Lucene search
K
CvelistMost viewed

364886 matches found

Cvelist
Cvelist
added 2019/10/08 6:41 p.m.57 views

CVE-2019-10969

Moxa EDR 810, all versions 5.1 and prior, allows an authenticated attacker to abuse the ping feature to execute unauthorized commands on the router, which may allow an attacker to perform remote code execution...

7.3AI score0.08747EPSS
Exploits4References2
Cvelist
Cvelist
added 2019/09/08 10:49 p.m.57 views

CVE-2019-16118

Cross site scripting XSS in the photo-gallery 10Web Photo Gallery plugin before 1.5.35 for WordPress exists via admin/controllers/Options.php...

6.2AI score0.05303EPSS
Exploits4References5
Cvelist
Cvelist
added 2019/04/10 8:1 p.m.57 views

CVE-2019-3943

MikroTik RouterOS versions Stable 6.43.12 and below, Long-term 6.42.12 and below, and Testing 6.44beta75 and below are vulnerable to an authenticated, remote directory traversal via the HTTP or Winbox interfaces. An authenticated, remote attack can use this vulnerability to read and write files...

8.1AI score0.03736EPSS
Exploits5References1
Cvelist
Cvelist
added 2019/04/04 5:51 p.m.57 views

CVE-2019-10867

An issue was discovered in Pimcore before 5.7.1. An attacker with classes permission can send a POST request to /admin/class/bulk-commit, which will make it possible to exploit the unserialize function when passing untrusted values in the data parameter to...

8.5AI score0.69356EPSS
Exploits5References6
Cvelist
Cvelist
added 2018/08/20 8:0 p.m.57 views

CVE-2018-1000225

Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Cross Site Scripting XSS vulnerability in cobbler-web that can result in Privilege escalation to admin.. This attack appear to...

7.6AI score0.01262EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/07/24 1:0 p.m.57 views

CVE-2018-10905

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.8CVSS7.4AI score0.00474EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/07/18 1:0 p.m.57 views

CVE-2018-3081

Vulnerability in the MySQL Client component of Oracle MySQL subcomponent: Client programs. Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via...

5.3AI score0.02444EPSS
Exploits0References11
Cvelist
Cvelist
added 2018/02/23 11:0 p.m.57 views

CVE-2018-1305

Security constraints defined by annotations of Servlets in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 were only applied once a Servlet had been loaded. Because security constraints defined in this way apply to the URL pattern and any URLs below that...

6.4AI score0.14737EPSS
Exploits2References35
Cvelist
Cvelist
added 2017/10/26 5:0 p.m.57 views

CVE-2017-12160

It was found that Keycloak oauth would permit an authenticated resource to obtain an access/refresh token pair from the authentication server, permitting indefinite usage in the case of permission revocation. An attacker on an already compromised resource could use this flaw to grant himself...

6.8AI score0.01887EPSS
Exploits0References4
Cvelist
Cvelist
added 2015/08/03 12:0 a.m.57 views

CVE-2015-5352

The x11openhelper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time...

4.2AI score0.05445EPSS
Exploits0References15
Cvelist
Cvelist
added 2015/04/10 2:0 p.m.57 views

CVE-2015-1842

The puppet manifests in the Red Hat openstack-puppet-modules package before 2014.2.13-2 uses a default password of CHANGEME for the pcsd daemon, which allows remote attackers to execute arbitrary shell commands via unspecified vectors...

7.7AI score0.05216EPSS
Exploits0References7
Cvelist
Cvelist
added 2014/10/08 7:0 p.m.57 views

CVE-2014-7230

The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a ProcessExecutionError by reading the log...

6AI score0.00469EPSS
Exploits0References6
Cvelist
Cvelist
added 2014/02/03 2:0 a.m.57 views

CVE-2011-4327

ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call...

6.2AI score0.00416EPSS
Exploits0References2
Cvelist
Cvelist
added 2013/11/12 1:0 a.m.57 views

CVE-2013-3918

The InformationCardSigninHelper Class ActiveX control in icardie.dll in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remo...

7.4AI score0.73872EPSS
Exploits3References7
Cvelist
Cvelist
added 2013/10/04 5:0 p.m.57 views

CVE-2013-2222

Multiple stack-based buffer overflows in GNU ZRTPCPP before 3.2.0 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted ZRTP Hello packet to the 1 ZRtp::findBestSASType, 2 ZRtp::findBestAuthLen, 3 ZRtp::findBestCipher, 4 ZRtp::findBestHash, or...

7.5AI score0.04744EPSS
Exploits1References8
Cvelist
Cvelist
added 2013/09/26 3:0 p.m.57 views

CVE-2013-4626

Cross-site scripting XSS vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php...

5.7AI score0.02058EPSS
Exploits3References5
Cvelist
Cvelist
added 2013/09/23 8:0 p.m.57 views

CVE-2013-4294

The 1 mamcache and 2 KVS token backends in OpenStack Identity Keystone Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token...

6.3AI score0.02342EPSS
Exploits0References6
Cvelist
Cvelist
added 2013/02/26 4:0 p.m.57 views

CVE-2012-3499

Multiple cross-site scripting XSS vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the 1 modimagemap, 2 modinfo, 3 modldap, 4 modproxyftp, and 5...

5.5AI score0.22913EPSS
Exploits2References39
Cvelist
Cvelist
added 2013/01/17 1:30 a.m.57 views

CVE-2013-0367

Unspecified vulnerability in the Server component in Oracle MySQL 5.5.28 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server Partition...

4.4AI score0.02547EPSS
Exploits0References6
Cvelist
Cvelist
added 2012/10/22 11:0 p.m.57 views

CVE-2012-4406

OpenStack Object Storage swift before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arbitrary code via a crafted pickle object...

9.5AI score0.06518EPSS
Exploits0References11
Cvelist
Cvelist
added 2010/07/28 7:32 p.m.57 views

CVE-2010-1452

The 1 modcache and 2 moddav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service process crash via a request that lacks a path...

5.3AI score0.2187EPSS
Exploits2References42
Cvelist
Cvelist
added 2010/05/11 11:0 p.m.57 views

CVE-2010-1481

Cross-site scripting XSS vulnerability in the table feature in PmWiki 2.2.15 allows remote authenticated users to inject arbitrary web script or HTML via the width attribute...

5.2AI score0.00869EPSS
Exploits3References4
Cvelist
Cvelist
added 2010/03/30 6:0 p.m.57 views

CVE-2010-0055

xar in Apple Mac OS X 10.5.8 does not properly validate package signatures, which allows attackers to have an unspecified impact via a modified package...

8.7AI score0.01981EPSS
Exploits0References3
Cvelist
Cvelist
added 2009/10/29 2:0 p.m.57 views

CVE-2009-3383

Multiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

10AI score0.04338EPSS
Exploits1References6
Cvelist
Cvelist
added 2009/08/18 10:0 a.m.57 views

CVE-2008-6997

Google Chrome 0.2.149.27 allows user-assisted remote attackers to cause a denial of service browser crash via an IMG tag with a long src attribute, which triggers the crash when the victim performs an "Inspect Element" action...

6.3AI score0.03676EPSS
Exploits1References5
Cvelist
Cvelist
added 2009/03/19 10:0 a.m.57 views

CVE-2009-0927

Stack-based buffer overflow in Adobe Reader and Adobe Acrobat 9 before 9.1, 8 before 8.1.3 , and 7 before 7.1.1 allows remote attackers to execute arbitrary code via a crafted argument to the getIcon method of a Collab object, a different vulnerability than CVE-2009-0658...

8AI score0.96632EPSS
Exploits14References16
Cvelist
Cvelist
added 2009/02/25 4:0 p.m.57 views

CVE-2009-0238

Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1; and Excel in Microsoft Office 2004 and 2008 for Mac allow remote attackers to execute arbitrary code via a...

7.3AI score0.43063EPSS
Exploits4References11
Cvelist
Cvelist
added 2026/07/02 6:35 p.m.56 views

CVE-2026-13743 Improper verification of cryptographic signature in CubeSpace CW0057 Reaction Wheel

CubeSpace CW0057 Reaction Wheel firmware versions prior to 5.0.20 are vulnerable to an Improper Verification of Cryptographic Signature vulnerability. This could allow an attacker with physical access to the product to upload arbitrary malicious firmware to the device without authentication...

5.2CVSS0.00116EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/29 8:47 p.m.56 views

CVE-2026-55957 Apache Tomcat: Authentication bypass with JNDIRealm and GSSAPI authenticated bind

Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to authenticate binds using GSSAPI allowed attackers to authenticate without provided the correct password. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.4, from 10.1.0-M1...

0.00462EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 10:48 p.m.56 views

CVE-2026-33560 Daktronics Controller Firmware Unrestricted Upload of File with Dangerous Type

The DMP-5000 file service exposes authenticated arbitrary file upload functionality. There are exposed endpoints which allows authenticated users to upload files of any type without validation. No file extension filtering or content inspection is enforced which allows executable binaries and...

8.4CVSS0.00459EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/22 6:22 p.m.56 views

CVE-2026-53779 WebP Server Go < 0.15.0 Path Traversal via Backslash Encoding on Windows

WebP Server Go through 0.14.4 contains a path traversal vulnerability on Windows that allows unauthenticated attackers to read files outside the configured IMGPATH directory by sending requests with percent-encoded backslashes %5C that bypass the path.Clean sanitization in handler/router.go...

8.7CVSS0.00408EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/10 1:37 a.m.56 views

CVE-2025-66276 QTS

QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later...

9.2CVSS0.0029EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:4 p.m.56 views

CVE-2026-47288 Windows Kerberos Key Distribution Center (KDC) Remote Code Execution

...

7.1CVSS0.00499EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 3:0 a.m.56 views

CVE-2026-11621 Dcat-Admin User Setting upload editorMDUpload unrestricted upload

A weakness has been identified in Dcat-Admin up to 2.2.3-beta. This impacts the function editorMDUpload of the file /admin/dcat-api/editor-md/upload of the component User Setting Page. This manipulation of the argument editormd-image-file causes unrestricted upload. The attack can be initiated...

5.8CVSS0.00218EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/08 3:46 p.m.56 views

CVE-2026-46305 staging: rtl8723bs: os_dep: avoid NULL pointer dereference in rtw_cbuf_alloc

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: osdep: avoid NULL pointer dereference in rtwcbufalloc The return value of kzallocflex is used without ensuring that the allocation succeeded, and the pointer is dereferenced unconditionally. Guard the access t...

0.001EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/08 5:45 a.m.56 views

CVE-2026-11493 Tenda AC15 Samba smb.conf weak password

A weakness has been identified in Tenda AC15 15.03.05.19. The impacted element is an unknown function of the file /etcro/smb.conf of the component Samba. Executing a manipulation can lead to weak password requirements. The attack is only possible within the local network. A high complexity level ...

5CVSS0.00224EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/08 5:30 a.m.56 views

CVE-2026-11492 D-Link DIR-823G vsftpd vsftpd.conf least privilege violation

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to...

5.3CVSS0.00511EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/06/01 9:14 p.m.56 views

CVE-2025-48595

In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.01714EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/01 5:23 p.m.56 views

CVE-2026-45727 CloakBrowser: Unauthenticated path traversal via fingerprint parameter in cloakserve leads to arbitrary directory deletion

CloakBrowser is a tool to bypass bot detection tests. Prior to version 0.3.28, the cloakserve CDP multiplexer uses the user-supplied fingerprint query parameter directly as a filesystem path component when creating Chrome profile directories. An unauthenticated attacker who can reach the cloakser...

8.8CVSS0.00475EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/01 7:52 a.m.56 views

CVE-2026-41017 Apache Airflow: JWT cookie missing Secure flag in JWTRefreshMiddleware behind HTTPS-terminating proxy

Apache Airflow's JWTRefreshMiddleware set the JWT auth cookie without the Secure flag, so deployments running the Airflow API server behind an HTTPS-terminating reverse proxy e.g. nginx / Envoy / a managed load balancer that terminates TLS and forwards plaintext to the API server, the default...

0.00265EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/01 7:19 a.m.56 views

CVE-2026-49270 Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: Durable Subscription Disclosure via Crafted BrokerInfo (OpenWire)

Exposure of Sensitive Information Through Metadata vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Brokers that are configured with a network connector with syncDurableSubs set to true, are vulnerable to an unauthenticated attacker who can receive a list of all...

0.00328EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/29 7:46 a.m.56 views

CVE-2026-6075 Media Library Assistant <= 3.35 - Cross-Site Request Forgery via Bulk Action Form

The Media Library Assistant plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.35 This is due to missing nonce verification on the bulk action handlers in the settings tab handlers. This makes it possible for unauthenticated attackers to trick an...

8.1CVSS0.00203EPSS
Exploits0References11
Cvelist
Cvelist
added 2026/05/27 12:57 p.m.56 views

CVE-2026-46058 media: amphion: Fix race between m2m job_abort and device_run

In the Linux kernel, the following vulnerability has been resolved: media: amphion: Fix race between m2m jobabort and devicerun Fix kernel panic caused by race condition where v4l2m2mctxrelease frees m2mctx while v4l2m2mtryrun is about to call devicerun with the same context. Race sequence:...

7.8CVSS0.00097EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/21 12:17 p.m.56 views

CVE-2026-43502 net/rds: handle zerocopy send cleanup before the message is queued

In the Linux kernel, the following vulnerability has been resolved: net/rds: handle zerocopy send cleanup before the message is queued A zerocopy send can fail after user pages have been pinned but before the message is attached to the sending socket. The purge path currently infers zerocopy stat...

7.8CVSS0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/20 9:18 a.m.56 views

CVE-2026-40622 Another 'ghost domain names' attack variant

NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vulnerability of the 'ghost domain names' family of attacks that could extend the ghost domain window by up to one cached TTL configured value. Similar to other 'ghost domain names' attacks, an adversary needs to control a ghost...

8.7CVSS0.00171EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/20 9:0 a.m.56 views

CVE-2026-9064 389-ds-base: 389-ds-base: unbounded ldap controls count in get_ldapmessage_controls_ext() causes cpu and heap amplification (remote dos)

A flaw was found in 389-ds-base. The getldapmessagecontrolsext function in the LDAP server does not enforce an upper bound on the number of controls per LDAP message. A remote, unauthenticated attacker can send a specially crafted LDAP request containing hundreds of thousands of minimal controls...

7.5CVSS0.00815EPSS
Exploits0References19
Cvelist
Cvelist
added 2026/05/19 5:0 a.m.56 views

CVE-2026-8813

This affects versions of the package exifreader before 4.39.0. A crafted image containing an ICC mluc tag can set an attacker-controlled record count together with a zero record size. During parsing, ExifReader repeatedly processes the same record and appends entries to an array without sufficien...

8.7CVSS0.00528EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/17 10:45 a.m.56 views

CVE-2026-8750 h2oai h2o-3 ImportFile API PersistNFS.java importFiles information disclosure

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

6.9CVSS0.00497EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/17 4:30 a.m.56 views

CVE-2026-8733 Investintech SlimPDFReader SlimPDFReader.exe sub_3B4610 stack-based overflow

A vulnerability was found in Investintech SlimPDFReader up to 2.0.13. Affected by this vulnerability is the function sub3B4610 of the file SlimPDFReader.exe. The manipulation results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been made public and...

7.5CVSS0.00261EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/15 9:44 p.m.56 views

CVE-2026-45299 Open WebUI: Stored Cross-Site Scripting In Profile Picture

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, the profileimageurl field on the user profile update form accepted arbitrary data: URI values without MIME-type validation, resulting in a XSS vulnerability. This vulnerability is...

5.4CVSS0.00199EPSS
Exploits0References1
Total number of security vulnerabilities5000