Lucene search
K
NvdMost viewed

363745 matches found

NVD
NVD
•added 2025/01/07 10:15 p.m.•57 views

CVE-2025-22132

WeGIA is a web manager for charitable institutions. A Cross-Site Scripting XSS vulnerability was identified in the file upload functionality of the WeGIA/html/socio/sistema/controller/controlaxlsx.php endpoint. By uploading a file containing malicious JavaScript code, an attacker can execute...

8.3CVSS0.00413EPSS
Exploits1References2
NVD
NVD
•added 2025/01/06 7:15 p.m.•57 views

CVE-2024-35498

A cross-site scripting XSS vulnerability in Grav v1.7.45 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS0.00364EPSS
Exploits1References2
NVD
NVD
•added 2024/12/27 6:15 p.m.•57 views

CVE-2024-12990

A vulnerability was found in ruifang-tech Rebuild 3.8.6. It has been classified as problematic. This affects an unknown part of the file /user/admin-verify of the component Admin Verification Page. The manipulation of the argument nexturl with the input http://localhost/evil.html leads to open...

5.3CVSS0.00329EPSS
Exploits0References4
NVD
NVD
•added 2024/12/04 4:15 a.m.•57 views

CVE-2024-12099

The Dollie Hub – Build Your Own WordPress Cloud Platform plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 6.2.0 via the 'elementor-template' shortcode due to insufficient restrictions on which posts can be included. This makes it possible for...

4.3CVSS0.00273EPSS
Exploits0References2
NVD
NVD
•added 2024/12/03 10:15 a.m.•57 views

CVE-2024-45106

Improper authentication of an HTTP endpoint in the S3 Gateway of Apache Ozone 1.4.0 allows any authenticated Kerberos user to revoke and regenerate the S3 secrets of any other user. This is only possible if: ozone.s3g.secret.http.enabled is set to true. The default value of this configuration is...

8.1CVSS0.00557EPSS
Exploits0References2
NVD
NVD
•added 2024/12/02 6:15 p.m.•57 views

CVE-2024-53990

The AsyncHttpClient AHC library allows Java applications to easily execute HTTP requests and asynchronously process HTTP responses. When making any HTTP request, the automatically enabled and self-managed CookieStore aka cookie jar will silently replace explicitly defined Cookies with any that ha...

9.2CVSS0.00587EPSS
Exploits0References4
NVD
NVD
•added 2024/10/31 5:15 p.m.•57 views

CVE-2024-51478

YesWiki is a wiki system written in PHP. Prior to 4.4.5, the use of a weak cryptographic algorithm and a hard-coded salt to hash the password reset key allows it to be recovered and used to reset the password of any account. This issue is fixed in 4.4.5...

9.9CVSS0.00368EPSS
Exploits1References3
NVD
NVD
•added 2024/10/30 9:15 p.m.•57 views

CVE-2024-48112

A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code...

9.8CVSS0.0086EPSS
Exploits1References2
NVD
NVD
•added 2024/10/25 8:15 a.m.•57 views

CVE-2024-9628

The WPS Telegram Chat plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'WpsTelegramChatAdmin::checkСonnection' function in versions up to, and including, 4.6.0. This makes it possible for authenticated attackers, wit...

6.5CVSS0.00267EPSS
Exploits0References2
NVD
NVD
•added 2024/10/14 4:15 p.m.•57 views

CVE-2024-6763

Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It includes a utility class, HttpURI, for URI/URL parsing. The HttpURI class does insufficient validation on the authority segment of a URI. However the behaviour of HttpURI differs from the common browser...

5.3CVSS0.00986EPSS
Exploits1References4
NVD
NVD
•added 2024/09/20 12:15 a.m.•57 views

CVE-2024-47060

Zitadel is an open source identity management platform. In Zitadel, even after an organization is deactivated, associated projects, respectively their applications remain active. Users across other organizations can still log in and access through these applications, leading to unauthorized acces...

6.5CVSS0.00357EPSS
Exploits0References1
NVD
NVD
•added 2024/09/09 7:15 p.m.•57 views

CVE-2024-7260

An open redirect vulnerability was found in Keycloak. A specially crafted URL can be constructed where the referrer and referreruri parameters are made to trick a user to visit a malicious webpage. A trusted URL can trick users and automation into believing that the URL is safe, when, in fact, it...

6.1CVSS0.00546EPSS
Exploits0References4
NVD
NVD
•added 2024/09/05 3:15 a.m.•57 views

CVE-2024-7627

The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0 to 6.5.5 via the 'checkSyntax' function. This is due to writing a temporary file to a publicly accessible directory before performing file validation. This makes it possible for unauthenticated...

8.1CVSS0.02802EPSS
Exploits3References4
NVD
NVD
•added 2024/07/23 4:15 p.m.•57 views

CVE-2024-6714

An issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local attacker to escalate their privilege...

8.8CVSS0.00263EPSS
Exploits1References3
NVD
NVD
•added 2024/07/09 12:15 p.m.•57 views

CVE-2024-3596

RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response Access-Accept, Access-Reject, or Access-Challenge to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature...

9CVSS0.14859EPSS
Exploits2References13
NVD
NVD
•added 2024/06/06 7:15 p.m.•57 views

CVE-2024-0520

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

10CVSS0.02382EPSS
Exploits1References2
NVD
NVD
•added 2024/05/03 3:15 a.m.•57 views

CVE-2023-40506

LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS7.2AI score0.01271EPSS
Exploits0References1
NVD
NVD
•added 2024/04/26 12:15 a.m.•57 views

CVE-2024-33663

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217...

6.5CVSS7.4AI score0.00307EPSS
Exploits1References2
NVD
NVD
•added 2024/04/09 5:16 p.m.•57 views

CVE-2024-29905

DIRAC is an interware, meaning a software framework for distributed computing. Prior to version 8.0.41, during the proxy generation process e.g., when using dirac-proxy-init, it is possible for unauthorized users on the same machine to gain read access to the proxy. This allows the user to then...

8.1CVSS8AI score0.00317EPSS
Exploits0References2
NVD
NVD
•added 2024/03/16 5:15 a.m.•57 views

CVE-2024-22259

Applications that use UriComponentsBuilder in Spring Framework to parse an externally provided URL e.g. through a query parameter AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.org/data/definitions/601.html attack or to a SSRF...

8.1CVSS7.8AI score0.02573EPSS
Exploits1References2
NVD
NVD
•added 2024/01/30 1:16 a.m.•57 views

CVE-2024-22938

Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component...

7.8CVSS7.9AI score0.0031EPSS
Exploits1References3
NVD
NVD
•added 2024/01/18 7:15 p.m.•57 views

CVE-2024-22419

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The concat built-in can write over the bounds of the memory buffer that was allocated for it and thus overwrite existing valid data. The root cause is that the buildIR for concat doesn't properly adhere to the API of co...

9.8CVSS8.1AI score0.0077EPSS
Exploits1References3
NVD
NVD
•added 2023/11/01 6:15 p.m.•57 views

CVE-2023-20095

A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to imprope...

8.6CVSS8.5AI score0.0064EPSS
Exploits0References1
NVD
NVD
•added 2023/10/26 5:15 p.m.•57 views

CVE-2023-5624

Under certain conditions, Nessus Network Monitor was found to not properly enforce input validation. This could allow an admin user to alter parameters that could potentially allow a blindSQL injection...

7.2CVSS7.1AI score0.00484EPSS
Exploits0References1
NVD
NVD
•added 2023/10/20 7:15 a.m.•57 views

CVE-2023-4598

The Slimstat Analytics plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 5.0.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

8.8CVSS8.6AI score0.00916EPSS
Exploits4References3
NVD
NVD
•added 2023/08/31 6:15 p.m.•57 views

CVE-2023-41044

Graylog is a free and open log management platform. A partial path traversal vulnerability exists in Graylog's Support Bundle feature. The vulnerability is caused by incorrect user input validation in an HTTP API resource. Graylog's Support Bundle feature allows an attacker with valid Admin role...

3.8CVSS3.7AI score0.00569EPSS
Exploits1References3
NVD
NVD
•added 2023/08/07 3:15 p.m.•57 views

CVE-2023-3524

The WPCode WordPress plugin before 2.0.13.1 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...

6.1CVSS6.1AI score0.00452EPSS
Exploits2References1
NVD
NVD
•added 2023/07/11 7:15 p.m.•57 views

CVE-2023-37280

Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based on the ExtJS framework. An admin who has not setup two factor authentication before is vulnerable for this attack, without need for any form of privilege, causing the application to execute arbitrary scripts/HTML content. This...

6.1CVSS5.9AI score0.00535EPSS
Exploits0References3
NVD
NVD
•added 2023/06/06 10:15 a.m.•57 views

CVE-2023-2833

The ReviewX plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.13 due to insufficient restriction on the 'rxsetscreenoptions' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their...

8.8CVSS8.6AI score0.1748EPSS
Exploits4References5
NVD
NVD
•added 2023/04/19 6:15 p.m.•57 views

CVE-2023-30610

aws-sigv4 is a rust library for low level request signing in the aws cloud platform. The awssigv4::SigningParams struct had a derived Debug implementation. When debug-formatted, it would include a user's AWS access key, AWS secret key, and security token in plaintext. When TRACE-level logging is...

5.5CVSS5.5AI score0.00216EPSS
Exploits0References1
NVD
NVD
•added 2023/04/14 7:15 p.m.•57 views

CVE-2023-29018

The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the lax permissions configured on open-feature-operator-controller-manager to escalate the privileges o...

8.8CVSS8.1AI score0.00659EPSS
Exploits0References2
NVD
NVD
•added 2023/04/03 8:15 a.m.•57 views

CVE-2023-26269

Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX...

7.8CVSS7.9AI score0.00654EPSS
Exploits0References2
NVD
NVD
•added 2023/03/29 7:15 p.m.•57 views

CVE-2022-36980

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

9.4CVSS8.5AI score0.83136EPSS
Exploits0References2
NVD
NVD
•added 2023/03/07 4:15 p.m.•57 views

CVE-2023-25690

Some modproxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when modproxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the...

9.8CVSS9.5AI score0.8377EPSS
Exploits5References4
NVD
NVD
•added 2022/11/25 7:15 p.m.•57 views

CVE-2022-41954

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...

3.3CVSS0.00208EPSS
Exploits0References2
NVD
NVD
•added 2022/08/01 10:15 p.m.•57 views

CVE-2022-35921

fof/byobu is a private discussions extension for Flarum forum. Affected versions were found to not respect private discussion disablement by users. Users of Byobu should update the extension to version 1.1.7, where this has been patched. Users of Byobu with Flarum 1.0 or 1.1 should upgrade to...

4.3CVSS0.00436EPSS
Exploits0References2
NVD
NVD
•added 2022/06/15 2:15 p.m.•57 views

CVE-2022-20156

In unflatten of GraphicBuffer.cpp, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS0.00113EPSS
Exploits0References1
NVD
NVD
•added 2022/04/27 2:15 p.m.•57 views

CVE-2022-24886

Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Contacts without applying for the Contacts permission itself. Version 3.19.0...

3.8CVSS0.00373EPSS
Exploits0References3
NVD
NVD
•added 2022/01/24 8:15 a.m.•57 views

CVE-2021-25076

The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status parameter before using it in a SQL statement in the Subscribers dashboard, leading to an SQL injection. Due to the lack of sanitisation and escaping, this could also lead to Reflected Cross-Site Scripting...

8.8CVSS0.1712EPSS
Exploits6References3
NVD
NVD
•added 2022/01/14 1:15 a.m.•57 views

CVE-2021-38691

A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QVR Elite, QVR Pro, QVR Guard: Qu...

9.8CVSS0.01296EPSS
Exploits0References1
NVD
NVD
•added 2021/12/22 7:15 p.m.•57 views

CVE-2021-40418

When parsing a file that is submitted to the DPDecoder service as a job, the R3D SDK will mistakenly skip over the assignment of a property containing an object referring to a UUID that was parsed from a frame within the video container. Upon destruction of the object that owns it, the...

9.8CVSS0.17945EPSS
Exploits1References1
NVD
NVD
•added 2021/07/14 2:15 p.m.•57 views

CVE-2021-0597

In notifyProfileAdded and notifyProfileRemoved of SipService.java, there is a possible way to retrieve SIP account names due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS0.00127EPSS
Exploits0References1
NVD
NVD
•added 2021/06/25 1:15 p.m.•57 views

CVE-2021-27043

An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...

7.8CVSS0.00876EPSS
Exploits0References1
NVD
NVD
•added 2021/06/10 5:15 p.m.•57 views

CVE-2021-31840

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid...

7.3CVSS0.00348EPSS
Exploits0References1
NVD
NVD
•added 2021/06/09 8:15 p.m.•57 views

CVE-2021-0052

Incorrect default privileges in the IntelR Computing Improvement Program before version 2.4.6522 may allow an authenticated user to potentially enable an escalation of privilege via local access...

7.8CVSS0.00215EPSS
Exploits0References1
NVD
NVD
•added 2021/05/12 3:15 p.m.•57 views

CVE-2021-20202

A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to the contents that keycloak stores in this directory. The highest threat from this vulnerability is ...

7.3CVSS0.00299EPSS
Exploits0References1
NVD
NVD
•added 2021/04/13 8:15 p.m.•57 views

CVE-2021-28459

Azure DevOps Server Spoofing Vulnerability...

6.1CVSS0.02317EPSS
Exploits3References3
NVD
NVD
•added 2021/03/04 1:15 p.m.•57 views

CVE-2020-24913

A SQL injection vulnerability in qcubed all versions including 3.1.1 in profile.php via the strQuery parameter allows an unauthenticated attacker to access the database by injecting SQL code via a crafted POST request...

9.8CVSS0.43266EPSS
Exploits5References6
NVD
NVD
•added 2021/02/16 8:15 p.m.•57 views

CVE-2021-20070

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs...

4.8CVSS0.00468EPSS
Exploits0References1
NVD
NVD
•added 2020/12/15 4:15 p.m.•57 views

CVE-2020-27029

In TextView of TextView.java, there is a possible app hang due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-140218875...

6.5CVSS7AI score0.00694EPSS
Exploits0References1
Total number of security vulnerabilities5000