logged-in session to be redirected to arbitrary sites, which should be restricted to Jupyter Server-served URL...

4.3CVSS6.5AI score0.00586EPSS
Exploits0References4
Cvelist
Cvelist
•added 2023/08/25 7:58 p.m.•58 views

CVE-2023-40036 Notepad++ global buffer read overflow in CharDistributionAnalysis::HandleOneChar

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in CharDistributionAnalysis::HandleOneChar. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As ...

5.5CVSS6.1AI score0.00427EPSS
Exploits1References1
Cvelist
Cvelist
•added 2023/08/17 7:4 p.m.•58 views

CVE-2023-40315 ROLE_FILESYSTEM_EDITOR Can Be Used To Escalate To ROLE_ADMIN

In OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 and related Meridian versions, any user that has the ROLEFILESYSTEMEDITOR can easily escalate their privileges to ROLEADMIN or any other role. The solution is to upgrade to Meridian 2023.1.5 or Horizon 32.0.2 or newer. Meridian and Horizo...

5.3CVSS8.2AI score0.02538EPSS
Exploits3References2
Cvelist
Cvelist
•added 2023/07/25 8:59 a.m.•58 views

CVE-2023-3897 Bypassing CAPTCHA & Enumerating Usernames via Password Reset Page

Username enumeration is possible through Bypassing CAPTCHA in On-premise SureMDM Solution on Windows deployment allows attacker to enumerate local user information via error message. This issue affects SureMDM On-premise: 6.31 and below version...

4.8CVSS5.4AI score0.01808EPSS
Exploits4References2
Cvelist
Cvelist
•added 2023/07/12 5:31 p.m.•58 views

CVE-2023-3643 Boss Mini document file inclusion

A vulnerability was found in Boss Mini 1.4.0 Build 6221. It has been classified as critical. This affects an unknown part of the file boss/servlet/document. The manipulation of the argument path leads to file inclusion. It is possible to initiate the attack remotely. The exploit has been disclose...

7.5CVSS9.8AI score0.75387EPSS
Exploits6References3
Cvelist
Cvelist
•added 2023/07/12 9:59 a.m.•58 views

CVE-2022-45855 Apache Ambari: Allows authenticated metrics consumers to perform RCE

SpringEL injection in the metrics source in Apache Ambari version 2.7.0 to 2.7.6 allows a malicious authenticated user to execute arbitrary code remotely. Users are recommended to upgrade to 2.7.7...

8CVSS9.2AI score0.01212EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/06/12 5:0 a.m.•58 views

CVE-2023-26133

All versions of the package progressbar.js are vulnerable to Prototype Pollution via the function extend in the file utils.js...

8.2CVSS9.7AI score0.01251EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/06/01 12:0 a.m.•58 views

CVE-2023-28937

DataSpider Servista version 4.4 and earlier uses a hard-coded cryptographic key. DataSpider Servista is data integration software. ScriptRunner and ScriptRunner for Amazon SQS are used to start the configured processes on DataSpider Servista. The cryptographic key is embedded in ScriptRunner and...

8.9AI score0.00812EPSS
Exploits0References8
Cvelist
Cvelist
•added 2023/05/27 3:51 a.m.•58 views

CVE-2023-33195 Craft CMS XSS in RSS widget feed

Craft is a CMS for creating custom digital experiences on the web. A malformed RSS feed can deliver an XSS payload. This issue was patched in version 4.4.6...

5CVSS6.1AI score0.00651EPSS
Exploits1References3
Cvelist
Cvelist
•added 2023/05/25 5:47 p.m.•58 views

CVE-2023-30851 Potential HTTP policy bypass when using header rules in Cilium

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. This issue only impacts users who have a HTTP policy that applies to multiple toEndpoints AND have an allow-all rule in place that affects only one of those endpoints. In such cases, a wildcard rule will be...

2.6CVSS5.5AI score0.00655EPSS
Exploits0References4
Cvelist
Cvelist
•added 2023/05/18 9:27 p.m.•58 views

CVE-2023-30470

A use-after-free related to unsound inference in the bytecode generation when optimizations are enabled for Hermes prior to commit da8990f737ebb9d9810633502f65ed462b819c09 could have been used by an attacker to achieve remote code execution. Note that this is only exploitable in cases where Herme...

10AI score0.01249EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/05/10 3:23 p.m.•58 views

CVE-2022-46378

An out-of-bounds read vulnerability exists in the PORT command parameter extraction functionality of Weston Embedded uC-FTPs v 1.98.00. A specially-crafted set of network packets can lead to denial of service. An attacker can send packets to trigger this vulnerability.This vulnerability occurs wh...

6.5CVSS7.6AI score0.01419EPSS
Exploits1References2
Cvelist
Cvelist
•added 2023/05/10 1:16 p.m.•58 views

CVE-2022-41808

Improper buffer restriction in software for the Intel QAT Driver for Linux before version 1.7.l.4.12 may allow an authenticated user to potentially enable denial of service via local access...

3.3CVSS5.6AI score0.00222EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/04/26 12:0 a.m.•58 views

CVE-2022-25277

Drupal core sanitizes filenames with dangerous extensions upon upload reference: SA-CORE-2020-012 and strips leading and trailing dots from filenames to prevent uploading server configuration files reference: SA-CORE-2019-010. However, the protections for these two vulnerabilities previously did...

7.7AI score0.01422EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/04/20 5:8 p.m.•58 views

CVE-2023-29528 Cross-site Scripting in org.xwiki.commons:xwiki-commons-xml

XWiki Commons are technical libraries common to several other top level XWiki projects. The "restricted" mode of the HTML cleaner in XWiki, introduced in version 4.2-milestone-1 and massively improved in version 14.6-rc-1, allowed the injection of arbitrary HTML code and thus cross-site scripting...

9CVSS9AI score0.01277EPSS
Exploits1References4
Cvelist
Cvelist
•added 2023/04/19 7:10 p.m.•58 views

CVE-2023-30797 Insecure Random Generation in Netflix Lemur

Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur...

7.5CVSS7.8AI score0.00784EPSS
Exploits0References4
Cvelist
Cvelist
•added 2023/04/14 12:0 a.m.•58 views

CVE-2023-26463

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control, later followed by an expired pointer dereference. One attack vector is sending an untrust...

9.9AI score0.02283EPSS
Exploits0References3
Cvelist
Cvelist
•added 2023/04/04 12:0 a.m.•58 views

CVE-2023-25356

CoreDial sipXcom up to and including 21.04 is vulnerable to Improper Neutralization of Argument Delimiters in a Command. XMPP users are able to inject arbitrary arguments into a system command, which can be used to read files from, and write files to, the sipXcom server. This can also be leverage...

9.1AI score0.02145EPSS
Exploits3References1
Cvelist
Cvelist
•added 2023/03/29 12:0 a.m.•58 views

CVE-2022-48434

libavcodec/pthreadframe.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances e.g., hardware re-initialization upon a mid-video SPS change when...

8.4AI score0.01512EPSS
Exploits1References6
Cvelist
Cvelist
•added 2023/03/17 7:56 p.m.•58 views

CVE-2023-27594 Cilium vulnerable to potential network policy bypass when routing IPv6 traffic

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.11.15, 1.12.8, and 1.13.1, under specific conditions, Cilium may misattribute the source IP address of traffic to a cluster, identifying external traffic as coming from the host on which...

4.2CVSS7.3AI score0.00552EPSS
Exploits0References4
Cvelist
Cvelist
•added 2023/03/16 3:25 p.m.•58 views

CVE-2023-28104 silverstripe/graphql Denial of Service vulnerability

silverstripe/graphql serves Silverstripe data as GraphQL representations. In versions 4.2.2 and 4.1.1, an attacker could use a specially crafted graphql query to execute a denial of service attack against a website which has a publicly exposed graphql endpoint. This mostly affects websites with...

7.5CVSS7.7AI score0.01055EPSS
Exploits0References4
Cvelist
Cvelist
•added 2023/03/02 6:35 p.m.•58 views

CVE-2023-0084 Metform Elementor Contact Form Builder <= 3.1.2 - Unauthenticated Stored Cross-Site Scripting

The Metform Elementor Contact Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via text areas on forms in versions up to, and including, 3.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

7.2CVSS6.4AI score0.28565EPSS
Exploits5References4
Cvelist
Cvelist
•added 2023/02/28 10:21 p.m.•58 views

CVE-2023-25575 Secured properties in API Platform Core may be accessible within collections

API Platform Core is the server component of API Platform: hypermedia and GraphQL APIs. Resource properties secured with the security option of the ApiPlatform\Metadata\ApiProperty attribute can be disclosed to unauthorized users. The problem affects most serialization formats, including raw JSON...

7.7CVSS7.6AI score0.00604EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/02/16 6:6 p.m.•58 views

CVE-2022-39952

A external control of file name or path in Fortinet FortiNAC versions 9.4.0, 9.2.0 through 9.2.5, 9.1.0 through 9.1.7, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 8.6.0 through 8.6.5, 8.5.0 through 8.5.4, 8.3.7 may allow an unauthenticated attacker to execute unauthorized code or commands via...

9.8CVSS9.9AI score0.99815EPSS
Exploits7References1
Cvelist
Cvelist
•added 2023/02/01 5:56 p.m.•58 views

CVE-2023-22839 BIG-IP DNS profile vulnerability

On BIG-IP versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8.1, 14.1.x before 14.1.5.3, and all version of 13.1.x, when a DNS profile with the Rapid Response Mode setting enabled is configured on a virtual server with hardware SYN cookies enabled, undisclosed requests...

7.5CVSS7.7AI score0.00626EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/01/25 5:39 a.m.•58 views

CVE-2023-23611 xblock-lti-consumer contain Missing Authorization in Grade Pass Back Implementation

LTI Consumer XBlock implements the consumer side of the LTI specification enabling integration of third-party LTI provider tools. Versions 7.0.0 and above, prior to 7.2.2, are vulnerable to Missing Authorization. Any LTI tool that is integrated with on the Open edX platform can post a grade back...

5.4CVSS5.8AI score0.00384EPSS
Exploits0References1
Cvelist
Cvelist
•added 2023/01/17 12:0 a.m.•58 views

CVE-2022-40319

The LISTSERV 17 web interface allows remote attackers to conduct Insecure Direct Object References IDOR attacks via a modified email address in a wa.exe URL. The impact is unauthorized modification of a victim's LISTSERV account...

7.6AI score0.07195EPSS
Exploits4References2
Cvelist
Cvelist
•added 2023/01/14 12:0 a.m.•58 views

CVE-2023-23589

The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002...

6.7AI score0.00832EPSS
Exploits1References8
Cvelist
Cvelist
•added 2023/01/02 5:11 p.m.•58 views

CVE-2014-125036 drybjed ansible-ntp main.yml amplification

A vulnerability, which was classified as problematic, has been found in drybjed ansible-ntp. Affected by this issue is some unknown functionality of the file meta/main.yml. The manipulation leads to insufficient control of network message volume. The attack can only be done within the local...

2.6CVSS4.6AI score0.00399EPSS
Exploits0References3
Cvelist
Cvelist
•added 2022/12/18 12:0 a.m.•58 views

CVE-2021-4257 ctrlo lenio Task task.tt cross site scripting

A vulnerability was found in ctrlo lenio. It has been declared as problematic. This vulnerability affects unknown code of the file views/task.tt of the component Task Handler. The manipulation of the argument site.org.name/check.name/task.tasktype.name/task.name leads to cross site scripting. The...

3.5CVSS6.3AI score0.00385EPSS
Exploits0References2
Cvelist
Cvelist
•added 2022/12/14 12:0 a.m.•58 views

CVE-2022-31705

VMware ESXi, Workstation, and Fusion contain a heap out-of-bounds write vulnerability in the USB 2.0 controller EHCI. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. On ESX...

8.8AI score0.01546EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/12/08 9:19 p.m.•58 views

CVE-2022-23496 A crafted list can trigger a ArrayIndexOutOfBoundsException in Yauaa

Yet Another UserAgent Analyzer Yauaa is a java library that tries to parse and analyze the useragent string and extract as many relevant attributes as possible. Applications using the Client Hints analysis feature introduced with 7.0.0 can crash because the Yauaa library throws an...

7.5CVSS7.7AI score0.00738EPSS
Exploits0References2
Cvelist
Cvelist
•added 2022/11/17 12:0 a.m.•58 views

CVE-2022-39389 Witness Block Parsing DoS Vulnerability in lnd

Lightning Network Daemon lnd is an implementation of a lightning bitcoin overlay network node. All lnd nodes before version v0.15.4 are vulnerable to a block parsing bug that can cause a node to enter a degraded state once encountered. In this degraded state, nodes can continue to make payments a...

8.2CVSS8.3AI score0.00999EPSS
Exploits1References4
Cvelist
Cvelist
•added 2022/11/16 12:0 a.m.•58 views

CVE-2022-43234

An arbitrary file upload vulnerability in the /attachments component of Hoosk v1.8 allows attackers to execute arbitrary code via a crafted PHP file...

9.8AI score0.00935EPSS
Exploits1References1
Cvelist
Cvelist
•added 2022/09/16 10:55 p.m.•58 views

CVE-2022-36012 Assertion fail on MLIR empty edge names in TensorFlow

TensorFlow is an open source platform for machine learning. When mlir::tfg::ConvertGenericFunctionToFunctionDef is given empty function attributes, it crashes. We have patched the issue in GitHub commit ad069af92392efee1418c48ff561fd3070a03d7b. The fix will be included in TensorFlow 2.10.0. We wi...

5.9CVSS7.8AI score0.00547EPSS
Exploits0References3
Cvelist
Cvelist
•added 2022/09/13 9:40 a.m.•58 views

CVE-2022-39138

A vulnerability has been identified in Parasolid V33.1 All versions V33.1.262, Parasolid V34.0 All versions V34.0.252, Parasolid V34.1 All versions V34.1.242, Parasolid V35.0 All versions V35.0.161, Simcenter Femap V2022.1 All versions V2022.1.3, Simcenter Femap V2022.2 All versions V2022.2.2. Th...

8AI score0.00241EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/08/26 12:0 a.m.•58 views

CVE-2021-3859

A flaw was found in Undertow that tripped the client-side invocation timeout with certain calls made over HTTP2. This flaw allows an attacker to carry out denial of service attacks...

7.4AI score0.01287EPSS
Exploits0References6
Cvelist
Cvelist
•added 2022/07/25 3:33 p.m.•58 views

CVE-2022-35653

A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of user-supplied data in the LTI module. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in user's brows...

6.5AI score0.03747EPSS
Exploits0References5
Cvelist
Cvelist
•added 2022/07/12 10:6 a.m.•58 views

CVE-2022-30938

A vulnerability has been identified in EN100 Ethernet module DNP3 IP variant All versions, EN100 Ethernet module IEC 104 variant All versions, EN100 Ethernet module IEC 61850 variant All versions V4.40, EN100 Ethernet module Modbus TCP variant All versions, EN100 Ethernet module PROFINET IO varia...

7.7AI score0.01262EPSS
Exploits0References1
Cvelist
Cvelist
•added 2022/07/08 12:0 a.m.•58 views

CVE-2022-31137 Unauthenticated Remote Code Execution in Roxy-WI

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 6.1.1.0 are subject to a remote code execution vulnerability. System commands can be run remotely via the subprocessexecute function without processing the inputs received from the user in the...

10CVSS9.9AI score0.90387EPSS
Exploits15References6
Total number of security vulnerabilities5000