Lucene search
K
NvdMost viewed

363725 matches found

NVD
NVD
added 2020/05/06 6:15 p.m.49 views

CVE-2020-11727

A cross-site scripting XSS vulnerability in the AlgolPlus Advanced Order Export For WooCommerce plugin 3.1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the view/settings-form.php woeposttype parameter...

6.1CVSS6AI score0.01955EPSS
Exploits4References4
NVD
NVD
added 2020/05/04 1:15 p.m.49 views

CVE-2020-1959

A Server-Side Template Injection was identified in Apache Syncope prior to 2.1.6 enabling attackers to inject arbitrary Java EL expressions, leading to an unauthenticated Remote Code Execution RCE vulnerability. Apache Syncope uses Java Bean Validation JSR 380 custom constraint validators. When...

9.8CVSS9.8AI score0.04821EPSS
Exploits0References1
NVD
NVD
added 2020/04/30 5:15 a.m.49 views

CVE-2020-12283

Sourcegraph before 3.15.1 has a vulnerable authentication workflow because of improper validation in the SafeRedirectURL method in cmd/frontend/auth/redirect.go, such as for the //foo//example.com substring...

6.1CVSS6.4AI score0.013EPSS
Exploits1References5
NVD
NVD
added 2020/02/24 10:15 p.m.49 views

CVE-2020-1938

When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that...

9.8CVSS9.9AI score0.9927EPSS
Exploits45References52
NVD
NVD
added 2019/12/17 5:15 p.m.49 views

CVE-2019-19849

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS8.6AI score0.01267EPSS
Exploits0References2
NVD
NVD
added 2019/12/10 10:15 p.m.49 views

CVE-2019-1332

A cross-site scripting XSS vulnerability exists when Microsoft SQL Server Reporting Services SSRS does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS Vulnerability'...

6.1CVSS6AI score0.07226EPSS
Exploits1References2
NVD
NVD
added 2019/09/25 4:15 p.m.49 views

CVE-2019-10417

Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection...

9.9CVSS9.6AI score0.01205EPSS
Exploits0References2
NVD
NVD
added 2019/05/08 2:29 p.m.49 views

CVE-2019-8387

MASTER IPCAMERA01 3.3.4.2103 devices allow Remote Command Execution, related to the thttpd component...

9.8CVSS9.6AI score0.55721EPSS
Exploits5References3
NVD
NVD
added 2019/04/30 1:29 p.m.49 views

CVE-2019-10310

A cross-site request forgery vulnerability in Jenkins Ansible Tower Plugin 0.9.1 and earlier in the TowerInstallation.TowerInstallationDescriptordoTestTowerConnection form validation method allowed attackers permission to connect to an attacker-specified URL using attacker-specified credentials I...

8.8CVSS8.6AI score0.01525EPSS
Exploits0References4
NVD
NVD
added 2019/04/11 7:29 p.m.49 views

CVE-2019-5715

All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to 4.0.7, 4.1.5, 4.2.4, and 4.3.1 allows Reflected SQL Injection through Form and DataObject...

9.8CVSS9.8AI score0.01564EPSS
Exploits0References2
NVD
NVD
added 2019/03/21 4:1 p.m.49 views

CVE-2019-6973

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...

7.5CVSS7.5AI score0.13776EPSS
Exploits5References3
NVD
NVD
added 2018/10/09 5:29 p.m.49 views

CVE-2018-14649

It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthenticated attackers to access this debug shell a...

10CVSS10AI score0.11741EPSS
Exploits1References7
NVD
NVD
added 2018/09/20 2:29 p.m.49 views

CVE-2018-17254

The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter...

9.8CVSS9.9AI score0.82976EPSS
Exploits5References2
NVD
NVD
added 2018/04/26 8:29 p.m.49 views

CVE-2018-7527

A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU 1.8.29, and PI Studio HMI Project Programmer, Build: November 11, 2017 and prior by opening a specially crafted file...

6.8CVSS5.4AI score0.00732EPSS
Exploits0References2
NVD
NVD
added 2018/04/16 7:29 p.m.49 views

CVE-2016-9093

A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and earlier fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this issue. A non-admin user would need to be able to save an executable file to disk and then be able t...

7CVSS6.8AI score0.00396EPSS
Exploits0References3
NVD
NVD
added 2017/07/17 1:18 p.m.49 views

CVE-2017-11349

dataTaker DT8x dEX 1.72.007 allows remote attackers to compose programs or schedules, for purposes such as sending e-mail messages or making outbound connections to FTP servers for uploading data...

9.8CVSS9.5AI score0.02EPSS
Exploits1References2
NVD
NVD
added 2014/05/02 2:55 p.m.49 views

CVE-2013-7061

Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators to bypass restrictions and obtain sensitive information via an unspecified search API...

5.5CVSS6.3AI score0.00951EPSS
Exploits0References3
NVD
NVD
added 2013/07/23 11:3 a.m.49 views

CVE-2013-2165

ResourceBuilderImpl.java in the RichFaces 3.x through 5.x implementation in Red Hat JBoss Web Framework Kit before 2.3.0, Red Hat JBoss Web Platform through 5.2.0, Red Hat JBoss Enterprise Application Platform through 4.3.0 CP10 and 5.x through 5.2.0, Red Hat JBoss BRMS through 5.3.1, Red Hat JBo...

7.5CVSS9.8AI score0.12662EPSS
Exploits1References11
NVD
NVD
added 2013/05/22 1:29 p.m.49 views

CVE-2013-0941

EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the no...

2.1CVSS5.6AI score0.01263EPSS
Exploits0References1
NVD
NVD
added 2013/01/09 6:9 p.m.49 views

CVE-2013-0006

Microsoft XML Core Services aka MSXML 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."...

9.3CVSS7.4AI score0.28084EPSS
Exploits1References4
NVD
NVD
added 2011/01/24 7:0 p.m.49 views

CVE-2010-4706

The pamsmclosesession function in pamxauth.c in the pamxauth module in Linux-PAM aka pam 1.1.2 and earlier does not properly handle a failure to determine a certain target uid, which might allow local users to delete unintended files by executing a program that relies on the pamxauth PAM check...

4.9CVSS6.1AI score0.00368EPSS
Exploits0References6
NVD
NVD
added 2010/10/18 5:0 p.m.49 views

CVE-2010-0219

Apache Axis2, as used in dswsbobje.war in SAP BusinessObjects Enterprise XI 3.2, CA ARCserve D2D r15, and other products, has a default password of axis2 for the admin account, which makes it easier for remote attackers to execute arbitrary code by uploading a crafted web service...

10CVSS9.7AI score0.89871EPSS
Exploits17References14
NVD
NVD
added 2009/11/05 4:30 p.m.49 views

CVE-2009-3869

Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit AWT in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote...

9.3CVSS7.7AI score0.65461EPSS
Exploits9References27
NVD
NVD
added 2008/11/10 2:12 p.m.49 views

CVE-2008-5004

SQL injection vulnerability in genscode.php in myWebland Bloggie Lite 0.0.2 beta allows remote attackers to execute arbitrary SQL commands via a crafted cookie...

7.5CVSS8.3AI score0.00967EPSS
Exploits1References3
NVD
NVD
added 2006/08/01 9:4 p.m.49 views

CVE-2006-3949

PHP remote file inclusion vulnerability in artlinks.dispnew.php in the Artlinks component comartlinks for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

6.8CVSS7.6AI score0.04432EPSS
Exploits1References4
NVD
NVD
added 2004/12/23 5:0 a.m.49 views

CVE-2004-0867

Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. NOTE: it was later reported that 2.x is also affected...

7.5CVSS6.5AI score0.17183EPSS
Exploits0References7
NVD
NVD
added 2026/05/13 5:16 p.m.48 views

CVE-2026-44576

Next.js is a React framework for building full-stack web applications. From 14.2.0 to before 15.5.16 and 16.2.5, applications using React Server Components can be vulnerable to cache poisoning when shared caches do not correctly partition response variants. Under affected conditions, an attacker...

5.4CVSS0.0025EPSS
Exploits0References1
NVD
NVD
added 2026/05/10 5:16 a.m.48 views

CVE-2026-8230

A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function syslogin1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command injection. The attack can be executed remotely. The exploit has been published and may be used. Th...

8.8CVSS0.04944EPSS
Exploits1References4
NVD
NVD
added 2026/05/09 4:16 a.m.48 views

CVE-2026-41311

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to version 10.25.7, a circular block reference in % layout % / % block % causes an infinite recursive loop, consuming all available memory 4GB and crashing the Node.js process with FATAL ERROR: JavaScript he...

7.5CVSS0.00382EPSS
Exploits1References3
NVD
NVD
added 2026/05/07 3:16 p.m.48 views

CVE-2026-44263

Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and component link API allowed for the enumeration of translations in a project inaccessible to the user. This issue has been patched in version 5.17.1...

4.3CVSS0.00288EPSS
Exploits0References4
NVD
NVD
added 2026/05/05 5:16 a.m.48 views

CVE-2026-7822

A vulnerability was identified in itsourcecode Courier Management System 1.0. This impacts an unknown function of the file /printpdets.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

6.5CVSS0.00196EPSS
Exploits0References5
NVD
NVD
added 2026/05/05 4:16 a.m.48 views

CVE-2026-4803

The Royal Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'status' parameter in the wprupdateformactionmeta AJAX action in all versions up to, and including, 1.7.1056. This is due to insufficient input sanitization and output escaping, combined with a...

7.2CVSS0.00359EPSS
Exploits0References6
NVD
NVD
added 2026/05/04 9:16 p.m.48 views

CVE-2026-42238

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint POST /api/restore that is completely unauthenticated during the first 10 minutes after process startup on any fresh installation. An unauthenticated remote attacker can...

9.8CVSS0.00764EPSS
Exploits1References2
NVD
NVD
added 2026/05/04 7:16 a.m.48 views

CVE-2026-43859

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/05/02 6:16 a.m.48 views

CVE-2026-5112

The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping of Calculation Product field product names when rendered inside Repeater fields. The validat...

7.2CVSS0.00232EPSS
Exploits0References2
NVD
NVD
added 2026/04/16 11:16 p.m.48 views

CVE-2026-40253

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.8CVSS0.0016EPSS
Exploits1References2
NVD
NVD
added 2026/03/10 6:19 p.m.48 views

CVE-2026-3483

An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges...

7.8CVSS0.00397EPSS
Exploits0References1
NVD
NVD
added 2026/01/05 5:15 p.m.48 views

CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

6.5CVSS0.00132EPSS
Exploits0References1
NVD
NVD
added 2025/11/03 8:15 a.m.48 views

CVE-2025-12623

A vulnerability was identified in fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032. Affected by this issue is some unknown functionality of the file fuint-application/src/main/java/com/fuint/module/clientApi/controller/ClientSignController.java of the component Authentication Toke...

3.1CVSS0.00344EPSS
Exploits0References4
NVD
NVD
added 2025/10/06 10:15 p.m.48 views

CVE-2025-43824

The Profile widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, and older unsupported versions uses a user’s name in the “Content-Disposition” header, which allows...

5.4CVSS0.00217EPSS
Exploits0References1
NVD
NVD
added 2025/08/29 11:15 a.m.48 views

CVE-2024-13342

The Booster for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'addfilestoorder' function in all versions up to, and including, 7.2.4. This makes it possible for unauthenticated attackers to upload arbitrary files with double...

9.8CVSS0.00686EPSS
Exploits0References3
NVD
NVD
added 2025/08/04 5:15 p.m.48 views

CVE-2025-44957

Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...

8.8CVSS0.00891EPSS
Exploits0References4
NVD
NVD
added 2025/07/30 3:15 p.m.48 views

CVE-2025-43018

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

6.9CVSS0.00274EPSS
Exploits0References1
NVD
NVD
added 2025/07/09 6:15 a.m.48 views

CVE-2025-6742

The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.7.3 via the use of fileexists in the deleteentryfiles function without restriction on the path provided. This makes it possible for...

7.5CVSS0.00465EPSS
Exploits0References3
NVD
NVD
added 2025/07/07 7:15 a.m.48 views

CVE-2025-41672

A remote unauthenticated attacker may use default certificates to generate JWT Tokens and gain full access to the tool and all connected devices...

10CVSS0.00346EPSS
Exploits0References2
NVD
NVD
added 2025/04/20 7:15 a.m.48 views

CVE-2025-3822

A vulnerability was found in SourceCodester Web-based Pharmacy Product Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file changepassword.php. The manipulation of the argument txtconfirmpassword/txtnewpassword/txtoldpassword leads to cro...

5.4CVSS0.0037EPSS
Exploits1References4
NVD
NVD
added 2025/04/15 6:15 p.m.48 views

CVE-2024-50960

A command injection vulnerability in the Nmap diagnostic tool in the admin web console of Extron SMP 111 =3.01, SMP 351 =2.16, SMP 352 = 2.16, and SME 211 = 3.02, allows a remote authenticated attacker to execute arbitrary commands as root on the underlying operating system...

7.2CVSS0.02216EPSS
Exploits2References3
NVD
NVD
added 2025/04/15 6:15 p.m.48 views

CVE-2024-42189

HCL BigFix Web Reports might be subject to a Denial of Service DoS attack, due to a potentially weak validation of an API parameter...

6.5CVSS0.00262EPSS
Exploits0References1
NVD
NVD
added 2025/04/12 3:15 a.m.48 views

CVE-2025-2881

The Developer Toolbar plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.3 through the publicly accessible phpinfo.php script. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in th...

5.3CVSS0.00348EPSS
Exploits0References3
NVD
NVD
added 2025/04/12 3:15 a.m.48 views

CVE-2025-2841

The Cart66 Cloud plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.3.7 through the publicly accessible phpinfo.php script. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the...

5.3CVSS0.00359EPSS
Exploits0References5
Total number of security vulnerabilities5000