Lucene search
K
NvdMost viewed

364208 matches found

NVD
NVD
added 2020/06/11 3:15 p.m.49 views

CVE-2020-0180

In GetOpusHeaderBuffers of OpusHeader.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-10Android...

6.5CVSS0.00732EPSS
Exploits0References1
NVD
NVD
added 2020/05/22 5:15 p.m.49 views

CVE-2020-13388

An exploitable vulnerability exists in the configuration-loading functionality of the jw.util package before 2.3 for Python. When loading a configuration with FromString or FromStream with YAML, one can execute arbitrary Python code, resulting in OS command execution, because safeload is not used...

9.8CVSS9.8AI score0.04422EPSS
Exploits1References3
NVD
NVD
added 2020/05/08 9:15 p.m.49 views

CVE-2020-11532

Zoho ManageEngine DataSecurity Plus prior to 6.0.1 uses default admin credentials to communicate with a DataEngine Xnode server. This allows an attacker to bypass authentication for this server and execute all operations in the context of admin user...

10CVSS9.7AI score0.77477EPSS
Exploits7References3
NVD
NVD
added 2020/05/06 6:15 p.m.49 views

CVE-2020-11727

A cross-site scripting XSS vulnerability in the AlgolPlus Advanced Order Export For WooCommerce plugin 3.1.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the view/settings-form.php woeposttype parameter...

6.1CVSS6AI score0.01955EPSS
Exploits4References4
NVD
NVD
added 2020/05/04 1:15 p.m.49 views

CVE-2020-1959

A Server-Side Template Injection was identified in Apache Syncope prior to 2.1.6 enabling attackers to inject arbitrary Java EL expressions, leading to an unauthenticated Remote Code Execution RCE vulnerability. Apache Syncope uses Java Bean Validation JSR 380 custom constraint validators. When...

9.8CVSS9.8AI score0.04821EPSS
Exploits0References1
NVD
NVD
added 2020/04/30 5:15 a.m.49 views

CVE-2020-12283

Sourcegraph before 3.15.1 has a vulnerable authentication workflow because of improper validation in the SafeRedirectURL method in cmd/frontend/auth/redirect.go, such as for the //foo//example.com substring...

6.1CVSS6.4AI score0.013EPSS
Exploits1References5
NVD
NVD
added 2020/03/06 9:15 p.m.49 views

CVE-2020-10111

Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic for performance optimization...

7.5CVSS7.6AI score0.0195EPSS
Exploits3References3
NVD
NVD
added 2020/02/14 8:15 p.m.49 views

CVE-2013-4211

A Code Execution Vulnerability exists in OpenX Ad Server 2.8.10 due to a backdoor in flowplayer-3.1.1.min.js library, which could let a remote malicious user execute arbitrary PHP code...

9.8CVSS9.7AI score0.76415EPSS
Exploits5References5
NVD
NVD
added 2019/12/17 5:15 p.m.49 views

CVE-2019-19849

An issue was discovered in TYPO3 before 8.7.30, 9.x before 9.5.12, and 10.x before 10.2.2. It has been discovered that the classes QueryGenerator and QueryView are vulnerable to insecure deserialization. One exploitable scenario requires having the system extension ext:lowlevel Backend Module: DB...

8.8CVSS8.6AI score0.01267EPSS
Exploits0References2
NVD
NVD
added 2019/11/13 6:15 p.m.49 views

CVE-2019-2205

In ProxyResolverV8::SetPacScript of proxyresolverv8.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

10CVSS9.4AI score0.02864EPSS
Exploits0References1
NVD
NVD
added 2019/10/25 7:15 p.m.49 views

CVE-2019-17139

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.1AI score0.05783EPSS
Exploits0References2
NVD
NVD
added 2019/09/25 4:15 p.m.49 views

CVE-2019-10417

Jenkins Kubernetes :: Pipeline :: Kubernetes Steps Plugin provides a custom whitelist for script security that allowed attackers to invoke arbitrary methods, bypassing typical sandbox protection...

9.9CVSS9.6AI score0.01205EPSS
Exploits0References2
NVD
NVD
added 2019/07/31 1:15 p.m.49 views

CVE-2019-10356

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions allowed attackers to execute arbitrary code in sandboxed scripts...

8.8CVSS8.9AI score0.025EPSS
Exploits0References5
NVD
NVD
added 2019/05/21 1:29 p.m.49 views

CVE-2019-10320

Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS12 certificate...

4.3CVSS4.5AI score0.00969EPSS
Exploits0References7
NVD
NVD
added 2019/05/08 2:29 p.m.49 views

CVE-2019-8387

MASTER IPCAMERA01 3.3.4.2103 devices allow Remote Command Execution, related to the thttpd component...

9.8CVSS9.6AI score0.55721EPSS
Exploits5References3
NVD
NVD
added 2019/04/30 1:29 p.m.49 views

CVE-2019-10310

A cross-site request forgery vulnerability in Jenkins Ansible Tower Plugin 0.9.1 and earlier in the TowerInstallation.TowerInstallationDescriptordoTestTowerConnection form validation method allowed attackers permission to connect to an attacker-specified URL using attacker-specified credentials I...

8.8CVSS8.6AI score0.01525EPSS
Exploits0References4
NVD
NVD
added 2019/04/11 7:29 p.m.49 views

CVE-2019-5715

All versions of SilverStripe 3 prior to 3.6.7 and 3.7.3, and all versions of SilverStripe 4 prior to 4.0.7, 4.1.5, 4.2.4, and 4.3.1 allows Reflected SQL Injection through Form and DataObject...

9.8CVSS9.8AI score0.01564EPSS
Exploits0References2
NVD
NVD
added 2019/03/21 4:1 p.m.49 views

CVE-2019-6973

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server based on gSOAP 2.8.x is configured for an iterative queueing approach aka non-threaded operation with a timeout of several seconds...

7.5CVSS7.5AI score0.13776EPSS
Exploits5References3
NVD
NVD
added 2018/10/09 5:29 p.m.49 views

CVE-2018-14649

It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthenticated attackers to access this debug shell a...

10CVSS10AI score0.11741EPSS
Exploits1References7
NVD
NVD
added 2018/09/20 2:29 p.m.49 views

CVE-2018-17254

The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter...

9.8CVSS9.9AI score0.82976EPSS
Exploits5References2
NVD
NVD
added 2018/08/27 5:29 p.m.49 views

CVE-2017-15139

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive...

7.5CVSS6AI score0.01244EPSS
Exploits0References4
NVD
NVD
added 2018/04/26 8:29 p.m.49 views

CVE-2018-7527

A buffer overflow can be triggered in LeviStudio HMI Editor, Version 1.10 part of Wecon LeviStudioU 1.8.29, and PI Studio HMI Project Programmer, Build: November 11, 2017 and prior by opening a specially crafted file...

6.8CVSS5.4AI score0.00732EPSS
Exploits0References2
NVD
NVD
added 2018/04/16 7:29 p.m.49 views

CVE-2016-9093

A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and earlier fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this issue. A non-admin user would need to be able to save an executable file to disk and then be able t...

7CVSS6.8AI score0.00396EPSS
Exploits0References3
NVD
NVD
added 2017/07/17 1:18 p.m.49 views

CVE-2017-11349

dataTaker DT8x dEX 1.72.007 allows remote attackers to compose programs or schedules, for purposes such as sending e-mail messages or making outbound connections to FTP servers for uploading data...

9.8CVSS9.5AI score0.02EPSS
Exploits1References2
NVD
NVD
added 2014/04/01 3:24 a.m.49 views

CVE-2013-5640

Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary SQL commands via the 1 answerid or 2 questionid parameter to polls/vote.php, 3 storyid parameter to comments/add.php or 4 comments/edit.php, or 5 threadid parameter to posts/add.php. NOTE: this issue...

7.5CVSS8.3AI score0.02387EPSS
Exploits6References4
NVD
NVD
added 2013/09/28 3:40 a.m.49 views

CVE-2013-5160

Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of taps of the emergency-call button to trigger a NULL pointer dereference...

3.3CVSS6AI score0.00342EPSS
Exploits1References2
NVD
NVD
added 2013/05/22 1:29 p.m.49 views

CVE-2013-0941

EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the no...

2.1CVSS5.6AI score0.01263EPSS
Exploits0References1
NVD
NVD
added 2013/01/09 6:9 p.m.49 views

CVE-2013-0006

Microsoft XML Core Services aka MSXML 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."...

9.3CVSS7.4AI score0.28084EPSS
Exploits1References4
NVD
NVD
added 2011/12/25 1:55 a.m.49 views

CVE-2009-5109

Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows remote attackers to execute arbitrary code via a long entry in a .pls file...

9.3CVSS8AI score0.32817EPSS
Exploits2References5
NVD
NVD
added 2011/01/24 7:0 p.m.49 views

CVE-2010-4706

The pamsmclosesession function in pamxauth.c in the pamxauth module in Linux-PAM aka pam 1.1.2 and earlier does not properly handle a failure to determine a certain target uid, which might allow local users to delete unintended files by executing a program that relies on the pamxauth PAM check...

4.9CVSS6.1AI score0.00368EPSS
Exploits0References6
NVD
NVD
added 2010/12/06 8:12 p.m.49 views

CVE-2010-2639

IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers to read messages intended for other recipients via vectors involving access by the outbound messaging system to the RunTimeProfileCacheCmdImpl class, related to the caching of mutable objects and "concurrency issues."...

5CVSS6.5AI score0.01242EPSS
Exploits0References4
NVD
NVD
added 2010/08/11 6:47 p.m.49 views

CVE-2010-2554

The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 has incorrect ACLs on its registry keys, which allows local users to gain privileges via vectors involving a named pipe and impersonation, aka "Tracing Registry Key ACL...

7.8CVSS6.3AI score0.0192EPSS
Exploits7References2
NVD
NVD
added 2008/11/10 2:12 p.m.49 views

CVE-2008-5004

SQL injection vulnerability in genscode.php in myWebland Bloggie Lite 0.0.2 beta allows remote attackers to execute arbitrary SQL commands via a crafted cookie...

7.5CVSS8.3AI score0.00967EPSS
Exploits1References3
NVD
NVD
added 2006/08/01 9:4 p.m.49 views

CVE-2006-3949

PHP remote file inclusion vulnerability in artlinks.dispnew.php in the Artlinks component comartlinks for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

6.8CVSS7.6AI score0.04432EPSS
Exploits1References4
NVD
NVD
added 2026/05/13 8:16 p.m.48 views

CVE-2026-44364

MISP modules are autonomous modules that can be used to extend MISP for new services. In 3.0.7 and earlier, a Cross-Site Request Forgery vulnerability in the MISP Modules website allowed an attacker to cause an authenticated user to submit unintended requests to the home endpoint. The vulnerabili...

9.3CVSS0.00185EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 5:16 p.m.48 views

CVE-2026-44576

Next.js is a React framework for building full-stack web applications. From 14.2.0 to before 15.5.16 and 16.2.5, applications using React Server Components can be vulnerable to cache poisoning when shared caches do not correctly partition response variants. Under affected conditions, an attacker...

5.4CVSS0.0025EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 4:16 p.m.48 views

CVE-2026-44288

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs includes a minimal UTF-8 decoder that accepted overlong UTF-8 byte sequences and decoded them to their canonical characters instead of replacing them. An attacker who can provide protobuf...

5.3CVSS0.00301EPSS
Exploits0References1
NVD
NVD
added 2026/05/10 5:16 a.m.48 views

CVE-2026-8230

A flaw has been found in Wavlink NU516U1 240425. The impacted element is the function syslogin1 of the file /cgi-bin/login.cgi. Executing a manipulation of the argument ipaddr can lead to os command injection. The attack can be executed remotely. The exploit has been published and may be used. Th...

8.8CVSS0.04944EPSS
Exploits1References4
NVD
NVD
added 2026/05/09 4:16 a.m.48 views

CVE-2026-42051

Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, the system API endpoint leaks license data and installed version to authenticated users. This issue has been patched in versions 4.9.0 and 5.4.0...

5.3CVSS0.00193EPSS
Exploits0References3
NVD
NVD
added 2026/05/09 4:16 a.m.48 views

CVE-2026-41311

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to version 10.25.7, a circular block reference in % layout % / % block % causes an infinite recursive loop, consuming all available memory 4GB and crashing the Node.js process with FATAL ERROR: JavaScript he...

7.5CVSS0.00382EPSS
Exploits1References3
NVD
NVD
added 2026/05/07 10:16 p.m.48 views

CVE-2026-8034

A server-side request forgery SSRF vulnerability was identified in the GitHub Enterprise Server notebook viewer that allowed an attacker to access internal services by exploiting URL parser confusion between the validation layer and the HTTP request library. The hostname validation used a differe...

9.8CVSS0.00377EPSS
Exploits0References5
NVD
NVD
added 2026/05/07 3:16 p.m.48 views

CVE-2026-44263

Weblate is a web based localization tool. Prior to version 5.17.1, the screenshots, tasks, and component link API allowed for the enumeration of translations in a project inaccessible to the user. This issue has been patched in version 5.17.1...

4.3CVSS0.00288EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 12:16 p.m.48 views

CVE-2026-43216

In the Linux kernel, the following vulnerability has been resolved: net: Drop the lock in skbmaytxtimestamp skbmaytxtimestamp may acquire sock::skcallbacklock. The lock must not be taken in IRQ context, only softirq is okay. A few drivers receive the timestamp via a dedicated interrupt and comple...

5.5CVSS0.00127EPSS
Exploits0References4
NVD
NVD
added 2026/05/05 5:16 a.m.48 views

CVE-2026-7822

A vulnerability was identified in itsourcecode Courier Management System 1.0. This impacts an unknown function of the file /printpdets.php. The manipulation of the argument ids leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

6.5CVSS0.00196EPSS
Exploits0References5
NVD
NVD
added 2026/05/05 4:16 a.m.48 views

CVE-2026-4803

The Royal Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'status' parameter in the wprupdateformactionmeta AJAX action in all versions up to, and including, 1.7.1056. This is due to insufficient input sanitization and output escaping, combined with a...

7.2CVSS0.00359EPSS
Exploits0References6
NVD
NVD
added 2026/05/04 9:16 p.m.48 views

CVE-2026-42238

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, nginx-ui exposes a backup restore endpoint POST /api/restore that is completely unauthenticated during the first 10 minutes after process startup on any fresh installation. An unauthenticated remote attacker can...

9.8CVSS0.00764EPSS
Exploits1References2
NVD
NVD
added 2026/05/04 7:16 a.m.48 views

CVE-2026-43859

mutt before 2.3.2 sometimes uses strfcpy instead of memcpy for the IMAP authcram MD5 digest...

3.7CVSS0.00162EPSS
Exploits0References1
NVD
NVD
added 2026/05/02 6:16 a.m.48 views

CVE-2026-5112

The Gravity Forms plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to and including 2.10.0. This is due to insufficient input validation and output escaping of Calculation Product field product names when rendered inside Repeater fields. The validat...

7.2CVSS0.00232EPSS
Exploits0References2
NVD
NVD
added 2026/04/16 11:16 p.m.48 views

CVE-2026-40253

openCryptoki is a PKCS11 library and provides tooling for Linux and AIX. In versions 3.26.0 and below, the BER/DER decoding functions in the shared common library asn1.c accept a raw pointer but no buffer length parameter, and trust attacker-controlled BER length fields without validating them...

6.8CVSS0.0016EPSS
Exploits1References2
NVD
NVD
added 2026/03/10 6:19 p.m.48 views

CVE-2026-3483

An exposed dangerous method in Ivanti DSM before version 2026.1.1 allows a local authenticated attacker to escalate their privileges...

7.8CVSS0.00397EPSS
Exploits0References1
Total number of security vulnerabilities5000