Lucene search
K
NvdMost viewed

364799 matches found

NVD
NVD
added 2026/06/01 9:16 a.m.66 views

CVE-2026-46764

The Event Log detail endpoint GET /api/v2/eventLogs/eventlogid in Apache Airflow fetched audit-log rows directly by numeric ID after only the generic Audit Log permission check, while the collection endpoint GET /api/v2/eventLogs applied per-Dag scoping. An authenticated UI/API user with audit-lo...

4.3CVSS0.00352EPSS
Exploits0References3
NVD
NVD
added 2026/05/15 9:16 p.m.66 views

CVE-2026-45672

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.12, the /api/v1/utils/code/execute endpoint executes arbitrary Python code via Jupyter for any verified user, even when the admin has set ENABLECODEEXECUTION=false. The feature gate is...

8.8CVSS0.00406EPSS
Exploits2References1
NVD
NVD
added 2026/05/06 1:16 p.m.66 views

CVE-2026-40562

Gazelle versions through 0.49 for Perl allows HTTP Request Smuggling via Improper Header Precedence. Gazelle incorrectly prioritizes "Content-Length" over "Transfer-Encoding: chunked" when both headers are present in an HTTP request. Per RFC 7230 3.3.3, Transfer-Encoding must take precedence. An...

7.5CVSS0.00319EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 2:16 p.m.66 views

CVE-2026-31717

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate owner of durable handle on reconnect Currently, ksmbd does not verify if the user attempting to reconnect to a durable handle is the same user who originally opened the file. This allows any authenticated user to...

8.8CVSS0.00437EPSS
Exploits1References5
NVD
NVD
added 2026/04/21 5:16 p.m.66 views

CVE-2026-40161

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.2, 1.3.4, 1.6.2, 1.9.3, and 1.11.1, the Tekton Pipelines git resolver in API mode sends the system-configured Git API token to a user-controlled serverURL...

7.7CVSS0.0026EPSS
Exploits0References3
NVD
NVD
added 2026/03/30 7:16 p.m.66 views

CVE-2026-34714

Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configuration, because %expr injection occurs with tabpanel lacking PMLE...

9.2CVSS0.00588EPSS
Exploits0References10
NVD
NVD
added 2026/01/07 5:16 p.m.66 views

CVE-2026-20026

Multiple Cisco products are affected by a vulnerability in the processing of DCE/RPC requests that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to leak sensitive information or to restart, resulting in an interruption of packet inspection. This vulnerabili...

5.8CVSS0.00634EPSS
Exploits0References1
NVD
NVD
added 2025/02/25 8:15 p.m.66 views

CVE-2025-27146

matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability h...

4.3CVSS0.00354EPSS
Exploits0References2
NVD
NVD
added 2024/11/18 2:15 a.m.66 views

CVE-2024-11306

A vulnerability, which was classified as critical, has been found in Altenergy Power Control Software up to 20241108. This issue affects some unknown processing of the file /index.php/display/database/. The manipulation leads to improper authorization. The attack may be initiated remotely. The...

6.9CVSS0.00534EPSS
Exploits0References4
NVD
NVD
added 2024/11/13 2:15 a.m.66 views

CVE-2024-10038

The WP-Strava plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and...

6.1CVSS0.00345EPSS
Exploits0References2
NVD
NVD
added 2024/10/27 12:15 p.m.66 views

CVE-2024-10415

A vulnerability has been found in code-projects Blood Bank Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /file/accept.php. The manipulation of the argument reqid leads to sql injection. The attack can be initiated remotely. The exploit has...

8.8CVSS0.00563EPSS
Exploits1References5
NVD
NVD
added 2024/10/07 9:15 p.m.66 views

CVE-2024-45060

PHPSpreadsheet is a pure PHP library for reading and writing spreadsheet files. One of the sample scripts in PhpSpreadsheet is susceptible to a cross-site scripting XSS vulnerability due to improper handling of input where a number is expected leading to formula injection. The code in in...

7.1CVSS0.00466EPSS
Exploits1References2
NVD
NVD
added 2024/10/04 8:15 p.m.66 views

CVE-2024-9054

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection', Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Microchip TimeProvider 4100 Configuration modules allows Command Injection.This issue affects TimeProvider 4100: from 1.0 before...

8.8CVSS0.14609EPSS
Exploits3References2
NVD
NVD
added 2024/07/24 8:15 a.m.66 views

CVE-2024-39676

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Pinot. This issue affects Apache Pinot: from 0.1 before 1.0.0. Users are recommended to upgrade to version 1.0.0 and configure RBAC, which fixes the issue. Details: When using a request to path “/appconfigs” to the...

7.5CVSS0.00846EPSS
Exploits0References2
NVD
NVD
added 2024/07/23 10:15 p.m.66 views

CVE-2024-41656

Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 24.7.1, an unsanitized payload sent by an Integration platform integration allows storing arbitrary HTML tags on the Sentry side with the subsequent rendering them on the Issues page...

7.1CVSS0.00467EPSS
Exploits0References4
NVD
NVD
added 2024/07/09 5:15 p.m.66 views

CVE-2024-38094

Microsoft SharePoint Remote Code Execution Vulnerability...

7.2CVSS0.49979EPSS
Exploits1References2
NVD
NVD
added 2024/06/17 8:15 p.m.66 views

CVE-2024-37902

DeepJavaLibraryDJL is an Engine-Agnostic Deep Learning Framework in Java. DJL versions 0.1.0 through 0.27.0 do not prevent absolute path archived artifacts from inserting archived files directly into the system, overwriting system files. This is fixed in DJL 0.28.0 and patched in DJL Large Model...

10CVSS0.00655EPSS
Exploits0References2
NVD
NVD
added 2024/05/27 1:15 p.m.66 views

CVE-2024-5409

RhinOS 3.0-1190 is vulnerable to an XSS via the "tamper" parameter in /admin/lib/phpthumb/phpthumb.php. An attacker could create a malicious URL and send it to a victim to obtain their session details...

7.1CVSS6.5AI score0.0028EPSS
Exploits0References2
NVD
NVD
added 2024/05/18 6:15 a.m.66 views

CVE-2024-3812

The Salient Core plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0.7 via the 'nectaricon' shortcode 'iconlinea' attribute. This makes it possible for authenticated attackers, with contributor-level and above permissions, to include and execute...

7.5CVSS7.8AI score0.00632EPSS
Exploits0References2
NVD
NVD
added 2024/04/30 11:15 p.m.66 views

CVE-2024-4192

Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7.7AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2024/03/28 1:15 p.m.66 views

CVE-2024-29896

Astro-Shield is a library to compute the subresource integrity hashes for your JS scripts and CSS stylesheets. When automated CSP headers generation for SSR content is enabled and the web application serves content that can be partially controlled by external users, then it is possible that the C...

7.5CVSS7.5AI score0.00591EPSS
Exploits0References2
NVD
NVD
added 2024/03/27 3:15 a.m.66 views

CVE-2024-25391

A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2...

8.4CVSS7.1AI score0.00323EPSS
Exploits0References6
NVD
NVD
added 2023/12/04 11:15 p.m.66 views

CVE-2023-21164

In DevmemIntMapPMR of devicememserver.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS0.00414EPSS
Exploits0References1
NVD
NVD
added 2023/10/03 5:15 a.m.66 views

CVE-2023-26150

Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication such that it is possible to access Address Space without encryption and authentication. Note: This issue is a result of missing checks for services that require an active session...

7.5CVSS6.8AI score0.00454EPSS
Exploits1References7
NVD
NVD
added 2023/08/24 11:15 p.m.66 views

CVE-2023-32079

Netmaker makes networks with WireGuard. A Mass assignment vulnerability was found in versions prior to 0.17.1 and 0.18.6 that allows a non-admin user to escalate privileges to those of an admin user. The issue is patched in 0.17.1 and fixed in 0.18.6. If Users are using 0.17.1, they should run...

8.8CVSS8.7AI score0.00711EPSS
Exploits0References1
NVD
NVD
added 2023/07/13 3:15 a.m.66 views

CVE-2023-3342

The User Registration plugin for WordPress is vulnerable to arbitrary file uploads due to a hardcoded encryption key and missing file type validation on the 'uruploadprofilepic' function in versions up to, and including, 3.0.2. This makes it possible for authenticated attackers with...

9.9CVSS0.01454EPSS
Exploits2References5
NVD
NVD
added 2023/07/10 4:15 p.m.66 views

CVE-2023-23993

Cross-Site Request Forgery CSRF vulnerability in LionScripts.Com LionScripts: IP Blocker Lite plugin = 11.1.1 versions...

8.8CVSS6.5AI score0.00303EPSS
Exploits0References1
NVD
NVD
added 2023/05/29 12:15 a.m.66 views

CVE-2023-30350

FS S3900-24T4S devices allow authenticated attackers with guest access to escalate their privileges and reset the admin password...

8.8CVSS8.8AI score0.05343EPSS
Exploits4References1
NVD
NVD
added 2023/05/09 10:15 p.m.66 views

CVE-2023-28128

An unrestricted upload of file with dangerous type vulnerability exists in Avalanche versions 6.3.x and below that could allow an attacker to achieve a remove code execution...

7.2CVSS7.1AI score0.84697EPSS
Exploits3References3
NVD
NVD
added 2023/04/20 6:15 p.m.66 views

CVE-2023-29528

XWiki Commons are technical libraries common to several other top level XWiki projects. The "restricted" mode of the HTML cleaner in XWiki, introduced in version 4.2-milestone-1 and massively improved in version 14.6-rc-1, allowed the injection of arbitrary HTML code and thus cross-site scripting...

9CVSS8.9AI score0.01277EPSS
Exploits1References4
NVD
NVD
added 2023/04/19 6:15 p.m.66 views

CVE-2023-30612

Cloud hypervisor is a Virtual Machine Monitor for Cloud workloads. This vulnerability allows users to close arbitrary open file descriptors in the Cloud Hypervisor process via sending malicious HTTP request through the HTTP API socket. As a result, the Cloud Hypervisor process can be easily...

4.9CVSS4.7AI score0.0036EPSS
Exploits0References5
NVD
NVD
added 2022/12/18 10:15 p.m.66 views

CVE-2021-4257

A vulnerability was found in ctrlo lenio. It has been declared as problematic. This vulnerability affects unknown code of the file views/task.tt of the component Task Handler. The manipulation of the argument site.org.name/check.name/task.tasktype.name/task.name leads to cross site scripting. The...

6.1CVSS0.00385EPSS
Exploits0References2
NVD
NVD
added 2022/10/11 11:15 a.m.66 views

CVE-2022-38371

A vulnerability has been identified in APOGEE MBC PPC BACnet All versions, APOGEE MBC PPC P2 Ethernet All versions, APOGEE MEC PPC BACnet All versions, APOGEE MEC PPC P2 Ethernet All versions, APOGEE PXC Compact BACnet All versions = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 = V2.3 =...

8.7CVSS0.01262EPSS
Exploits0References4
NVD
NVD
added 2022/08/15 11:21 a.m.66 views

CVE-2022-36007

Venice is a Clojure inspired sandboxed Lisp dialect with excellent Java interoperability. A partial path traversal issue exists within the functions load-file and load-resource. These functions can be limited to load files from a list of load paths. Assuming Venice has been configured with the lo...

6.1CVSS0.00414EPSS
Exploits1References4
NVD
NVD
added 2022/07/22 4:15 p.m.66 views

CVE-2022-2511

Cross-site Scripting XSS vulnerability in the "commonuserinterface" component of BlueSpice allows an attacker to inject arbitrary HTML into a page using the title parameter of the call URL...

6.1CVSS0.0039EPSS
Exploits0References1
NVD
NVD
added 2021/11/19 4:15 p.m.66 views

CVE-2021-22053

Applications using both spring-cloud-netflix-hystrix-dashboard and spring-boot-starter-thymeleaf expose a way to execute code submitted within the request URI path during the resolution of view templates. When a request is made at /hystrix/monitor;user-provided data, the path elements following...

8.8CVSS0.13035EPSS
Exploits0References1
NVD
NVD
added 2021/10/04 6:15 a.m.66 views

CVE-2021-40325

Cobbler before 3.3.0 allows authorization bypass for modification of settings...

7.5CVSS0.01307EPSS
Exploits0References2
NVD
NVD
added 2021/06/22 7:15 p.m.66 views

CVE-2021-22377

There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by sending malicious...

7.2CVSS0.00917EPSS
Exploits0References1
NVD
NVD
added 2021/06/22 11:15 a.m.66 views

CVE-2021-0556

In getBlockSum of fastcodemb.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

5.5CVSS0.00121EPSS
Exploits0References1
NVD
NVD
added 2021/06/18 10:15 p.m.66 views

CVE-2021-33186

SerenityOS in test-crypto.cpp contains a stack buffer overflow which could allow attackers to obtain sensitive information...

7.5CVSS0.01019EPSS
Exploits0References1
NVD
NVD
added 2021/05/24 6:15 p.m.66 views

CVE-2020-20907

MetInfo 7.0 beta is affected by a file modification vulnerability. Attackers can delete and modify ini files in app/system/language/admin/languagegeneral.class.php and app/system/include/function/file.func.php...

9.1CVSS0.02201EPSS
Exploits1References3
NVD
NVD
added 2021/01/11 10:15 p.m.66 views

CVE-2021-0303

In dispatchGraphTerminationMessage of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...

7CVSS7.1AI score0.00119EPSS
Exploits0References1
NVD
NVD
added 2020/02/17 8:15 p.m.66 views

CVE-2019-19325

SilverStripe through 4.4.x before 4.4.5 and 4.5.x before 4.5.2 allows Reflected XSS on the login form and custom forms. Silverstripe Forms allow malicious HTML or JavaScript to be inserted through non-scalar FormField attributes, which allows performing XSS Cross-Site Scripting on some forms buil...

6.1CVSS6AI score0.00685EPSS
Exploits0References1
NVD
NVD
added 2006/05/19 11:2 p.m.66 views

CVE-2006-2483

PHP remote file inclusion vulnerability in cartcontent.php in Squirrelcart 2.2.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the cartisproot parameter...

6.4CVSS7.6AI score0.07538EPSS
Exploits1References7
NVD
NVD
added 2026/06/02 4:16 p.m.65 views

CVE-2026-44367

Klaw is a self-service Apache Kafka Topic Management/Governance tool/portal. Prior to version 2.10.4, a vulnerability exists in the user registration and login mechanisms due to inconsistent handling of username case sensitivity, leading to a targeted Denial of Service DoS and complete account...

2.7CVSS0.00236EPSS
Exploits0References2
NVD
NVD
added 2026/05/27 9:16 a.m.65 views

CVE-2026-40827

A high privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the RemoveRequest function due to improper neutralization of special elements in a SQL DELETE command allowing for reading the whole database and deleting entries in a non critical table. This can resu...

7CVSS0.00295EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 4:16 p.m.65 views

CVE-2026-43484

In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid bitfield RMW for claim/retune flags Move claimed and retune control flags out of the bitfield word to avoid unrelated RMW side effects in asynchronous contexts. The host-claimed bit shared a word with retune flag...

5.5CVSS0.00114EPSS
Exploits0References7
NVD
NVD
added 2026/05/09 11:16 p.m.65 views

CVE-2026-8212

A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by this vulnerability is the function SWSDfldsrch of the file frmts/hdf4/hdf-eos/SWapi.c. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The exploit has been published and may be...

5.5CVSS0.00205EPSS
Exploits1References8
NVD
NVD
added 2025/09/22 2:15 p.m.65 views

CVE-2025-51006

Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dltlinuxsll2cleanup function in plugins/dltlinuxsll2/linuxsll2.c. This vulnerability is triggered when tcpeditdltcleanup indirectly invokes the cleanup routine multiple times on the same memory region. By...

7.8CVSS0.00172EPSS
Exploits1References2
NVD
NVD
added 2025/06/03 3:15 p.m.65 views

CVE-2025-46548

If you enable Basic Authentication in Pekko Management using the Java DSL, the authenticator may not be properly applied. Users that rely on authentication instead of making sure the Management API ports are only available to trusted users are recommended to upgrade to version 1.1.1, which fixes...

6.5CVSS0.00655EPSS
Exploits1References4
Total number of security vulnerabilities5000