Lucene search
K
NvdMost viewed

364368 matches found

NVD
NVD
•added 2024/10/30 9:15 p.m.•57 views

CVE-2024-48112

A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code...

9.8CVSS0.0086EPSS
Exploits1References2
NVD
NVD
•added 2024/10/25 8:15 a.m.•57 views

CVE-2024-9628

The WPS Telegram Chat plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'WpsTelegramChatAdmin::checkСonnection' function in versions up to, and including, 4.6.0. This makes it possible for authenticated attackers, wit...

6.5CVSS0.00267EPSS
Exploits0References2
NVD
NVD
•added 2024/10/14 4:15 p.m.•57 views

CVE-2024-6763

Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine . It includes a utility class, HttpURI, for URI/URL parsing. The HttpURI class does insufficient validation on the authority segment of a URI. However the behaviour of HttpURI differs from the common browser...

5.3CVSS0.00986EPSS
Exploits1References4
NVD
NVD
•added 2024/10/08 4:15 a.m.•57 views

CVE-2024-45277

The SAP HANA Node.js client package versions from 2.0.0 before 2.21.31 is impacted by Prototype Pollution vulnerability allowing an attacker to add arbitrary properties to global object prototypes. This is due to improper user input sanitation when using the nestTables feature causing low impact ...

4.3CVSS0.00589EPSS
Exploits0References3
NVD
NVD
•added 2024/09/20 12:15 a.m.•57 views

CVE-2024-47060

Zitadel is an open source identity management platform. In Zitadel, even after an organization is deactivated, associated projects, respectively their applications remain active. Users across other organizations can still log in and access through these applications, leading to unauthorized acces...

6.5CVSS0.00357EPSS
Exploits0References1
NVD
NVD
•added 2024/09/05 3:15 a.m.•57 views

CVE-2024-7627

The Bit File Manager plugin for WordPress is vulnerable to Remote Code Execution in versions 6.0 to 6.5.5 via the 'checkSyntax' function. This is due to writing a temporary file to a publicly accessible directory before performing file validation. This makes it possible for unauthenticated...

8.1CVSS0.02802EPSS
Exploits3References4
NVD
NVD
•added 2024/08/20 3:15 p.m.•57 views

CVE-2024-42369

matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's getRoomUpgradeHistory function will infinitely recurse in this case, causing the code to hang. This...

5.3CVSS0.00455EPSS
Exploits0References2
NVD
NVD
•added 2024/07/29 4:15 p.m.•57 views

CVE-2024-42081

In the Linux kernel, the following vulnerability has been resolved: drm/xe/xedevcoredump: Check NULL before assignments Assign 'xedevcoredumpsnapshot ' and 'xedevice ' only if 'coredump' is not NULL. v2 - Fix commit messages. v3 - Define variables before code.Ashutosh/Jose v4 - Drop return check...

5.5CVSS0.00194EPSS
Exploits0References2
NVD
NVD
•added 2024/07/23 4:15 p.m.•57 views

CVE-2024-6714

An issue was discovered in provd before version 0.1.5 with a setuid binary, which allows a local attacker to escalate their privilege...

8.8CVSS0.00263EPSS
Exploits1References3
NVD
NVD
•added 2024/07/09 12:15 p.m.•57 views

CVE-2024-3596

RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response Access-Accept, Access-Reject, or Access-Challenge to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature...

9CVSS0.14859EPSS
Exploits2References13
NVD
NVD
•added 2024/06/06 7:15 p.m.•57 views

CVE-2024-0520

A vulnerability in mlflow/mlflow version 8.2.1 allows for remote code execution due to improper neutralization of special elements used in an OS command 'Command Injection' within the mlflow.data.httpdatasetsource.py module. Specifically, when loading a dataset from a source URL with an HTTP...

10CVSS0.02382EPSS
Exploits1References2
NVD
NVD
•added 2024/05/30 4:15 p.m.•57 views

CVE-2024-36888

In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix selection of wakecpu in kickpool With cpupossiblemask=0-63 and cpuonlinemask=0-7 the following kernel oops was observed: smp: Bringing up secondary CPUs ... smp: Brought up 1 node, 8 CPUs Unable to handle kernel...

6.2CVSS6.3AI score0.00237EPSS
Exploits0References3
NVD
NVD
•added 2024/05/03 3:15 a.m.•57 views

CVE-2023-40506

LG Simple Editor copyContent XML External Entity Processing Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific...

7.5CVSS7.2AI score0.01271EPSS
Exploits0References1
NVD
NVD
•added 2024/04/26 12:15 a.m.•57 views

CVE-2024-33663

python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217...

6.5CVSS7.4AI score0.00307EPSS
Exploits1References2
NVD
NVD
•added 2024/04/09 5:16 p.m.•57 views

CVE-2024-29905

DIRAC is an interware, meaning a software framework for distributed computing. Prior to version 8.0.41, during the proxy generation process e.g., when using dirac-proxy-init, it is possible for unauthorized users on the same machine to gain read access to the proxy. This allows the user to then...

8.1CVSS8AI score0.00317EPSS
Exploits0References2
NVD
NVD
•added 2024/03/16 5:15 a.m.•57 views

CVE-2024-22259

Applications that use UriComponentsBuilder in Spring Framework to parse an externally provided URL e.g. through a query parameter AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.org/data/definitions/601.html attack or to a SSRF...

8.1CVSS7.8AI score0.02573EPSS
Exploits1References2
NVD
NVD
•added 2024/01/30 1:16 a.m.•57 views

CVE-2024-22938

Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component...

7.8CVSS7.9AI score0.0031EPSS
Exploits1References3
NVD
NVD
•added 2024/01/18 7:15 p.m.•57 views

CVE-2024-22419

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. The concat built-in can write over the bounds of the memory buffer that was allocated for it and thus overwrite existing valid data. The root cause is that the buildIR for concat doesn't properly adhere to the API of co...

9.8CVSS8.1AI score0.0077EPSS
Exploits1References3
NVD
NVD
•added 2024/01/09 10:15 p.m.•57 views

CVE-2023-6476

A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. This may allow a pod to specify and get any amount of memory/cpu, circumventing the kubernetes scheduler and potentially resulting in a denial of service in the node...

7.5CVSS6.4AI score0.00859EPSS
Exploits0References4
NVD
NVD
•added 2023/11/01 6:15 p.m.•57 views

CVE-2023-20095

A vulnerability in the remote access VPN feature of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to imprope...

8.6CVSS8.5AI score0.0064EPSS
Exploits0References1
NVD
NVD
•added 2023/10/26 5:15 p.m.•57 views

CVE-2023-5624

Under certain conditions, Nessus Network Monitor was found to not properly enforce input validation. This could allow an admin user to alter parameters that could potentially allow a blindSQL injection...

7.2CVSS7.1AI score0.00484EPSS
Exploits0References1
NVD
NVD
•added 2023/10/20 7:15 a.m.•57 views

CVE-2023-4598

The Slimstat Analytics plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 5.0.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

8.8CVSS8.6AI score0.00916EPSS
Exploits4References3
NVD
NVD
•added 2023/09/21 3:15 p.m.•57 views

CVE-2023-41048

plone.namedfile allows users to handle File and Image fields targeting, but not depending on, Plone Dexterity content. Prior to versions 5.6.1, 6.0.3, 6.1.3, and 6.2.1, there is a stored cross site scripting vulnerability for SVG images. A security hotfix from 2021 already partially fixed this by...

5.4CVSS4.6AI score0.00475EPSS
Exploits0References7
NVD
NVD
•added 2023/08/31 6:15 p.m.•57 views

CVE-2023-41044

Graylog is a free and open log management platform. A partial path traversal vulnerability exists in Graylog's Support Bundle feature. The vulnerability is caused by incorrect user input validation in an HTTP API resource. Graylog's Support Bundle feature allows an attacker with valid Admin role...

3.8CVSS3.7AI score0.00569EPSS
Exploits1References3
NVD
NVD
•added 2023/08/07 3:15 p.m.•57 views

CVE-2023-3524

The WPCode WordPress plugin before 2.0.13.1 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting...

6.1CVSS6.1AI score0.00452EPSS
Exploits2References1
NVD
NVD
•added 2023/07/11 7:15 p.m.•57 views

CVE-2023-37280

Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based on the ExtJS framework. An admin who has not setup two factor authentication before is vulnerable for this attack, without need for any form of privilege, causing the application to execute arbitrary scripts/HTML content. This...

6.1CVSS5.9AI score0.00535EPSS
Exploits0References3
NVD
NVD
•added 2023/06/06 10:15 a.m.•57 views

CVE-2023-2833

The ReviewX plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.13 due to insufficient restriction on the 'rxsetscreenoptions' function. This makes it possible for authenticated attackers, with minimal permissions such as a subscriber, to modify their...

8.8CVSS8.6AI score0.1748EPSS
Exploits4References5
NVD
NVD
•added 2023/04/19 6:15 p.m.•57 views

CVE-2023-30610

aws-sigv4 is a rust library for low level request signing in the aws cloud platform. The awssigv4::SigningParams struct had a derived Debug implementation. When debug-formatted, it would include a user's AWS access key, AWS secret key, and security token in plaintext. When TRACE-level logging is...

5.5CVSS5.5AI score0.00216EPSS
Exploits0References1
NVD
NVD
•added 2023/04/14 7:15 p.m.•57 views

CVE-2023-29018

The OpenFeature Operator allows users to expose feature flags to applications. Assuming the pre-existence of a vulnerability that allows for arbitrary code execution, an attacker could leverage the lax permissions configured on open-feature-operator-controller-manager to escalate the privileges o...

8.8CVSS8.1AI score0.00659EPSS
Exploits0References2
NVD
NVD
•added 2023/04/03 8:15 a.m.•57 views

CVE-2023-26269

Apache James server version 3.7.3 and earlier provides a JMX management service without authentication by default. This allows privilege escalation by a malicious local user. Administrators are advised to disable JMX, or set up a JMX password. Note that version 3.7.4 onward will set up a JMX...

7.8CVSS7.9AI score0.00654EPSS
Exploits0References2
NVD
NVD
•added 2023/03/29 7:15 p.m.•57 views

CVE-2022-36980

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

9.4CVSS8.5AI score0.83136EPSS
Exploits0References2
NVD
NVD
•added 2023/03/07 4:15 p.m.•57 views

CVE-2023-25690

Some modproxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when modproxy is enabled along with some form of RewriteRule or ProxyPassMatch in which a non-specific pattern matches some portion of the...

9.8CVSS9.5AI score0.8377EPSS
Exploits5References4
NVD
NVD
•added 2023/03/03 10:15 p.m.•57 views

CVE-2023-26492

Directus is a real-time API and App dashboard for managing SQL database content. Directus is vulnerable to Server-Side Request Forgery SSRF when importing a file from a remote web server POST to /files/import. An attacker can bypass the security controls by performing a DNS rebinding attack and...

7.5CVSS6.2AI score0.0096EPSS
Exploits1References3
NVD
NVD
•added 2022/11/25 7:15 p.m.•57 views

CVE-2022-41954

MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...

3.3CVSS0.00208EPSS
Exploits0References2
NVD
NVD
•added 2022/09/22 12:15 a.m.•57 views

CVE-2022-39975

The Layout module in Liferay Portal v7.3.3 through v7.4.3.34, and Liferay DXP 7.3 before update 10, and 7.4 before update 35 does not check user permission before showing the preview of a "Content Page" type page, allowing attackers to view unpublished "Content Page" pages via URL manipulation...

4.3CVSS0.00471EPSS
Exploits0References1
NVD
NVD
•added 2022/08/01 10:15 p.m.•57 views

CVE-2022-35921

fof/byobu is a private discussions extension for Flarum forum. Affected versions were found to not respect private discussion disablement by users. Users of Byobu should update the extension to version 1.1.7, where this has been patched. Users of Byobu with Flarum 1.0 or 1.1 should upgrade to...

4.3CVSS0.00436EPSS
Exploits0References2
NVD
NVD
•added 2022/04/27 2:15 p.m.•57 views

CVE-2022-24886

Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Contacts without applying for the Contacts permission itself. Version 3.19.0...

3.8CVSS0.00373EPSS
Exploits0References3
NVD
NVD
•added 2022/01/24 8:15 a.m.•57 views

CVE-2021-25076

The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status parameter before using it in a SQL statement in the Subscribers dashboard, leading to an SQL injection. Due to the lack of sanitisation and escaping, this could also lead to Reflected Cross-Site Scripting...

8.8CVSS0.1712EPSS
Exploits6References3
NVD
NVD
•added 2022/01/14 1:15 a.m.•57 views

CVE-2021-38691

A stack buffer overflow vulnerability has been reported to affect QNAP device running QVR Elite, QVR Pro, QVR Guard. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of QVR Elite, QVR Pro, QVR Guard: Qu...

9.8CVSS0.01296EPSS
Exploits0References1
NVD
NVD
•added 2021/12/22 7:15 p.m.•57 views

CVE-2021-40418

When parsing a file that is submitted to the DPDecoder service as a job, the R3D SDK will mistakenly skip over the assignment of a property containing an object referring to a UUID that was parsed from a frame within the video container. Upon destruction of the object that owns it, the...

9.8CVSS0.17945EPSS
Exploits1References1
NVD
NVD
•added 2021/07/14 2:15 p.m.•57 views

CVE-2021-0597

In notifyProfileAdded and notifyProfileRemoved of SipService.java, there is a possible way to retrieve SIP account names due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS0.00127EPSS
Exploits0References1
NVD
NVD
•added 2021/06/25 1:15 p.m.•57 views

CVE-2021-27043

An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in the application...

7.8CVSS0.00876EPSS
Exploits0References1
NVD
NVD
•added 2021/06/10 5:15 p.m.•57 views

CVE-2021-31840

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid...

7.3CVSS0.00348EPSS
Exploits0References1
NVD
NVD
•added 2021/06/09 8:15 p.m.•57 views

CVE-2021-0052

Incorrect default privileges in the IntelR Computing Improvement Program before version 2.4.6522 may allow an authenticated user to potentially enable an escalation of privilege via local access...

7.8CVSS0.00215EPSS
Exploits0References1
NVD
NVD
•added 2021/05/12 3:15 p.m.•57 views

CVE-2021-20202

A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to the contents that keycloak stores in this directory. The highest threat from this vulnerability is ...

7.3CVSS0.00299EPSS
Exploits0References1
NVD
NVD
•added 2021/04/13 8:15 p.m.•57 views

CVE-2021-28459

Azure DevOps Server Spoofing Vulnerability...

6.1CVSS0.02317EPSS
Exploits3References3
NVD
NVD
•added 2021/03/04 1:15 p.m.•57 views

CVE-2020-24913

A SQL injection vulnerability in qcubed all versions including 3.1.1 in profile.php via the strQuery parameter allows an unauthenticated attacker to access the database by injecting SQL code via a crafted POST request...

9.8CVSS0.43266EPSS
Exploits5References5
NVD
NVD
•added 2021/02/16 8:15 p.m.•57 views

CVE-2021-20070

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scriptings attacks via the virtualization.php dialogs...

4.8CVSS0.00468EPSS
Exploits0References1
NVD
NVD
•added 2020/12/15 4:15 p.m.•57 views

CVE-2020-27029

In TextView of TextView.java, there is a possible app hang due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-140218875...

6.5CVSS7AI score0.00694EPSS
Exploits0References1
NVD
NVD
•added 2020/10/20 3:15 p.m.•57 views

CVE-2020-16246

The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting XSS, which may allow attackers to trick users into following a link or navigating to a page that posts a malicious JavaScript statement to the vulnerable site, causing the malicious JavaScript to be rendered by the site...

6.1CVSS0.0068EPSS
Exploits0References1
Total number of security vulnerabilities5000