Lucene search
+L
CvelistMost viewed

367067 matches found

Cvelist
Cvelist
•added 2025/01/08 9:18 a.m.•173 views

CVE-2024-12854 Garden Gnome Package <= 2.3.0 - Authenticated (Author+) Arbitrary File Upload

The Garden Gnome Package plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the functionality that automatically extracts 'ggpkg' files that have been uploaded in all versions up to, and including, 2.3.0. This makes it possible for authenticated...

8.8CVSS0.00817EPSS
Exploits0References2
Cvelist
Cvelist
•added 2023/11/28 8:57 p.m.•173 views

CVE-2023-49092 RustCrypto/RSA vulnerable to a Marvin Attack via key recovery through timing sidechannels

RustCrypto/RSA is a portable RSA implementation in pure Rust. Due to a non-constant-time implementation, information about the private key is leaked through timing information which is observable over the network. An attacker may be able to use that information to recover the key. There is...

5.9CVSS5.6AI score0.00605EPSS
Exploits0References2
Cvelist
Cvelist
•added 2021/09/29 3:38 p.m.•173 views

CVE-2021-39842 Adobe Acrobat Reader DC messageHandler.OnMessage Use-After-Free Vulnerability

Acrobat Reader DC versions 2021.005.20060 and earlier, 2020.004.30006 and earlier and 2017.011.30199 and earlier are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in...

7.8CVSS7.9AI score0.16828EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/08/24 5:50 p.m.•173 views

CVE-2021-28554 Adobe Acrobat Reader DC Path Parsing Out-Of-Bounds Read could lead to arbitrary code execution

Acrobat Reader DC versions versions 2021.001.20155 and earlier, 2020.001.30025 and earlier and 2017.011.30196 and earlier are affected by an Out-of-bounds Read vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the...

7.8CVSS7.8AI score0.46031EPSS
Exploits0References1
Cvelist
Cvelist
•added 2016/03/24 1:0 a.m.•173 views

CVE-2016-1755

The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app, a different vulnerability than CVE-2016-1754...

6.5AI score0.05136EPSS
Exploits1References10
Cvelist
Cvelist
•added 2026/04/09 6:0 a.m.•172 views

CVE-2026-5851 Totolink A7100RU CGI cstecgi.cgi setUPnPCfg os command injection

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313b20191024. This impacts the function setUPnPCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument enable results in os command injection. The attack can be executed remotely. The exploi...

10CVSS0.14128EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/04/09 5:45 a.m.•172 views

CVE-2026-5850 Totolink A7100RU CGI cstecgi.cgi setVpnPassCfg os command injection

A vulnerability was identified in Totolink A7100RU 7.4cu.2313b20191024. This affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument pptpPassThru leads to os command injection. Remote exploitation of the attack is possible...

10CVSS0.15952EPSS
Exploits0References5
Cvelist
Cvelist
•added 2022/07/28 12:0 a.m.•172 views

CVE-2022-2479

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via a crafted HTML page...

5.3AI score0.0071EPSS
Exploits0References5
Cvelist
Cvelist
•added 2021/09/29 3:38 p.m.•172 views

CVE-2021-39843 Adobe Acrobat Reader XObject Out-of-Bound Write Vulnerability

Acrobat Reader DC versions 2021.005.20060 and earlier, 2020.004.30006 and earlier and 2017.011.30199 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...

7.8CVSS7.9AI score0.76055EPSS
Exploits0References1
Cvelist
Cvelist
•added 2021/08/24 5:51 p.m.•172 views

CVE-2021-28631 Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability

Acrobat Reader DC versions versions 2021.001.20155 and earlier, 2020.001.30025 and earlier and 2017.011.30196 and earlier are affected by an Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the curren...

7.8CVSS7.8AI score0.04709EPSS
Exploits0References1
Cvelist
Cvelist
•added 2014/11/16 12:0 a.m.•172 views

CVE-2014-2682

Zend Framework 1 ZF1 before 1.12.4, Zend Framework 2 before 2.1.6 and 2.2.x before 2.2.6, ZendOpenId, ZendRest, ZendServiceAudioScrobbler, ZendServiceNirvanix, ZendServiceSlideShare, ZendServiceTechnorati, and ZendServiceWindowsAzure before 2.0.2, ZendServiceAmazon before 2.0.3, and ZendServiceAp...

9.6AI score0.02164EPSS
Exploits0References6
Cvelist
Cvelist
•added 2010/09/03 7:0 p.m.•172 views

CVE-2010-2240

The doanonymouspage function in mm/memory.c in the Linux kernel before 2.6.27.52, 2.6.32.x before 2.6.32.19, 2.6.34.x before 2.6.34.4, and 2.6.35.x before 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent attackers to execute arbitrary code by writing to t...

7.1AI score0.00716EPSS
Exploits1References21
Cvelist
Cvelist
•added 2025/12/11 11:36 p.m.•171 views

CVE-2025-67779

It was found that the fix addressing CVE-2025-55184 in React Server Components was incomplete and does not prevent a denial of service attack in a specific case. React Server Components versions 19.0.2, 19.1.3 and 19.2.2 are affected, allowing unsafe deserialization of payloads from HTTP requests...

7.5CVSS0.19152EPSS
Exploits3References2
Cvelist
Cvelist
•added 2021/06/15 12:0 a.m.•171 views

CVE-2021-31618 NULL pointer dereference on specially crafted HTTP/2 request

Apache HTTP Server protocol handler for the HTTP/2 protocol checks received request headers against the size limitations as configured for the server and used for the HTTP/1 protocol as well. On violation of these restrictions and HTTP response is sent to the client with a status code indicating...

8.8AI score0.51208EPSS
Exploits0References13
Cvelist
Cvelist
•added 2017/07/23 3:0 a.m.•171 views

CVE-2017-11528

The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service memory leak via a crafted file...

6.8AI score0.01876EPSS
Exploits0References2
Cvelist
Cvelist
•added 2026/05/12 7:50 p.m.•170 views

CVE-2026-34650 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.15933EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/12 7:50 p.m.•170 views

CVE-2026-34648 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.2255EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/23 7:45 p.m.•170 views

CVE-2026-25874 LeRobot Unsafe Deserialization Remote Code Execution via gRPC

LeRobot through 0.5.1 contains an unsafe deserialization vulnerability in the async inference pipeline where pickle.loads is used to deserialize data received over unauthenticated gRPC channels without TLS in the policy server and robot client components. An unauthenticated network-reachable...

9.3CVSS0.15547EPSS
Exploits1References5
Cvelist
Cvelist
•added 2026/01/18 4:2 p.m.•170 views

CVE-2026-1125 D-Link DIR-823X set_wifidog_settings sub_412E7C command injection

A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub412E7C of the file /goform/setwifidogsettings. Executing a manipulation of the argument wdenable can lead to command injection. The attack can be executed remotely. The exploit has been made...

7.5CVSS0.1438EPSS
Exploits1References6
Cvelist
Cvelist
•added 2021/09/27 3:42 p.m.•170 views

CVE-2021-39823 svg-native-viewer Heap Buffer overflow Vulnerability

Adobe svg-native-viewer 8182d14dfad5d1e10f53ed830328d7d9a3cfa96d and earlier versions are affected by a heap buffer overflow vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is...

7.8CVSS8.2AI score0.04115EPSS
Exploits0References1
Cvelist
Cvelist
•added 2016/03/24 1:0 a.m.•170 views

CVE-2016-1754

The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app, a different vulnerability than CVE-2016-1755...

6.5AI score0.01485EPSS
Exploits0References9
Cvelist
Cvelist
•added 2023/03/17 12:0 a.m.•169 views

CVE-2023-28531

ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9...

9.5AI score0.02267EPSS
Exploits0References5
Cvelist
Cvelist
•added 2017/07/23 3:0 a.m.•169 views

CVE-2017-11524

The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service assertion failure and application exit via a crafted file...

6.8AI score0.03183EPSS
Exploits1References3
Cvelist
Cvelist
•added 2013/10/01 7:0 p.m.•169 views

CVE-2013-5580

The 1 ConnStartLogin and 2 cbReadResolverResult functions in conn.c in ngIRCd 18 through 20.2, when the configuration option NoticeAuth is enabled, does not properly handle the return code for the HandleWrite function, which allows remote attackers to cause a denial of service assertion failure a...

6.7AI score0.02322EPSS
Exploits0References7
Cvelist
Cvelist
•added 2025/12/09 5:20 p.m.•168 views

CVE-2025-59719

An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message...

9.8CVSS0.2405EPSS
Exploits1References1
Cvelist
Cvelist
•added 2024/06/10 9:23 p.m.•168 views

CVE-2024-35242 Composer vulnerable to command injection via malicious git/hg branch names

Composer is a dependency manager for PHP. On the 2.x branch prior to versions 2.2.24 and 2.7.7, the composer install command running inside a git/hg repository which has specially crafted branch names can lead to command injection. This requires cloning untrusted repositories. Patches are availab...

8.8CVSS0.03282EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/05/05 9:29 p.m.•167 views

CVE-2026-28780 Apache HTTP Server: buffer overflow in mod_proxy_ajp via ajp_msg_check_header()

Heap-based Buffer Overflow vulnerability in modproxyajp of Apache HTTP Server. If modproxyajp connects to a malicious AJP server this AJP server can send a malicious AJP message back to modproxyajp and cause it to write 4 attacker controlled bytes after the end of a heap based buffer. This issue...

0.01376EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/21 7:20 p.m.•167 views

CVE-2026-40372 ASP.NET Core Elevation of Privilege Vulnerability

...

9.1CVSS0.11205EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/02/13 3:39 a.m.•167 views

CVE-2026-25108

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command...

8.8CVSS0.04974EPSS
Exploits0References2
Cvelist
Cvelist
•added 2021/06/28 1:45 p.m.•167 views

CVE-2021-28562 Adobe Acrobat Reader use-after-free could lead to arbitrary code execution

Acrobat Reader DC versions versions 2021.001.20150 and earlier, 2020.001.30020 and earlier and 2017.011.30194 and earlier are affected by a Use After Free vulnerability when executing search queries through Javascript. An unauthenticated attacker could leverage this vulnerability to achieve...

8.8CVSS8.9AI score0.05117EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/03/30 7:7 p.m.•166 views

CVE-2026-21710

A flaw in Node.js HTTP request handling causes an uncaught TypeError when a request is received with a header named proto and the application accesses req.headersDistinct. When this occurs, dest"proto" resolves to Object.prototype rather than undefined, causing .push to be called on a non-array...

7.5CVSS0.26356EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/03/11 12:32 p.m.•166 views

CVE-2026-3943 H3C ACG1000-AK230 aaa_portal_auth_local_submit command injection

A vulnerability was found in H3C ACG1000-AK230 up to 20260227. This affects an unknown part of the file /webui/?aaaportalauthlocalsubmit. The manipulation of the argument suffix results in command injection. The attack can be launched remotely. The exploit has been made public and could be used...

7.5CVSS0.40802EPSS
Exploits0References4
Cvelist
Cvelist
•added 2026/01/06 9:32 p.m.•166 views

CVE-2025-15471 TRENDnet TEW-713RE formFSrvX os command injection

A vulnerability was detected in TRENDnet TEW-713RE 1.02. The impacted element is an unknown function of the file /goformX/formFSrvX. The manipulation of the argument SZCMD results in os command injection. It is possible to launch the attack remotely. The exploit is now public and may be used. The...

10CVSS0.12113EPSS
Exploits1References4
Cvelist
Cvelist
•added 2025/04/18 12:0 a.m.•166 views

CVE-2025-28242

Improper session management in the /loginok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack...

0.01769EPSS
Exploits0References1
Cvelist
Cvelist
•added 2024/09/10 4:54 p.m.•166 views

CVE-2024-43461 Windows MSHTML Platform Spoofing Vulnerability

...

8.8CVSS0.51883EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/17 10:30 a.m.•165 views

CVE-2026-6483 Wavlink WL-WN530H4 internet.cgi snprintf os command injection

A vulnerability was found in Wavlink WL-WN530H4 20220721. This vulnerability affects the function strcat/snprintf of the file /cgi-bin/internet.cgi. The manipulation results in os command injection. It is possible to launch the attack remotely. The exploit has been made public and could be used...

8.6CVSS0.14131EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/04/09 6:30 a.m.•165 views

CVE-2026-5853 Totolink A7100RU CGI cstecgi.cgi setIpv6LanCfg os command injection

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313b20191024. Affected by this vulnerability is the function setIpv6LanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Such manipulation of the argument addrPrefixLen leads to os command injection. The attack...

10CVSS0.14277EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/04/09 6:15 a.m.•165 views

CVE-2026-5852 Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command injection

A weakness has been identified in Totolink A7100RU 7.4cu.2313b20191024. Affected is the function setIptvCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. This manipulation of the argument igmpVer causes os command injection. The attack is possible to be carried out remotely. The...

10CVSS0.14277EPSS
Exploits0References5
Cvelist
Cvelist
•added 2025/12/23 10:32 p.m.•165 views

CVE-2025-15048 Tenda WH450 HTTP Request CheckTools command injection

A vulnerability was determined in Tenda WH450 1.0.0.18. This impacts an unknown function of the file /goform/CheckTools of the component HTTP Request Handler. Executing a manipulation of the argument ipaddress can lead to command injection. The attack can be launched remotely. The exploit has bee...

7.5CVSS0.11343EPSS
Exploits1References6
Cvelist
Cvelist
•added 2025/12/15 4:32 a.m.•165 views

CVE-2025-14704 Shiguangwu sgwbox N3 API eshell path traversal

A vulnerability was found in Shiguangwu sgwbox N3 2.0.25. The impacted element is an unknown function of the file /eshell of the component API. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. The vendor...

7.5CVSS0.11219EPSS
Exploits1References4
Cvelist
Cvelist
•added 2024/11/27 12:4 p.m.•165 views

CVE-2024-42327 SQL injection in user.get API

A non-admin user account on the Zabbix frontend with the default User role, or with any other role that gives API access can exploit this vulnerability. An SQLi exists in the CUser class in the addRelatedObjects function, this function is being called from the CUser.get function which is availabl...

9.9CVSS0.78831EPSS
Exploits13References1
Cvelist
Cvelist
•added 2023/04/18 10:53 p.m.•165 views

CVE-2023-29527 Code injection from account through AWM view sheet in xwiki platform

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions a user without script or programming right may edit a user profile or any other document with the wiki editor and add groovy script content. Viewing the document after...

9.9CVSS9.8AI score0.0109EPSS
Exploits1References2
Cvelist
Cvelist
•added 2021/10/15 2:22 p.m.•165 views

CVE-2021-40731 Adobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Adobe Acrobat Reader DC version 21.007.20095 and earlier, 21.007.20096 and earlier, 20.004.30015 and earlier, and 17.011.30202 and earlier is affected by an out-of-bounds write vulnerability when parsing a crafted JPEG2000 file, which could result in arbitrary code execution in the context of the...

7.8CVSS7.9AI score0.08005EPSS
Exploits0References1
Cvelist
Cvelist
•added 2020/08/10 5:43 p.m.•165 views

CVE-2020-15658

The code for downloading files did not properly take care of special characters, which led to an attacker being able to cut off the file ending at an earlier position, leading to a different file type being downloaded than shown in the dialog. This vulnerability affects Firefox ESR 78.1, Firefox...

6.6AI score0.01202EPSS
Exploits0References6
Cvelist
Cvelist
•added 2013/05/02 2:0 p.m.•165 views

CVE-2012-5657

The 1 ZendFeedRss and 2 ZendFeedAtom classes in ZendFeed in Zend Framework 1.11.x before 1.11.15 and 1.12.x before 1.12.1 allow remote attackers to read arbitrary files, send HTTP requests to intranet servers, and possibly cause a denial of service CPU and memory consumption via an XML External...

9.3AI score0.01705EPSS
Exploits0References6
Cvelist
Cvelist
•added 2026/06/08 3:7 p.m.•164 views

CVE-2026-29167 Apache HTTP Server: mod_ldap per-dir use-after-free

Use After Free vulnerability in Apache HTTP Server with modldap in per-directory configuration This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

0.00663EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/05/12 7:50 p.m.•164 views

CVE-2026-34649 Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to exhaust system resources,...

7.5CVSS0.14383EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/04/03 5:3 p.m.•164 views

CVE-2026-0545 Missing Authentication for Critical Function in mlflow/mlflow

In mlflow/mlflow, the FastAPI job endpoints under /ajax-api/3.0/jobs/ are not protected by authentication or authorization when the basic-auth app is enabled. This vulnerability affects the latest version of the repository. If job execution is enabled MLFLOWSERVERENABLEJOBEXECUTION=true and any j...

9.1CVSS0.04392EPSS
Exploits1References1
Cvelist
Cvelist
•added 2026/03/07 5:8 a.m.•164 views

CVE-2026-30822 Flowise: Mass Assignment in `/api/v1/leads` Endpoint

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to version 3.0.13, unauthenticated users can inject arbitrary values into internal database fields when creating leads. This issue has been patched in version 3.0.13...

7.7CVSS0.12902EPSS
Exploits1References2
Cvelist
Cvelist
•added 2025/12/16 6:18 p.m.•164 views

CVE-2025-68154 Command Injection in fsSize() on Windows

systeminformation is a System and OS information library for node.js. In versions prior to 5.27.14, the fsSize function in systeminformation is vulnerable to OS command injection on Windows systems. The optional drive parameter is directly concatenated into a PowerShell command without...

8.1CVSS0.13081EPSS
Exploits1References2
Total number of security vulnerabilities5000