Lucene search
K
CvelistMost viewed

364896 matches found

Cvelist
Cvelist
added 2025/01/21 5:36 p.m.57 views

CVE-2025-24019 YesWiki vulnerable to authenticated arbitrary file deletion

YesWiki is a wiki system written in PHP. In versions up to and including 4.4.5, it is possible for any authenticated user, through the use of the filemanager to delete any file owned by the user running the FastCGI Process Manager FPM on the host without any limitation on the filesystem's scope...

7.1CVSS0.00568EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/07 10:7 p.m.57 views

CVE-2025-22133 WeGIA Allows Arbitrary File Upload with Remote Code Execution (RCE)

WeGIA is a web manager for charitable institutions. Prior to 3.2.8, a critical vulnerability was identified in the /WeGIA/html/socio/sistema/controller/controlaxlsx.php endpoint. The endpoint accepts file uploads without proper validation, allowing the upload of malicious files, such as .phar,...

9.9CVSS0.00722EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/12/20 3:37 a.m.57 views

CVE-2023-42867

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges...

0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/17 9:30 p.m.57 views

CVE-2023-37940

Cross-site scripting XSS vulnerability in the edit Service Access Policy page in Liferay Portal 7.0.0 through 7.4.3.87, and Liferay DXP 7.4 GA through update 87, 7.3 GA through update 29, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted...

4.8CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/21 1:43 a.m.57 views

CVE-2022-43934 Weak Key-exchange algorithms

Brocade SANnav before Brocade SANnav 2.2.2 supports key exchange algorithms, which are considered weak on ports 24, 6514, 18023, 19094, and 19095...

6.5CVSS0.00473EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/12 12:49 p.m.57 views

CVE-2024-50310

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 6GK7543-1AX10-0XE0 All versions = V4.0.44 V4.0.50. Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem...

8.7CVSS0.00471EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/07 3:2 p.m.57 views

CVE-2024-9926 Jetpack < 13.9.1 - Subscriber+ Arbitrary Feedback Access

The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form...

0.01148EPSS
Exploits3References1
Cvelist
Cvelist
added 2024/10/28 7:6 a.m.58 views

CVE-2024-38821 Authorization Bypass of Static Resources in WebFlux Applications

Spring WebFlux applications that have Spring Security authorization rules on static resources can be bypassed under certain circumstances. For this to impact an application, all of the following must be true: It must be a WebFlux application It must be using Spring's static resources support It...

9.1CVSS0.01726EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/10/22 5:33 a.m.57 views

CVE-2024-8852 All-in-One WP Migration and Backup <= 7.86 - Unauthenticated Information Disclosure via Error Logs

The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 7.86 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information such as full...

5.3CVSS0.01175EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/16 8:25 a.m.57 views

CVE-2023-32188 JWT token compromise can allow malicious actions including Remote Code Execution (RCE)

A user can reverse engineer the JWT token JSON Web Token used in authentication for Manager and API access, forging a valid NeuVector Token to perform malicious activity in NeuVector. This can lead to an RCE...

9.4CVSS0.00461EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/16 7:46 a.m.57 views

CVE-2023-22649 Rancher 'Audit Log' leaks sensitive information

A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. Rancher Audit Logging is an opt-in feature, only deployments that have it enabled and have AUDITLEVEL set to 1 or above are impacted by this issue...

8.4CVSS0.01882EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/08 5:36 p.m.57 views

CVE-2024-43590 Visual C++ Redistributable Installer Elevation of Privilege Vulnerability

...

7.8CVSS0.00426EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/06 10:26 a.m.57 views

CVE-2024-47349 WordPress WPMobile.App plugin <= 11.50 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Amauri WPMobile.App wpappninja.This issue affects WPMobile.App: from n/a through = 11.50...

7.1CVSS0.0029EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/01 2:58 p.m.57 views

CVE-2024-41673 Decidim has a cross-site scripting vulnerability in the version control page

Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.27.8...

7.1CVSS0.004EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/24 3:14 p.m.57 views

CVE-2024-8878 Unauthenticated Password Reset

The password recovery mechanism for the forgotten password in Riello Netman 204 allows an attacker to reset the admin password and take over control of the device.This issue affects Netman 204: through 4.05...

10CVSS0.01265EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/09/23 5:25 p.m.57 views

CVE-2024-0001

A condition exists in FlashArray Purity whereby a local account intended for initial array configuration remains active potentially allowing a malicious actor to gain elevated privileges...

10CVSS0.00857EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/09 7:7 p.m.57 views

CVE-2024-45296 path-to-regexp outputs backtracking regular expressions

path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event...

7.5CVSS0.00932EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/09/09 6:51 p.m.57 views

CVE-2024-7341 Wildfly-elytron: org.keycloak/keycloak-services: session fixation in elytron saml adapters

A session fixation issue was discovered in the SAML adapters provided by Keycloak. The session ID and JSESSIONID cookie are not changed at login time, even when the turnOffChangeSessionIdOnLogin option is configured. This flaw allows an attacker who hijacks the current session before authenticati...

7.1CVSS0.008EPSS
Exploits0References12
Cvelist
Cvelist
added 2024/09/04 4:29 p.m.57 views

CVE-2024-20497 Cisco Expressway Edge Improper Authorization Vulnerability

A vulnerability in Cisco Expressway Edge Expressway-E could allow an authenticated, remote attacker to masquerade as another user on an affected system. This vulnerability is due to inadequate authorization checks for Mobile and Remote Access MRA users. An attacker could exploit this vulnerabilit...

4.3CVSS0.00322EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/03 7:42 p.m.57 views

CVE-2024-4629 Keycloak: potential bypass of brute force protection

A vulnerability was found in Keycloak. This flaw allows attackers to bypass brute force protection by exploiting the timing of login attempts. By initiating multiple login requests simultaneously, attackers can exceed the configured limits for failed attempts before the system locks them out. Thi...

6.5CVSS0.00793EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/08/12 4:0 p.m.57 views

CVE-2024-41909 Apache MINA SSHD: integrity check bypass

Like many other SSH implementations, Apache MINA SSHD suffered from the issue that is more widely known as CVE-2023-48795. An attacker that can intercept traffic between client and server could drop certain packets from the stream, potentially causing client and server to consequently end up with...

0.00581EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/09 2:23 p.m.57 views

CVE-2024-30188 Apache DolphinScheduler: Resource File Read And Write Vulnerability

File read and write vulnerability in Apache DolphinScheduler , authenticated users can illegally access additional resource files. This issue affects Apache DolphinScheduler: from 3.1.0 before 3.2.2. Users are recommended to upgrade to version 3.2.2, which fixes the issue...

0.05987EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/05 2:21 p.m.57 views

CVE-2024-23383 Use After Free in Graphics Linux

Memory corruption when kernel driver attempts to trigger hardware fences...

8.4CVSS0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/02 8:37 p.m.57 views

CVE-2024-3056 Podman: kernel: containers in shared ipc namespace are vulnerable to denial of service attack

A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large number of IPC resources in /dev/shm. The malicious container will continue to exhaust resources...

7.7CVSS0.00545EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/01 4:0 a.m.57 views

CVE-2024-7339 TVT DVR TD-2104TS-CL queryDevInfo information disclosure

A vulnerability has been found in TVT DVR TD-2104TS-CL, DVR TD-2108TS-HP, Provision-ISR DVR SH-4050A5-5LMM and AVISION DVR AV108T and classified as problematic. This vulnerability affects unknown code of the file /queryDevInfo. The manipulation leads to information disclosure. The attack can be...

6.9CVSS0.32028EPSS
Exploits2References4
Cvelist
Cvelist
added 2024/07/24 7:41 a.m.57 views

CVE-2024-39676 Apache Pinot: Unauthorized endpoint exposed sensitive information

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Pinot. This issue affects Apache Pinot: from 0.1 before 1.0.0. Users are recommended to upgrade to version 1.0.0 and configure RBAC, which fixes the issue. Details: When using a request to path “/appconfigs” to the...

0.00846EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/16 10:40 p.m.57 views

CVE-2024-21184

...

7.2CVSS0.00529EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/09 6:53 p.m.57 views

CVE-2024-39684 Tencent RapidJSON include/rapidjson/reader.h GenericReader::ParseNumber() Function Template Exponent Parsing Integer Overflow

Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the GenericReader::ParseNumber function of include/rapidjson/reader.h when parsing JSON text from a stream. An attacker needs to send the victim a crafted file which needs to be opened; this triggers the integer...

7.8CVSS0.00424EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/18 9:0 p.m.57 views

CVE-2024-6129 spa-cartcms Username login observable behavioral discrepancy

A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6. Affected is an unknown function of the file /login of the component Username Handler. The manipulation of the argument email leads to observable behavioral discrepancy. It is possible to launch the attack...

6.3CVSS0.00605EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/06/14 9:54 a.m.57 views

CVE-2024-5685 Broken Function Level Authorization (BFLA) in snipe/snipe-it

Users with "User:edit" and "Self:api" permissions can promote or demote themselves or other users by performing changes to the group's memberships via API call.This issue affects snipe-it: from v4.6.17 through v6.4.1...

7.6CVSS0.00407EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/06/12 4:28 p.m.57 views

CVE-2024-5908 GlobalProtect App: Encrypted Credential Exposure via Log Files

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user credentials, used for connecting to GlobalProtect, in application logs. Normally, these application logs are only viewable by local users and are included when generating logs for troubleshooting...

5.5CVSS0.00366EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/11 2:32 p.m.57 views

CVE-2024-23111

An improper neutralization of input during web page Generation 'Cross-site Scripting' vulnerability CWE-79 in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions reboot page may allow a remote privileged...

6.8CVSS0.01042EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/10 7:35 p.m.57 views

CVE-2024-36412 SuiteCRM unauthenticated SQL Injection

SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in events response entry point allows for a SQL injection attack. Versions 7.14.4 and 8.6.1 contain a fix for this issue...

10CVSS0.05692EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/06 3:9 p.m.57 views

CVE-2024-36106 Argo CD allows authenticated users to enumerate clusters by name

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It’s possible for authenticated users to enumerate clusters by name by inspecting error messages. It’s also possible to enumerate the names of projects with project-scoped clusters if you know the names of the clusters. Thi...

4.3CVSS0.00408EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/31 5:38 p.m.57 views

CVE-2023-38551

A CRLF Injection vulnerability in Ivanti Connect Secure 9.x, 22.x allows an authenticated high-privileged user to inject malicious code on a victim’s browser, thereby leading to cross-site scripting attack...

8.2CVSS7.9AI score0.01003EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/28 6:50 p.m.57 views

CVE-2024-36107 Information disclosure in minio

MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. If-Modified-Since and If-Unmodified-Since headers when used with anonymous requests by sending a random object name requests can be used to determine if an object exists or not on the server on a...

5.3CVSS5.1AI score0.00549EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/05/27 5:12 p.m.57 views

CVE-2024-35238 Denial of service of Minder Server from maliciously crafted GitHub attestations

Minder by Stacklok is an open source software supply chain security platform. Minder prior to version 0.0.51 is vulnerable to a denial-of-service DoS attack which could allow an attacker to crash the Minder server and deny other users access to it. The root cause of the vulnerability is that...

5.3CVSS5.3AI score0.0053EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/23 11:47 a.m.57 views

CVE-2024-26139 OpenCTI Authenticated Privilege Escalation

OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. Due to lack of certain security controls on the profile edit functionality, an authenticated attacker with low privileges can gain administrative privileges on the web...

8.3CVSS8.4AI score0.00398EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/20 9:59 p.m.57 views

CVE-2024-34710 Wiki.js Stored XSS through Client Side Template Injection

Wiki.js is al wiki app built on Node.js. Client side template injection was discovered, that could allow an attacker to inject malicious JavaScript into the content section of pages that would execute once a victim loads the page that contains the payload. This was possible through the injection ...

7.1CVSS6.9AI score0.00395EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/20 9:17 a.m.57 views

CVE-2024-35949 btrfs: make sure that WRITTEN is set on all metadata blocks

In the Linux kernel, the following vulnerability has been resolved: btrfs: make sure that WRITTEN is set on all metadata blocks We previously would call btrfscheckleaf if we had the check integrity code enabled, which meant that we could only run the extended leaf checks if we had WRITTEN set on...

6.2AI score0.00239EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/16 9:3 a.m.57 views

CVE-2024-4181 Command Injection in run-llama/llama_index

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

8.8CVSS9.2AI score0.02118EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/05/03 2:13 a.m.57 views

CVE-2023-42117 Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability

Exim Improper Neutralization of Special Elements Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the smtp...

8.1CVSS7.6AI score0.05673EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.57 views

CVE-2023-41230 D-Link DIR-3040 HTTP Request Processing Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability

D-Link DIR-3040 HTTP Request Processing Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is not required to exploit this...

7.5CVSS8.2AI score0.00759EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/01 5:29 a.m.57 views

CVE-2024-27013 tun: limit printing rate when illegal packet received by tun dev

In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal packet received by tun dev vhostworker will call tun call backs to receive packets. If too many illegal packets arrives, tundoread will keep dumping packet contents. When console is enabled, ...

6.4AI score0.00271EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/04/02 12:22 p.m.58 views

CVE-2024-2389 Flowmon Unauthenticated Command Injection Vulnerability

In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system command injection vulnerability has been identified. An unauthenticated user can gain entry to the system via the Flowmon management interface, allowing for the execution of arbitrary system commands...

10CVSS10AI score0.93901EPSS
Exploits7References2
Cvelist
Cvelist
added 2024/03/07 12:0 a.m.57 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

8AI score0.01699EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/02/20 6:30 p.m.57 views

CVE-2024-26132 Element Android can be asked to share internal files.

Element Android is an Android Matrix Client. A third-party malicious application installed on the same phone can force Element Android, version 0.91.0 through 1.6.12, to share files stored under the files directory in the application's private data directory to an arbitrary room. The impact of th...

4CVSS4.3AI score0.00387EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/19 11:24 a.m.57 views

CVE-2024-1346 Weak MySQL database root password in LaborOfficeFree

Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constants...

6.8CVSS6.7AI score0.00392EPSS
Exploits5References1
Cvelist
Cvelist
added 2024/02/14 8:45 p.m.57 views

CVE-2024-25618 External OpenID Connect Account Takeover by E-Mail Change in mastodon

Mastodon is a free, open-source social network server based on ActivityPub. Mastodon allows new identities from configured authentication providers CAS, SAML, OIDC to attach to existing local users with the same e-mail address. This results in a possible account takeover if the authentication...

4.2CVSS4.7AI score0.00477EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/02/13 6:2 p.m.57 views

CVE-2024-21410 Microsoft Exchange Server Elevation of Privilege Vulnerability

...

9.8CVSS9.7AI score0.12661EPSS
Exploits0References1
Total number of security vulnerabilities5000