Lucene search
K
NvdMost viewed

363779 matches found

NVD
NVD
•added 2019/08/20 7:15 p.m.•48 views

CVE-2019-10745

assign-deep is vulnerable to Prototype Pollution in versions before 0.4.8 and version 1.0.0. The function assign-deep could be tricked into adding or modifying properties of Object.prototype using either a constructor or a proto payload...

7.5CVSS7.4AI score0.01142EPSS
Exploits1References1
NVD
NVD
•added 2019/08/15 7:15 p.m.•48 views

CVE-2019-13513

In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger multiple out-of-bounds read vulnerabilities, which may allow information disclosure, remote code execution, or crash of the application...

7.8CVSS7.7AI score0.0385EPSS
Exploits0References6
NVD
NVD
•added 2019/07/31 1:15 p.m.•48 views

CVE-2019-10356

A sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the handling of method pointer expressions allowed attackers to execute arbitrary code in sandboxed scripts...

8.8CVSS8.9AI score0.025EPSS
Exploits0References5
NVD
NVD
•added 2019/05/31 10:29 p.m.•48 views

CVE-2019-10038

Evernote 7.9 on macOS allows attackers to execute arbitrary programs by embedding a reference to a local executable file such as the /Applications/Calculator.app/Contents/MacOS/Calculator file...

7.8CVSS7.6AI score0.01307EPSS
Exploits4References3
NVD
NVD
•added 2019/05/21 1:29 p.m.•48 views

CVE-2019-10320

Jenkins Credentials Plugin 2.1.18 and earlier allowed users with permission to create or update credentials to confirm the existence of files on the Jenkins master with an attacker-specified path, and obtain the certificate content of files containing a PKCS12 certificate...

4.3CVSS4.5AI score0.00969EPSS
Exploits0References7
NVD
NVD
•added 2019/03/11 6:29 p.m.•48 views

CVE-2019-9692

class.showtime2image.php in CMS Made Simple CMSMS before 2.2.10 does not ensure that a watermark file has a standard image file extension GIF, JPG, JPEG, or PNG...

6.5CVSS6.5AI score0.45896EPSS
Exploits7References6
NVD
NVD
•added 2019/01/09 4:29 p.m.•48 views

CVE-2018-20679

An issue was discovered in BusyBox before 1.30.0. An out of bounds read in udhcp components consumed by the DHCP server, client, and relay allows a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to verification in udhcpgetoption in...

7.5CVSS7.1AI score0.07694EPSS
Exploits2References7
NVD
NVD
•added 2018/12/10 2:29 p.m.•48 views

CVE-2018-1000864

A denial of service vulnerability exists in Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in CronTab.java that allows attackers with Overall/Read permission to have a request handling thread enter an infinite loop...

6.5CVSS6.8AI score0.02751EPSS
Exploits0References3
NVD
NVD
•added 2018/09/10 7:29 p.m.•48 views

CVE-2018-14620

The OpenStack RabbitMQ container image insecurely retrieves the rabbitmqclusterer component over HTTP during the build stage. This could potentially allow an attacker to serve malicious code to the image builder and install in the resultant container image. Version of openstack-rabbitmq-container...

9.8CVSS5.9AI score0.00597EPSS
Exploits0References3
NVD
NVD
•added 2018/08/27 5:29 p.m.•48 views

CVE-2017-15139

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive...

7.5CVSS6AI score0.01244EPSS
Exploits0References4
NVD
NVD
•added 2018/03/14 1:29 p.m.•48 views

CVE-2018-1000129

An XSS vulnerability exists in the Jolokia agent version 1.3.7 in the HTTP servlet that allows an attacker to execute malicious javascript in the victim's browser...

6.1CVSS6.1AI score0.25459EPSS
Exploits1References4
NVD
NVD
•added 2018/01/23 6:29 p.m.•48 views

CVE-2017-17999

SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to execute arbitrary SQL commands via the search parameter to index.php/knowledgebase/getarticlesuggestion/...

9.8CVSS10AI score0.03344EPSS
Exploits5References2
NVD
NVD
•added 2017/08/29 1:29 p.m.•48 views

CVE-2017-10952

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.0.2051. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the save...

8.8CVSS8.7AI score0.07152EPSS
Exploits2References4
NVD
NVD
•added 2017/05/12 7:29 a.m.•48 views

CVE-2017-8912

CMS Made Simple CMSMS 2.1.6 allows remote authenticated administrators to execute arbitrary PHP code via the code parameter to admin/editusertag.php, related to the CreateTagFunction and CallUserTag functions. NOTE: the vendor reportedly has stated this is "a feature, not a bug...

7.2CVSS7.2AI score0.03111EPSS
Exploits4References2
NVD
NVD
•added 2016/05/16 10:59 a.m.•48 views

CVE-2015-6838

The xslextfunctionphp function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation after the principal argument...

7.5CVSS8AI score0.07276EPSS
Exploits0References6
NVD
NVD
•added 2016/04/11 9:59 p.m.•48 views

CVE-2015-7502

Red Hat CloudForms 3.2 Management Engine CFME 5.4.4 and CloudForms 4.0 Management Engine CFME 5.5.0 do not properly encrypt data in the backend PostgreSQL database, which might allow local users to obtain sensitive data and consequently gain privileges by leveraging access to 1 database exports o...

5.1CVSS5.2AI score0.00341EPSS
Exploits0References3
NVD
NVD
•added 2014/03/11 7:37 p.m.•48 views

CVE-2013-2754

Cross-site request forgery CSRF vulnerability in Umisoft UMI.CMS before 2.9 build 21905 allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via a request to admin/users/add/user/do/...

6.8CVSS6.9AI score0.02286EPSS
Exploits5References5
NVD
NVD
•added 2013/04/09 8:55 p.m.•48 views

CVE-2013-1800

The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML type...

7.5CVSS7.1AI score0.04952EPSS
Exploits1References6
NVD
NVD
•added 2012/11/23 8:55 p.m.•48 views

CVE-2011-4085

The servlets invoked by httpha-invoker in JBoss Enterprise Application Platform before 5.1.2, SOA Platform before 5.2.0, BRMS Platform before 5.3.0, and Portal Platform before 4.3 CP07 perform access control only for the GET and POST methods, which allow remote attackers to bypass authentication ...

6.8CVSS6.5AI score0.02953EPSS
Exploits3References11
NVD
NVD
•added 2011/12/30 1:55 a.m.•48 views

CVE-2011-3416

The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote authenticated users to obtain access to arbitrary user accounts via a crafted username, aka "ASP.Net Forms Authentication Bypass Vulnerability."...

8.5CVSS6AI score0.45576EPSS
Exploits2References3
NVD
NVD
•added 2011/12/25 1:55 a.m.•48 views

CVE-2009-5109

Stack-based buffer overflow in Mini-Stream Ripper 3.0.1.1 allows remote attackers to execute arbitrary code via a long entry in a .pls file...

9.3CVSS8AI score0.32817EPSS
Exploits2References5
NVD
NVD
•added 2010/12/06 8:12 p.m.•48 views

CVE-2010-2639

IBM WebSphere Commerce Enterprise 7.0 before 7.0.0.2 allows remote attackers to read messages intended for other recipients via vectors involving access by the outbound messaging system to the RunTimeProfileCacheCmdImpl class, related to the caching of mutable objects and "concurrency issues."...

5CVSS6.5AI score0.01242EPSS
Exploits0References4
NVD
NVD
•added 2010/08/11 6:47 p.m.•48 views

CVE-2010-2554

The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 has incorrect ACLs on its registry keys, which allows local users to gain privileges via vectors involving a named pipe and impersonation, aka "Tracing Registry Key ACL...

7.8CVSS6.3AI score0.0192EPSS
Exploits7References2
NVD
NVD
•added 2010/08/11 6:47 p.m.•48 views

CVE-2010-1882

Multiple buffer overflows in the MPEG Layer-3 Audio Codec for Microsoft DirectShow in l3codecx.ax in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote attackers to execute arbitrary code via an MPEG Layer-3 audio stream in 1 a crafted media file or 2 crafted streaming content, aka...

9.3CVSS7.6AI score0.23415EPSS
Exploits0References3
NVD
NVD
•added 2009/12/09 6:30 p.m.•48 views

CVE-2009-2508

The single sign-on implementation in Active Directory Federation Services ADFS in Microsoft Windows Server 2003 SP2 and Server 2008 Gold and SP2 does not properly remove credentials at the end of a network session, which allows physically proximate attackers to obtain the credentials of a previou...

6.9CVSS6.2AI score0.01262EPSS
Exploits1References3
NVD
NVD
•added 2009/10/14 10:30 a.m.•48 views

CVE-2009-1547

Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via a crafted data stream header that triggers memory corruption, aka "Data Stream Header Corruption Vulnerability."...

9.3CVSS7.3AI score0.37436EPSS
Exploits8References3
NVD
NVD
•added 2007/02/12 8:28 p.m.•48 views

CVE-2007-0882

Argument injection vulnerability in the telnet daemon in.telnetd in Solaris 10 and 11 SunOS 5.10 and 5.11 misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the...

10CVSS6.7AI score0.97848EPSS
Exploits13References19
NVD
NVD
•added 2006/07/18 3:47 p.m.•48 views

CVE-2006-3674

nNetObject.cpp in Armagetron Advanced 2.8.2 and earlier allows remote attackers to cause a denial of service CPU consumption via a large number handled by the idreqhandler function...

7.8CVSS6.6AI score0.02226EPSS
Exploits1References7
NVD
NVD
•added 2006/07/07 12:5 a.m.•48 views

CVE-2006-3425

FastPatch for a PatchLink Update Server PLUS before 6.1 P1 and 6.2.x before 6.2 SR1 P1, and b Novell ZENworks 6.2 SR1 and earlier, does not require authentication for dagent/proxyreg.asp, which allows remote attackers to list, add, or delete PatchLink Distribution Point PDP proxy servers via...

7.5CVSS7AI score0.0229EPSS
Exploits0References9
NVD
NVD
•added 2026/06/04 2:16 p.m.•47 views

CVE-2026-8037

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints...

9.6CVSS0.29641EPSS
Exploits1References2
NVD
NVD
•added 2026/05/15 10:16 p.m.•47 views

CVE-2026-45299

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.0, the profileimageurl field on the user profile update form accepted arbitrary data: URI values without MIME-type validation, resulting in a XSS vulnerability. This vulnerability is...

5.4CVSS0.00199EPSS
Exploits0References1
NVD
NVD
•added 2026/05/14 9:16 p.m.•47 views

CVE-2026-44666

HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. Prior to 3.3.8, the sanitizeString function in convertCore.php is missing backtick and tab \t from its strip list. User input then reaches shellexec, where the shell interprets these characters and commands...

9.3CVSS0.00297EPSS
Exploits0References2
NVD
NVD
•added 2026/05/13 4:16 p.m.•47 views

CVE-2026-44288

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs includes a minimal UTF-8 decoder that accepted overlong UTF-8 byte sequences and decoded them to their canonical characters instead of replacing them. An attacker who can provide protobuf...

5.3CVSS0.00301EPSS
Exploits0References1
NVD
NVD
•added 2026/05/12 10:16 p.m.•47 views

CVE-2026-43948

wger is a free, open-source workout and fitness manager. Prior to 2.6, the resetuserpassword and gympermissionsuseredit views in wger perform a gym-scope authorization check using Python object comparison != that evaluates None != None as False, silently bypassing the guard when both the attacker...

9.9CVSS0.00371EPSS
Exploits0References1
NVD
NVD
•added 2026/05/12 2:17 p.m.•47 views

CVE-2026-45091

sealed-env is a cross-stack, zero-trust secret management library for Node.js and Java/Spring Boot. In sealed-env enterprise mode, versions 0.1.0-alpha.1 through 0.1.0-alpha.3 embedded the operator's literal TOTP secret in the JWS payload of every minted unseal token. JWS payload is base64-encode...

9.1CVSS0.00326EPSS
Exploits1References1
NVD
NVD
•added 2026/05/12 10:16 a.m.•47 views

CVE-2026-33862

A vulnerability has been identified in Teamcenter V2312 All versions V2312.0014, Teamcenter V2406 All versions V2406.0012, Teamcenter V2412 All versions V2412.0009, Teamcenter V2506 All versions V2506.0005, Teamcenter V2512 All versions. The affected application does not properly encode or filter...

8.5CVSS0.00192EPSS
Exploits0References1
NVD
NVD
•added 2026/05/12 9:16 a.m.•47 views

CVE-2026-6710

The Skysa Text Ticker App plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce validation on the SkysaAppsAdminAppPage function. This makes it possible for unauthenticated attackers to trick a site...

4.3CVSS0.00128EPSS
Exploits0References5
NVD
NVD
•added 2026/05/11 5:16 p.m.•47 views

CVE-2026-31253

The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 2025-13-04 contains an insecure deserialization vulnerability CWE-502 in its checkpoint loading mechanism. The loadcheckpoint function in checkpoint.py and the checkpoint loading code in eval.py use...

7.3CVSS0.00218EPSS
Exploits0References2
NVD
NVD
•added 2026/05/10 1:16 p.m.•47 views

CVE-2022-50963

uBidAuction 2.0.1 contains a reflected cross-site scripting vulnerability in the auctions/myAuctions/status/active module. The datecreated, datefrom, dateto, and createdat parameters in the filter functionality are not properly sanitized, allowing remote attackers to inject malicious scripts via...

6.1CVSS0.00247EPSS
Exploits0References4
NVD
NVD
•added 2026/05/08 3:16 p.m.•47 views

CVE-2026-41570

PHPUnit is a testing framework for PHP. In versions 12.5.21 and 13.1.5, PHPUnit forwards PHP INI settings to child processes used for isolated/PHPT test execution as -d name=value command-line arguments without neutralizing INI metacharacters. Because PHP's INI parser interprets " as a string...

7.8CVSS0.00191EPSS
Exploits0References2
NVD
NVD
•added 2026/05/07 10:16 p.m.•47 views

CVE-2026-8034

A server-side request forgery SSRF vulnerability was identified in the GitHub Enterprise Server notebook viewer that allowed an attacker to access internal services by exploiting URL parser confusion between the validation layer and the HTTP request library. The hostname validation used a differe...

9.8CVSS0.00377EPSS
Exploits0References5
NVD
NVD
•added 2026/05/06 12:16 p.m.•47 views

CVE-2026-43283

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ecbhf: Fix dmafreecoherent dma handle dmafreecoherent in error path takes priv-rxbuf.alloclen as the dma handle. This would lead to improper unmapping of the buffer. Change the dma handle to priv-rxbuf.allocphys...

8.8CVSS0.0012EPSS
Exploits0References8
NVD
NVD
•added 2026/05/05 4:16 p.m.•47 views

CVE-2026-7412

In Eclipse BaSyx Java Server SDK versions prior to 2.0.0-milestone-10, the Operation Delegation feature fails to validate the destination URI of delegated requests. An unauthenticated remote attacker can exploit this design flaw to force the BaSyx server to execute blind HTTP POST requests to...

8.6CVSS0.00516EPSS
Exploits0References2
NVD
NVD
•added 2026/05/04 9:16 p.m.•47 views

CVE-2026-42223

Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.8, the GetSettings API handler api/settings/settings.go:24-65 serializes all settings structs to JSON and returns them to authenticated users. Many sensitive fields are tagged with protected:"true" - however, this tag...

6.5CVSS0.00295EPSS
Exploits1References2
NVD
NVD
•added 2026/05/04 5:16 p.m.•47 views

CVE-2026-37461

An out-of-bounds read in the ParseIP6Extended function /bgp/bgp.go of gobgp v4.3.0 allows attackers to cause a Denial of Service DoS via supplying a crafted BGP UPDATE message...

7.5CVSS0.00335EPSS
Exploits0References3
NVD
NVD
•added 2026/04/15 6:17 p.m.•47 views

CVE-2026-5758

JavaScript is vulnerable to prototype pollution in Mafintosh's protocol-buffers-schema Version 3.6.0, where an attacker may alter the application logic, bypass security checks, cause a DoS or achieve remote code execution...

6.5CVSS0.00534EPSS
Exploits0References2
NVD
NVD
•added 2026/02/24 3:16 a.m.•47 views

CVE-2026-27126

Craft is a content management system CMS. In versions 4.5.0-RC1 through 4.16.18 and 5.0.0-RC1 through 5.8.22, a stored Cross-site Scripting XSS vulnerability exists in the editableTable.twig component when using the html column type. The application fails to sanitize the input, allowing an attack...

5.9CVSS0.00217EPSS
Exploits0References2
NVD
NVD
•added 2026/02/05 5:16 p.m.•47 views

CVE-2020-37118

P5 FNIP-8x16A FNIP-4xSH 1.0.20 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without user interaction. Attackers can craft malicious web pages to add new admin users, change passwords, and modify system configurations by tricking...

5.1CVSS0.0014EPSS
Exploits0References6
NVD
NVD
•added 2025/12/01 9:15 p.m.•47 views

CVE-2025-66205

Frappe is a full-stack web application framework. Prior to 15.86.0 and 14.99.2, a certain endpoint was vulnerable to error-based SQL injection due to lack of validation of parameters. Some information like version could be retrieved. This vulnerability is fixed in 15.86.0 and 14.99.2...

9.8CVSS0.00272EPSS
Exploits0References2
NVD
NVD
•added 2025/11/13 5:15 p.m.•47 views

CVE-2025-11538

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

6.8CVSS0.00432EPSS
Exploits0References6
Total number of security vulnerabilities5000