Lucene search
K
NvdMost viewed

363363 matches found

NVD
NVD
•added 2007/03/02 9:18 p.m.•308 views

CVE-2007-1192

Thomas R. Pasawicz HyperBook Guestbook 1.30 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an admin password hash via a direct request for data/gbconfiguration.dat...

5CVSS6.5AI score0.02456EPSS
Exploits1References4
NVD
NVD
•added 2024/06/11 5:15 p.m.•258 views

CVE-2024-30078

Windows Wi-Fi Driver Remote Code Execution Vulnerability...

8.8CVSS0.05158EPSS
Exploits0References3
NVD
NVD
•added 2026/06/10 6:16 p.m.•252 views

CVE-2026-20253

In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar service endpoint lacks authentication controls,...

9.8CVSS0.88171EPSS
Exploits5References3
NVD
NVD
•added 2025/03/11 2:15 p.m.•245 views

CVE-2025-27363

An out of bounds write exists in FreeType versions 2.13.0 and below newer versions of FreeType are not vulnerable when attempting to parse font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long and then adds a...

8.1CVSS0.26049EPSS
Exploits1References17
NVD
NVD
•added 2004/12/31 5:0 a.m.•214 views

CVE-2004-2756

Cross-site scripting XSS vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the 1 forum and 2 topicid parameters...

4.3CVSS5.8AI score0.02205EPSS
Exploits0References2
NVD
NVD
•added 2024/07/01 1:15 p.m.•185 views

CVE-2024-6387

A security regression CVE-2006-5051 was discovered in OpenSSH's server sshd. There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period...

8.1CVSS0.99506EPSS
Exploits68References81
NVD
NVD
•added 2010/08/11 6:47 p.m.•168 views

CVE-2010-2555

The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly determine the length of strings in the registry, which allows local users to gain privileges or cause a denial of service memory corruption via vectors...

6.8CVSS6.5AI score0.0164EPSS
Exploits0References3
NVD
NVD
•added 2020/12/03 5:15 p.m.•167 views

CVE-2020-14351

A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integri...

7.8CVSS7.7AI score0.00302EPSS
Exploits0References3
NVD
NVD
•added 2019/07/10 7:15 p.m.•167 views

CVE-2019-13132

In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due...

9.8CVSS9.8AI score0.42464EPSS
Exploits1References15
NVD
NVD
•added 2024/11/15 11:15 a.m.•165 views

CVE-2023-2332

A stored Cross-site Scripting XSS vulnerability exists in the Conditions tab of Pricing Rules in pimcore/pimcore versions 10.5.19. The vulnerability is present in the From and To fields of the Date Range section, allowing an attacker to inject malicious scripts. This can lead to the execution of...

4.8CVSS0.00356EPSS
Exploits1References2
NVD
NVD
•added 2021/10/04 6:15 p.m.•165 views

CVE-2021-32675

Redis is an open source, in-memory database that persists on disk. When parsing an incoming Redis Standard Protocol RESP request, Redis allocates memory according to user-specified values which determine the number of elements in the multi-bulk header and size of each element in the bulk header. ...

7.5CVSS0.1578EPSS
Exploits0References10
NVD
NVD
•added 2017/07/23 3:29 a.m.•164 views

CVE-2017-11528

The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service memory leak via a crafted file...

6.5CVSS7.1AI score0.01876EPSS
Exploits0References2
NVD
NVD
•added 2020/03/06 8:15 p.m.•161 views

CVE-2019-20503

usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit...

6.5CVSS8.1AI score0.03155EPSS
Exploits1References38
NVD
NVD
•added 2023/10/14 2:15 a.m.•159 views

CVE-2023-45852

In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass authentication and execute arbitrary commands via shell metacharacters in the ipaddr params JSON data for the put method...

9.8CVSS10AI score0.14003EPSS
Exploits1References2
NVD
NVD
•added 2021/11/17 2:15 p.m.•157 views

CVE-2021-29861

IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in EFS to expose sensitive information. IBM X-Force ID: 206085...

6.2CVSS0.00258EPSS
Exploits0References2
NVD
NVD
•added 2018/04/30 5:29 p.m.•155 views

CVE-2018-10571

Multiple reflected cross-site scripting XSS vulnerabilities in OpenEMR before 5.0.1 allow remote attackers to inject arbitrary web script or HTML via the 1 patient parameter to interface/main/finder/findernavigation.php; 2 key parameter to interface/billing/getclaimfile.php; 3 formid or 4 formseq...

6.1CVSS6.1AI score0.01528EPSS
Exploits0References5
NVD
NVD
•added 2023/12/05 2:15 p.m.•151 views

CVE-2022-24403

The TETRA TA61 identity encryption function internally uses a 64-bit value derived exclusively from the SCK Class 2 networks or CCK Class 3 networks. The structure of TA61 allows for efficient recovery of this 64-bit value, allowing an adversary to encrypt or decrypt arbitrary identities given on...

4.3CVSS0.00113EPSS
Exploits0References1
NVD
NVD
•added 2024/07/01 7:15 p.m.•148 views

CVE-2024-38476

Vulnerability in core of Apache HTTP Server 2.4.59 and earlier are vulnerably to information disclosure, SSRF or local script execution via backend applications whose response headers are malicious or exploitable. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

9.8CVSS0.41611EPSS
Exploits0References4
NVD
NVD
•added 2019/01/03 7:29 p.m.•147 views

CVE-2018-19862

Buffer overflow in MiniShare 1.4.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP POST request. NOTE: this product is discontinued...

9.8CVSS9.8AI score0.12555EPSS
Exploits5References3
NVD
NVD
•added 2024/10/14 5:15 p.m.•145 views

CVE-2024-45731

In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could write a file to the Windows system root directory, which has a default location in the Windows System32 folder, when Splunk Enterprise for...

8CVSS0.00535EPSS
Exploits0References2
NVD
NVD
•added 2013/11/13 3:55 p.m.•144 views

CVE-2013-6623

The SVG implementation in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service out-of-bounds read by leveraging the use of tree order, rather than transitive dependency order, for layout...

4.3CVSS6AI score0.01448EPSS
Exploits0References9
NVD
NVD
•added 2023/10/19 10:15 a.m.•143 views

CVE-2022-25332

The AES implementation in the Texas Instruments OMAP L138 secure variants, present in mask ROM, suffers from a timing side channel which can be exploited by an adversary with non-secure supervisor privileges by managing cache contents and collecting timing information for different ciphertext...

4.4CVSS5.8AI score0.00099EPSS
Exploits0References1
NVD
NVD
•added 2024/07/01 7:15 p.m.•131 views

CVE-2024-39573

Potential SSRF in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to be handled by modproxy. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

7.5CVSS0.35447EPSS
Exploits0References4
NVD
NVD
•added 2025/02/13 1:15 p.m.•129 views

CVE-2025-1094

Improper neutralization of quoting syntax in PostgreSQL libpq functions PQescapeLiteral, PQescapeIdentifier, PQescapeString, and PQescapeStringConn allows a database input provider to achieve SQL injection in certain usage patterns. Specifically, SQL injection requires the application to use the...

8.1CVSS0.89472EPSS
Exploits10References6
NVD
NVD
•added 2025/04/01 12:15 p.m.•128 views

CVE-2025-3085

A MongoDB server under specific conditions running on Linux with TLS and CRL revocation status checking enabled, fails to check the revocation status of the intermediate certificates in the peer's certificate chain. In cases of MONGODB-X509, which is not enabled by default, this may lead to...

9.8CVSS0.00266EPSS
Exploits0References1
NVD
NVD
•added 2024/10/10 10:15 p.m.•126 views

CVE-2024-47084

Gradio is an open-source Python package designed for quick prototyping. This vulnerability is related to CORS origin validation, where the Gradio server fails to validate the request origin when a cookie is present. This allows an attacker’s website to make unauthorized requests to a local Gradio...

8.3CVSS0.00484EPSS
Exploits0References1
NVD
NVD
•added 2024/06/14 3:15 a.m.•126 views

CVE-2024-3080

Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device...

9.8CVSS0.43456EPSS
Exploits0References2
NVD
NVD
•added 2020/10/19 10:15 p.m.•121 views

CVE-2020-15261

On Windows the Veyon Service before version 4.4.2 contains an unquoted service path vulnerability, allowing locally authenticated users with administrative privileges to run malicious executables with LocalSystem privileges. Since Veyon users both students and teachers usually don't have...

8CVSS0.11123EPSS
Exploits4References6
NVD
NVD
•added 2025/03/11 8:15 p.m.•119 views

CVE-2025-27789

Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression named capturing groups, Babel will generate a polyfill for the .replace method that has quadratic complexity on some specific replacement...

6.2CVSS0.00478EPSS
Exploits0References2
NVD
NVD
•added 2024/07/30 8:15 a.m.•118 views

CVE-2024-42228

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value size when calling amdgpuvcecsreloc Initialize the size before calling amdgpuvcecsreloc, such as case 0x03000001. V2: To really improve the handling we would actually need to have a separate...

7CVSS0.0024EPSS
Exploits0References10
NVD
NVD
•added 2024/06/21 5:15 p.m.•118 views

CVE-2024-37672

Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the idactivity parameter...

5.4CVSS0.00602EPSS
Exploits1References3
NVD
NVD
•added 2024/05/02 5:15 p.m.•118 views

CVE-2024-2043

The EleForms – All In One Form Integration including DB for Elementor plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when downloading form submissions in all versions up to, and including, 2.9.9.7. This makes it possible for unauthenticated...

5.3CVSS5.1AI score0.00532EPSS
Exploits0References3
NVD
NVD
•added 2024/06/21 12:15 p.m.•117 views

CVE-2024-39277

In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...

7.8CVSS0.0022EPSS
Exploits0References5
NVD
NVD
•added 2023/07/20 3:15 a.m.•117 views

CVE-2023-38408

The PKCS11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. Code in /usr/lib is not necessarily safe for loading into ssh-agent. NOTE: this issue exists because o...

9.8CVSS9.1AI score0.76768EPSS
Exploits10References20
NVD
NVD
•added 2005/07/13 4:0 a.m.•117 views

CVE-2005-2258

PHP remote file inclusion vulnerability in photolist.inc.php in Squito Gallery 1.33 allows remote attackers to execute arbitrary code via the photoroot parameter...

7.5CVSS7.8AI score0.03248EPSS
Exploits1References3
NVD
NVD
•added 2024/06/21 5:15 p.m.•116 views

CVE-2024-37671

Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the page parameter...

5.4CVSS0.00602EPSS
Exploits1References3
NVD
NVD
•added 2024/07/01 7:15 p.m.•113 views

CVE-2024-38475

Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure...

9.1CVSS0.99957EPSS
Exploits1References7
NVD
NVD
•added 2024/06/09 8:15 p.m.•113 views

CVE-2024-4577

In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions. PHP CGI module may...

9.8CVSS0.99987EPSS
Exploits64References23
NVD
NVD
•added 2024/07/18 10:15 a.m.•112 views

CVE-2024-40898

SSRF in Apache HTTP Server on Windows with modrewrite in server/vhost context, allows to potentially leak NTML hashes to a malicious server via SSRF and malicious requests. Users are recommended to upgrade to version 2.4.62 which fixes this issue...

9.1CVSS0.01536EPSS
Exploits5References3
NVD
NVD
•added 2008/01/22 8:0 p.m.•112 views

CVE-2008-0371

Multiple SQL injection vulnerabilities in aliTalk 1.9.1.1, when magicquotesgpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via 1 the mohit parameter to a inc/receivertwo.php; and allow remote attackers to execute arbitrary SQL commands via 2 the id parameter to...

6.8CVSS8.2AI score0.0111EPSS
Exploits1References7
NVD
NVD
•added 2026/06/02 11:16 p.m.•108 views

CVE-2026-42504

Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU...

7.5CVSS0.0056EPSS
Exploits0References4
NVD
NVD
•added 2023/05/18 10:15 p.m.•106 views

CVE-2023-28081

A bytecode optimization bug in Hermes prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could be used to cause an use-after-free and obtain arbitrary code execution via a carefully crafted payload. Note that this is only exploitable in cases where Hermes is used to execute untrusted...

9.8CVSS9.6AI score0.00891EPSS
Exploits0References2
NVD
NVD
•added 2024/07/24 9:15 p.m.•105 views

CVE-2024-41461

Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the list1 parameter at ip/goform/DhcpListClient...

9.8CVSS0.00629EPSS
Exploits1References1
NVD
NVD
•added 2022/10/19 10:15 p.m.•104 views

CVE-2022-41741

NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngxhttpmp4module that might allow a local attacker to corrupt NGINX worker memory, resulting in...

7.8CVSS0.00756EPSS
Exploits2References7
NVD
NVD
•added 2024/11/12 8:15 p.m.•103 views

CVE-2024-52301

Laravel is a web application framework. When the registerargcargv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. The vulnerability fixed in 6.20.45, 7.30.7, 8.83.28,...

8.7CVSS0.37981EPSS
Exploits1References2
NVD
NVD
•added 2024/08/12 1:38 p.m.•103 views

CVE-2024-7589

A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 120 by default. This signal handler executes in the context of the sshd8's privileged code, which is not sandbox...

8.1CVSS0.02038EPSS
Exploits0References4
NVD
NVD
•added 2024/11/15 7:15 p.m.•102 views

CVE-2024-51330

An issue in UltiMaker Cura v.4.41 and 5.8.1 and before allows a local attacker to execute arbitrary code via Inter-process communication IPC mechanism between Cura application and CuraEngine processes, localhost network stack, printing settings and G-code processing and transmission components,...

5.1CVSS0.00194EPSS
Exploits0References1
NVD
NVD
•added 2024/07/09 5:15 p.m.•102 views

CVE-2024-38077

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability...

9.8CVSS0.75365EPSS
Exploits5References1
NVD
NVD
•added 2024/07/01 7:15 p.m.•102 views

CVE-2024-38473

Encoding problem in modproxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to backend services, potentially bypassing authentication via crafted requests. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

8.1CVSS0.25878EPSS
Exploits1References3
NVD
NVD
•added 2024/05/07 6:15 p.m.•102 views

CVE-2023-42757

Process Explorer before 17.04 allows attackers to make it functionally unavailable a denial of service for analysis by renaming an executable file to a new extensionless 255-character name and launching it with NtCreateUserProcess. This can occur through an issue in wcscats error handling...

4.2CVSS6.5AI score0.00271EPSS
Exploits1References3
Total number of security vulnerabilities5000