Lucene search
K
NvdMost viewed

364381 matches found

NVD
NVD
added 2023/11/28 4:15 p.m.51 views

CVE-2022-41678

Once an user is authenticated on Jolokia, he can potentially trigger arbitrary code execution. In details, in ActiveMQ configurations, jetty allows org.jolokia.http.AgentServlet to handler request to /api/jolokia org.jolokia.http.HttpRequestHandlerhandlePostRequest is able to create JmxRequest...

8.8CVSS0.8581EPSS
Exploits2References5
NVD
NVD
added 2023/11/21 11:15 p.m.51 views

CVE-2023-48701

Statamic CMS is a Laravel and Git powered content management system CMS. Prior to versions 3.4.15 an 4.36.0, HTML files crafted to look like images may be uploaded regardless of mime validation. This is only applicable on front-end forms using the "Forms" feature containing an assets field, or...

7.5CVSS0.007EPSS
Exploits0References3
NVD
NVD
added 2023/11/14 10:15 p.m.51 views

CVE-2023-47524

Unauth. Reflected Cross-Site Scripting XSS vulnerability requires PHP 8.x in CodeBard CodeBard's Patron Button and Widgets for Patreon plugin = 2.1.9 versions...

6.1CVSS0.00358EPSS
Exploits0References1
NVD
NVD
added 2023/10/25 6:17 p.m.51 views

CVE-2023-46124

Fides is an open-source privacy engineering platform for managing the fulfillment of data privacy requests in runtime environments, and the enforcement of privacy regulations in code. The Fides web application allows a custom integration to be uploaded as a ZIP file containing configuration and...

8.2CVSS8.2AI score0.00675EPSS
Exploits0References3
NVD
NVD
added 2023/10/25 6:17 p.m.51 views

CVE-2023-37910

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting with the introduction of attachment move support in version 14.0-rc-1 and prior to versions 14.4.8, 14.10.4, and 15.0-rc-1, an attacker with edit access on any document can be the use...

8.1CVSS8.1AI score0.00573EPSS
Exploits1References3
NVD
NVD
added 2023/10/20 7:15 a.m.51 views

CVE-2023-4402

The Essential Blocks plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 4.2.0 via deserialization of untrusted input in the getproducts function. This allows unauthenticated attackers to inject a PHP Object. No POP chain is present in the vulnerable plugi...

9.8CVSS8.8AI score0.0134EPSS
Exploits3References2
NVD
NVD
added 2023/10/18 6:15 a.m.51 views

CVE-2023-42319

Geth aka go-ethereum through 1.13.4, when --http --graphql is used, allows remote attackers to cause a denial of service memory consumption and daemon hang via a crafted GraphQL query. NOTE: the vendor's position is that the "graphql endpoint is not designed to withstand attacks by hostile client...

7.5CVSS7.3AI score0.00887EPSS
Exploits1References2
NVD
NVD
added 2023/10/16 8:15 p.m.51 views

CVE-2023-5003

The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unfortunately, this log file is never removed, and remains accessible to any users knowing the URL to do so...

7.5CVSS7.6AI score0.25855EPSS
Exploits2References1
NVD
NVD
added 2023/10/06 7:15 p.m.51 views

CVE-2023-21266

In multiple functions of ActivityManagerService.java, there is a possible way to escape Google Play protection due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS7.8AI score0.00113EPSS
Exploits0References2
NVD
NVD
added 2023/09/25 7:15 p.m.51 views

CVE-2023-40581

yt-dlp is a youtube-dl fork with additional features and fixes. yt-dlp allows the user to provide shell command lines to be executed at various stages in its download steps through the --exec flag. This flag allows output template expansion in its argument, so that metadata values may be used in...

8.3CVSS8.7AI score0.01292EPSS
Exploits1References5
NVD
NVD
added 2023/09/21 3:15 p.m.51 views

CVE-2023-42457

plone.rest allows users to use HTTP verbs such as GET, POST, PUT, DELETE, etc. in Plone. Starting in the 2.x branch and prior to versions 2.0.1 and 3.0.1, when the ++api++ traverser is accidentally used multiple times in a url, handling it takes increasingly longer, making the server less...

7.5CVSS7.4AI score0.00822EPSS
Exploits0References4
NVD
NVD
added 2023/09/11 9:15 p.m.51 views

CVE-2023-35677

In onCreate of DeviceAdminAdd.java, there is a possible way to forcibly add a device admin due to a missing permission check. This could lead to local denial of service factory reset or continuous locking with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.4AI score0.00093EPSS
Exploits0References2
NVD
NVD
added 2023/09/04 12:15 p.m.51 views

CVE-2023-4216

The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the fileurl parameter when importing a CSV file, allowing high privilege users with the managewoocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however...

2.7CVSS3.5AI score0.00545EPSS
Exploits2References1
NVD
NVD
added 2023/08/25 8:15 p.m.51 views

CVE-2023-40031

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in Utf816Read::convert. This issue may lead to arbitrary code execution. As of time of publication, no known patches are available in existing versions of Notepad++...

7.8CVSS8.1AI score0.00494EPSS
Exploits1References1
NVD
NVD
added 2023/08/18 2:15 p.m.51 views

CVE-2023-31218

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional plugin = 1.0.6 versions...

7.1CVSS6.4AI score0.00211EPSS
Exploits0References1
NVD
NVD
added 2023/08/16 9:15 p.m.51 views

CVE-2023-40021

Oppia is an online learning platform. When comparing a received CSRF token against the expected token, Oppia uses the string equality operator ==, which is not safe against timing attacks. By repeatedly submitting invalid tokens, an attacker can brute-force the expected CSRF token character by...

5.3CVSS5.3AI score0.00646EPSS
Exploits1References4
NVD
NVD
added 2023/07/17 11:15 a.m.51 views

CVE-2023-34036

Reactive web applications that use Spring HATEOAS to produce hypermedia-based responses might be exposed to malicious forwarded headers if they are not behind a trusted proxy that ensures correctness of such headers, or if they don't have anything else in place to handle and possibly discard...

5.3CVSS0.00403EPSS
Exploits0References1
NVD
NVD
added 2023/07/12 10:15 a.m.51 views

CVE-2023-37582

The RocketMQ NameServer component still has a remote command execution vulnerability as the CVE-2023-33246 issue was not completely fixed in version 5.1.1. When NameServer address are leaked on the extranet and lack permission verification, an attacker can exploit this vulnerability by using the...

9.8CVSS9.7AI score0.8993EPSS
Exploits1References2
NVD
NVD
added 2023/07/10 10:15 p.m.51 views

CVE-2023-24490

Users with only access to launch VDA applications can launch an unauthorized desktop...

6.3CVSS6.3AI score0.00299EPSS
Exploits0References1
NVD
NVD
added 2023/07/06 11:15 p.m.51 views

CVE-2023-36829

Sentry is an error tracking and performance monitoring platform. Starting in version 23.6.0 and prior to version 23.6.2, the Sentry API incorrectly returns the access-control-allow-credentials: true HTTP header if the Origin request header ends with the system.base-hostname option of Sentry...

6.8CVSS6.5AI score0.00666EPSS
Exploits0References4
NVD
NVD
added 2023/06/25 10:15 p.m.51 views

CVE-2023-36661

Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows...

7.5CVSS7.3AI score0.03055EPSS
Exploits3References2
NVD
NVD
added 2023/06/15 1:15 a.m.51 views

CVE-2023-25683

IBM PowerVM Hypervisor FW950.00 through FW950.71, FW1010.00 through FW1010.40, FW1020.00 through FW1020.20, and FW1030.00 through FW1030.11 could allow an attacker to obtain sensitive information if they gain service access to the HMC. IBM X-Force ID: 247592...

7.5CVSS6.3AI score0.00626EPSS
Exploits0References2
NVD
NVD
added 2023/05/12 3:15 p.m.51 views

CVE-2023-29242

Improper access control for IntelR oneAPI Toolkits before version 2021.1 Beta 10 may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7AI score0.00137EPSS
Exploits0References1
NVD
NVD
added 2023/04/24 10:15 p.m.51 views

CVE-2023-30629

Vyper is a Pythonic Smart Contract Language for the ethereum virtual machine. In versions 0.3.1 through 0.3.7, the Vyper compiler generates the wrong bytecode. Any contract that uses the rawcall with revertonfailure=False and maxoutsize=0 receives the wrong response from rawcall. Depending on the...

7.5CVSS7.5AI score0.00883EPSS
Exploits1References5
NVD
NVD
added 2023/04/24 8:15 p.m.51 views

CVE-2023-29530

Laminas Diactoros provides PSR HTTP Message implementations. In versions 2.18.0 and prior, 2.19.0, 2.20.0, 2.21.0, 2.22.0, 2.23.0, 2.24.0, and 2.25.0, users who create HTTP requests or responses using laminas/laminas-diactoros, when providing a newline at the start or end of a header key or value...

7.5CVSS7.2AI score0.00965EPSS
Exploits0References3
NVD
NVD
added 2023/04/18 12:15 p.m.51 views

CVE-2021-41613

An issue was discovered in the controller unit of the OpenRISC mor1kx processor. The write logic of Exception Effective Address Register EEAR is not implemented correctly. User programs from authorized privilege levels will be unable to write to EEAR...

4.3CVSS4.7AI score0.00407EPSS
Exploits0References2
NVD
NVD
added 2023/03/30 1:15 a.m.51 views

CVE-2023-25000

HashiCorp Vault's implementation of Shamir's secret sharing used precomputed table lookups, and was vulnerable to cache-timing attacks. An attacker with access to, and the ability to observe a large number of unseal operations on the host through a side channel may reduce the search space of a...

5CVSS5.3AI score0.0021EPSS
Exploits0References2
NVD
NVD
added 2023/03/27 9:15 p.m.51 views

CVE-2023-28628

lambdaisland/uri is a pure Clojure/ClojureScript URI library. In versions prior to 1.14.120 authority-regex allows an attacker to send malicious URLs to be parsed by the lambdaisland/uri and return the wrong authority. This issue is similar to but distinct from CVE-2020-8910. The regex in questio...

6.1CVSS5.9AI score0.00553EPSS
Exploits1References2
NVD
NVD
added 2023/03/07 5:15 p.m.51 views

CVE-2023-25611

A improper neutralization of formula elements in a CSV file vulnerability in Fortinet FortiAnalyzer 6.4.0 - 6.4.9, 7.0.0 - 7.0.5, and 7.2.0 - 7.2.1 allows local attacker to execute unauthorized code or commands via inserting spreadsheet formulas in macro names...

7.3CVSS5.5AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2023/03/02 9:15 p.m.51 views

CVE-2023-22381

A code injection vulnerability was identified in GitHub Enterprise Server that allowed setting arbitrary environment variables from a single environment variable value in GitHub Actions when using a Windows based runner. To exploit this vulnerability, an attacker would need existing permission to...

8.8CVSS5.9AI score0.00839EPSS
Exploits0References5
NVD
NVD
added 2023/03/02 7:15 p.m.51 views

CVE-2023-26051

Saleor is a headless, GraphQL commerce platform delivering personalized shopping experiences. Some internal Python exceptions are not handled properly and thus are returned in API as error messages. Some messages might contain sensitive information like user email address in staff-authenticated...

6.5CVSS6.3AI score0.00817EPSS
Exploits0References8
NVD
NVD
added 2023/03/01 5:15 p.m.51 views

CVE-2022-39228

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. vantage6 does not inform the user of wrong username/password combination if the username actually exists. This is an attempt to prevent bots from obtaining usernames. However, if a wrong password is...

6.5CVSS5.6AI score0.00591EPSS
Exploits0References4
NVD
NVD
added 2023/02/17 3:15 p.m.51 views

CVE-2022-45701

Arris TG2482A firmware through 9.1.103GEM9 allow Remote Code Execution RCE via the ping utility feature...

8.8CVSS9AI score0.45313EPSS
Exploits6References1
NVD
NVD
added 2023/02/17 2:15 p.m.51 views

CVE-2022-40032

SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information...

9.8CVSS10AI score0.20693EPSS
Exploits5References4
NVD
NVD
added 2023/02/16 7:15 p.m.51 views

CVE-2022-27482

A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiADC version 7.0.0 through 7.0.1, 6.2.0 through 6.2.2, 6.1.0 through 6.1.6, 6.0.x, 5.x.x allows attacker to execute arbitrary shell code as root via CLI commands...

7.8CVSS8AI score0.00552EPSS
Exploits0References1
NVD
NVD
added 2023/01/26 9:18 p.m.51 views

CVE-2023-24454

Jenkins TestQuality Updater Plugin 1.3 and earlier stores the TestQuality Updater password unencrypted in its global configuration file on the Jenkins controller where it can be viewed by users with access to the Jenkins controller file system...

5.5CVSS5.5AI score0.00203EPSS
Exploits0References1
NVD
NVD
added 2023/01/26 9:18 p.m.51 views

CVE-2023-23619

Modelina is a library for generating data models based on inputs such as AsyncAPI, OpenAPI, or JSON Schema documents. Versions prior to 1.0.0 are vulnerable to Code injection. This issue affects anyone who is using the default presets and/or does not handle the functionality themself. This issue...

9.9CVSS9.8AI score0.01064EPSS
Exploits1References1
NVD
NVD
added 2023/01/18 12:15 a.m.51 views

CVE-2022-39429

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4.3CVSS3.7AI score0.00561EPSS
Exploits0References1
NVD
NVD
added 2023/01/16 11:15 a.m.51 views

CVE-2022-43718

Upload data forms do not correctly render user input leading to possible XSS attack vectors that can be performed by authenticated users with database connection update permissions. This issue affects Apache Superset version 1.5.2 and prior versions and version 2.0.0...

5.4CVSS5.1AI score0.01302EPSS
Exploits0References1
NVD
NVD
added 2023/01/03 6:15 p.m.51 views

CVE-2021-32824

Apache Dubbo is a java based, open source RPC framework. Versions prior to 2.6.10 and 2.7.10 are vulnerable to pre-auth remote code execution via arbitrary bean manipulation in the Telnet handler. The Dubbo main service port can be used to access a Telnet Handler which offers some basic methods t...

9.8CVSS9.8AI score0.02909EPSS
Exploits1References1
NVD
NVD
added 2022/12/19 11:15 a.m.51 views

CVE-2022-44755

HCL Notes is susceptible to a stack based buffer overflow vulnerability in lasr.dll in Micro Focus KeyView. This could allow a remote unauthenticated attacker to crash the application or execute arbitrary code via a crafted Lotus Ami Pro file. This is different from the vulnerability described in...

9.8CVSS0.00704EPSS
Exploits0References1
NVD
NVD
added 2022/12/05 9:15 p.m.51 views

CVE-2022-44039

Franklin Fueling System FFS Colibri 1.9.22.8925 is affected by: File system overwrite. The impact is: File system rewrite remote. ¶¶ An attacker can overwrite system files like system.conf and passwd, this occurs because the insecure usage of "fopen" system function with the mode "wb" which allow...

9.8CVSS0.00997EPSS
Exploits1References1
NVD
NVD
added 2022/11/10 12:15 a.m.51 views

CVE-2022-39368

Eclipse Californium is a Java implementation of RFC7252 - Constrained Application Protocol for IoT Cloud services. In versions prior to 3.7.0, and 2.7.4, Californium is vulnerable to a Denial of Service. Failing handshakes don't cleanup counters for throttling, causing the threshold to be reached...

8.2CVSS0.00553EPSS
Exploits0References3
NVD
NVD
added 2022/11/01 6:15 p.m.51 views

CVE-2022-23738

An improper cache key vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to access private repository files through a public repository. To exploit this, an actor would need to already be authorized on the GitHub Enterprise Server instance, be able to crea...

5.7CVSS0.00634EPSS
Exploits0References5
NVD
NVD
added 2022/10/12 11:15 p.m.51 views

CVE-2022-39297

MelisCms provides a full CMS for Melis Platform, including templating system, drag'n'drop of plugins, SEO and many administration tools. Attackers can deserialize arbitrary data on affected versions of melisplatform/melis-cms, and ultimately leads to the execution of arbitrary PHP code on the...

9.8CVSS0.0094EPSS
Exploits0References2
NVD
NVD
added 2022/10/10 2:15 p.m.51 views

CVE-2022-26121

An exposure of resource to wrong sphere vulnerability CWE-668 in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an unauthenticated and remote attacker to access report template images via...

5.3CVSS0.00734EPSS
Exploits0References1
NVD
NVD
added 2022/09/29 6:15 p.m.51 views

CVE-2022-39266

isolated-vm is a library for nodejs which gives the user access to v8's Isolate interface. In versions 4.3.6 and prior, if the untrusted v8 cached data is passed to the API through CachedDataOptions, attackers can bypass the sandbox and run arbitrary code in the nodejs process. Version 4.3.7...

9.8CVSS0.01088EPSS
Exploits0References4
NVD
NVD
added 2022/09/16 11:15 p.m.51 views

CVE-2022-35997

TensorFlow is an open source platform for machine learning. If tf.sparse.cross receives an input separator that is not a scalar, it gives a CHECK fail that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 83dcb4dbfa094e33db084e97c4d0531a559e0ebf. The f...

7.5CVSS0.00405EPSS
Exploits0References2
NVD
NVD
added 2022/08/05 10:15 p.m.51 views

CVE-2022-22140

An os command injection vulnerability exists in the confsrv ucloudaddnode functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a malicious packet to trigger this vulnerability...

9.8CVSS0.03589EPSS
Exploits1References1
NVD
NVD
added 2022/08/05 5:15 p.m.51 views

CVE-2022-2668

An issue was discovered in Keycloak that allows arbitrary Javascript to be uploaded for the SAML protocol mapper even if the UPLOADSCRIPTS feature is disabled...

7.2CVSS0.00834EPSS
Exploits0References1
Total number of security vulnerabilities5000