Lucene search
K
NvdMost viewed

363949 matches found

NVD
NVD
added 2024/07/08 4:15 p.m.47 views

CVE-2024-39699

Directus is a real-time API and App dashboard for managing SQL database content. There was already a reported SSRF vulnerability via file import. It was fixed by resolving all DNS names and checking if the requested IP is an internal IP address. However it is possible to bypass this security...

5CVSS0.00435EPSS
Exploits1References2
NVD
NVD
added 2024/07/03 7:15 p.m.47 views

CVE-2024-36113

Discourse is an open-source discussion platform. Prior to version 3.2.3 on the stable branch, version 3.3.0.beta3 on the beta branch, and version 3.3.0.beta4-dev on the tests-passed branch, a rogue staff user could suspend other staff users preventing them from logging in to the site. The issue i...

6.5CVSS0.00418EPSS
Exploits0References3
NVD
NVD
added 2024/07/02 8:15 p.m.47 views

CVE-2024-39315

Pomerium is an identity and context-aware access proxy. Prior to version 0.26.1, the Pomerium user info page at /.pomerium unintentionally included serialized OAuth2 access and ID tokens from the logged-in user's session. These tokens are not intended to be exposed to end users. This issue may be...

6.5CVSS0.00416EPSS
Exploits0References2
NVD
NVD
added 2024/07/02 6:15 p.m.47 views

CVE-2024-39891

In the Twilio Authy API, accessed by Authy Android before 25.1.0 and Authy iOS before 26.1.0, an unauthenticated endpoint provided access to certain phone-number data, as exploited in the wild in June 2024. Specifically, the endpoint accepted a stream of requests containing phone numbers, and...

5.3CVSS0.01477EPSS
Exploits0References5
NVD
NVD
added 2024/07/01 10:15 p.m.47 views

CVE-2024-23737

Cross Site Request Forgery CSRF vulnerability in savignano S/Notify before 4.0.2 for Jira allows attackers to allows attackers to manipulate a user's S/MIME certificate of PGP key via malicious link or email...

5.4CVSS0.00109EPSS
Exploits0References1
NVD
NVD
added 2024/06/28 10:15 p.m.47 views

CVE-2024-38532

The NXP Data Co-Processor DCP is a built-in hardware module for specific NXP SoCs¹ that implements a dedicated AES cryptographic engine for encryption/decryption operations. The dcptool reference implementation included in the repository selected the test key, regardless of its -t argument. This...

7.1CVSS0.00191EPSS
Exploits0References2
NVD
NVD
added 2024/06/28 7:15 p.m.47 views

CVE-2022-27540

A potential Time-of-Check to Time-of Use TOCTOU vulnerability has been identified in the HP BIOS for certain HP PC products, which might allow arbitrary code execution, denial of service, and information disclosure. HP is releasing BIOS updates to mitigate the potential vulnerability...

7.8CVSS0.00118EPSS
Exploits0References1
NVD
NVD
added 2024/06/27 10:15 p.m.47 views

CVE-2024-39705

NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality is used. This affects, for example, averagedperceptrontagger and punkt...

9.8CVSS0.01346EPSS
Exploits0References3
NVD
NVD
added 2024/06/27 9:15 p.m.47 views

CVE-2024-22272

VMware Cloud Director contains an Improper Privilege Management vulnerability. An authenticated tenant administrator for a given organization within VMware Cloud Director may be able to accidentally disable their organization leading to a Denial of Service for active sessions within their own...

4.9CVSS0.00369EPSS
Exploits0References1
NVD
NVD
added 2024/06/25 8:15 p.m.47 views

CVE-2024-5276

A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify application data. Likely impacts include creation of administrative users and deletion or modification of data in the application database. Data exfiltration via SQL injection is not possible using this...

9.8CVSS0.90067EPSS
Exploits5References3
NVD
NVD
added 2024/06/24 9:15 a.m.47 views

CVE-2024-36495

The application Faronics WINSelect Standard + Enterprise saves its configuration in an encrypted file on the file system which "Everyone" has read and write access to, path to file: C:\ProgramData\WINSelect\WINSelect.wsd The path for the affected WINSelect Enterprise configuration file is:...

7.7CVSS0.0031EPSS
Exploits1References3
NVD
NVD
added 2024/06/20 6:15 a.m.47 views

CVE-2024-5522

The HTML5 Video Player WordPress plugin before 2.5.27 does not sanitize and escape a parameter from a REST route before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks...

6.5CVSS0.02618EPSS
Exploits6References1
NVD
NVD
added 2024/06/15 9:15 a.m.47 views

CVE-2024-3105

The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.5.0 via the 'insertphp' shortcode. This is due to the plugin not restricting the usage of the functionality to high level authorized...

9.9CVSS0.02778EPSS
Exploits1References4
NVD
NVD
added 2024/06/13 9:15 p.m.47 views

CVE-2024-32896

there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

8.1CVSS0.0301EPSS
Exploits0References2
NVD
NVD
added 2024/06/13 8:16 a.m.47 views

CVE-2024-36230

Adobe Experience Manager versions 6.5.20 and earlier are affected by a DOM-based Cross-Site Scripting XSS vulnerability. This vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser session. Exploitation of this issue typically requires us...

5.4CVSS0.00402EPSS
Exploits0References1
NVD
NVD
added 2024/06/11 4:15 p.m.47 views

CVE-2024-34753

Missing Authorization vulnerability in SoftLab Radio Player.This issue affects Radio Player: from n/a through 2.0.73...

5.3CVSS0.00339EPSS
Exploits0References1
NVD
NVD
added 2024/06/11 3:16 p.m.47 views

CVE-2024-21754

A use of password hash with insufficient computational effort vulnerability CWE-916 affecting FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions, 6.4 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions, 2.0 all versions may allow a privileged...

4.4CVSS0.03469EPSS
Exploits1References1
NVD
NVD
added 2024/06/11 3:16 p.m.47 views

CVE-2024-23110

A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0 all versions allows attacker to execute unauthorized code or commands via specially crafted commands...

7.8CVSS0.00281EPSS
Exploits0References1
NVD
NVD
added 2024/06/10 5:16 p.m.47 views

CVE-2024-35749

Authentication Bypass by Spoofing vulnerability in Acurax Under Construction / Maintenance Mode from Acurax allows Authentication Bypass.This issue affects Under Construction / Maintenance Mode from Acurax: from n/a through 2.6...

5.3CVSS0.00297EPSS
Exploits0References1
NVD
NVD
added 2024/06/09 1:15 p.m.47 views

CVE-2024-32778

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Wasiliy Strecker / ContestGallery developer Contest Gallery contest-gallery.This issue affects Contest Gallery: from n/a through = 21.3.4...

8.1CVSS0.00612EPSS
Exploits0References2
NVD
NVD
added 2024/06/07 3:15 p.m.47 views

CVE-2024-37162

zsa is a library for building typesafe server actions in Next.js. All users are impacted. The zsa application transfers the parse error stack from the server to the client in production build mode. This can potentially reveal sensitive information about the server environment, such as the machine...

5.3CVSS0.00292EPSS
Exploits0References2
NVD
NVD
added 2024/06/06 7:16 p.m.47 views

CVE-2024-3322

A path traversal vulnerability exists in the 'cybersecurity/codeguard' native personality of the parisneo/lollms-webui, affecting versions up to 9.5. The vulnerability arises from the improper limitation of a pathname to a restricted directory in the 'processfolder' function within...

9.8CVSS0.00726EPSS
Exploits1References2
NVD
NVD
added 2024/06/04 8:15 p.m.47 views

CVE-2024-32464

Action Text brings rich text content and editing to Rails. Instances of ActionText::Attachable::ContentAttachment included within a richtextarea tag could potentially contain unsanitized HTML. This vulnerability is fixed in 7.1.3.4 and 7.2.0.beta2...

6.1CVSS6AI score0.00434EPSS
Exploits0References2
NVD
NVD
added 2024/05/31 8:15 p.m.47 views

CVE-2024-36843

libmodbus v3.1.6 was discovered to contain a heap overflow via the modbusmappingfree function...

7.5CVSS7.2AI score0.0079EPSS
Exploits1References3
NVD
NVD
added 2024/05/08 2:15 p.m.47 views

CVE-2024-32886

Vitess is a database clustering system for horizontal scaling of MySQL. When executing the following simple query, the vtgate will go into an endless loop that also keeps consuming memory and eventually will run out of memory. This vulnerability is fixed in 19.0.4, 18.0.5, and 17.0.7...

4.9CVSS5AI score0.00751EPSS
Exploits0References7
NVD
NVD
added 2024/05/03 2:15 a.m.47 views

CVE-2023-35736

D-Link DAP-2622 DDP Change ID Password New Password Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2
NVD
NVD
added 2024/04/29 4:15 a.m.47 views

CVE-2024-1874

In PHP versions 8.1. before 8.1.28, 8.2. before 8.2.18, 8.3. before 8.3.5, when using procopen command with array syntax, due to insufficient escaping, if the arguments of the executed command are controlled by a malicious user, the user can supply arguments that would execute arbitrary commands ...

9.4CVSS8.9AI score0.32568EPSS
Exploits2References10
NVD
NVD
added 2024/04/25 5:15 p.m.47 views

CVE-2024-28240

The GLPI Agent is a generic management agent. A vulnerability that only affects GLPI-Agent installed on windows via MSI packaging can allow a local user to cause denial of agent service by replacing GLPI server url with a wrong url or disabling the service. Additionally, in the case the Deploy ta...

7.8CVSS7.3AI score0.00224EPSS
Exploits0References2
NVD
NVD
added 2024/04/17 10:15 a.m.47 views

CVE-2024-32130

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paystack Payment Forms for Paystack allows Stored XSS.This issue affects Payment Forms for Paystack: from n/a through 3.4.1...

6.5CVSS6.5AI score0.00291EPSS
Exploits0References1
NVD
NVD
added 2024/04/16 8:15 p.m.47 views

CVE-2024-30378

A Use After Free vulnerability in command processing of Juniper Networks Junos OS on MX Series allows a local, authenticated attacker to cause the broadband edge service manager daemon bbe-smgd to crash upon execution of specific CLI commands, creating a Denial of Service DoS condition. The...

6.9CVSS5.8AI score0.00179EPSS
Exploits0References2
NVD
NVD
added 2024/04/15 8:15 p.m.47 views

CVE-2024-32035

ImageSharp is a 2D graphics API. A vulnerability discovered in the ImageSharp library, where the processing of specially crafted files can lead to excessive memory usage in image decoders. The vulnerability is triggered when ImageSharp attempts to process image files that are designed to exploit...

6.5CVSS5.2AI score0.00629EPSS
Exploits0References5
NVD
NVD
added 2024/04/05 5:15 a.m.47 views

CVE-2024-2509

The Gutenberg Blocks by Kadence Blocks WordPress plugin before 3.2.26 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting atta...

6.5CVSS5.5AI score0.00427EPSS
Exploits3References2
NVD
NVD
added 2024/02/26 4:27 p.m.47 views

CVE-2024-25913

Unrestricted Upload of File with Dangerous Type vulnerability in Skymoonlabs MoveTo.This issue affects MoveTo: from n/a through 6.2...

10CVSS9.6AI score0.0063EPSS
Exploits0References1
NVD
NVD
added 2024/02/20 8:15 p.m.47 views

CVE-2024-26135

MeshCentral is a full computer management web site. Versions prior to 1.1.21 a cross-site websocket hijacking CSWSH vulnerability within the control.ashx endpoint. This component is the primary mechanism used within MeshCentral to perform administrative actions on the server. The vulnerability is...

8.8CVSS8.1AI score0.00464EPSS
Exploits1References2
NVD
NVD
added 2024/02/19 8:15 p.m.47 views

CVE-2023-50257

eProsima Fast DDS formerly Fast RTPS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data pUD and guid values used to disconnect between nodes are not encrypted, a vulnerability has be...

9.6CVSS9.2AI score0.00478EPSS
Exploits0References5
NVD
NVD
added 2024/02/09 8:15 p.m.47 views

CVE-2024-1246

Concrete CMS in version 9 before 9.2.5 is vulnerable to reflected XSS via the Image URL Import Feature due to insufficient validation of administrator provided data. A rogue administrator could inject malicious code when importing images, leading to the execution of the malicious code on the...

4.8CVSS4AI score0.00453EPSS
Exploits0References2
NVD
NVD
added 2024/02/08 1:15 p.m.47 views

CVE-2024-24877

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Magic Hills Pty Ltd Wonder Slider Lite allows Reflected XSS.This issue affects Wonder Slider Lite: from n/a through 13.9...

7.1CVSS6.9AI score0.00331EPSS
Exploits0References1
NVD
NVD
added 2024/02/06 10:15 a.m.47 views

CVE-2024-23673

Malicious code execution via path traversal in Apache Software Foundation Apache Sling Servlets Resolver.This issue affects all version of Apache Sling Servlets Resolver before 2.11.0. However, whether a system is vulnerable to this attack depends on the exact configuration of the system. If the...

8.5CVSS8.7AI score0.01321EPSS
Exploits0References2
NVD
NVD
added 2024/02/01 4:17 p.m.47 views

CVE-2024-24754

Bref enable serverless PHP on AWS Lambda. When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion process, if the request is a MultiPart, each part is parsed and its content...

9.8CVSS5.8AI score0.00618EPSS
Exploits1References2
NVD
NVD
added 2024/01/31 11:15 p.m.47 views

CVE-2024-24572

facileManager is a modular suite of web apps built with the sysadmin in mind. In versions 4.5.0 and earlier, the $REQUEST global array was unsafely called inside an extract function in admin-logs.php. The PHP file fm-init.php prevents arbitrary manipulation of $SESSION via the GET/POST parameters...

6.5CVSS6.8AI score0.00641EPSS
Exploits1References2
NVD
NVD
added 2024/01/25 8:15 p.m.47 views

CVE-2024-23656

Dex is an identity service that uses OpenID Connect to drive authentication for other apps. Dex 2.37.0 serves HTTPS with insecure TLS 1.0 and TLS 1.1. cmd/dex/serve.go line 425 seemingly sets TLS 1.2 as minimum version, but the whole tlsConfig is ignored after TLS cert reloader was introduced in...

7.5CVSS7.4AI score0.00435EPSS
Exploits1References5
NVD
NVD
added 2024/01/23 6:15 p.m.47 views

CVE-2024-22204

Whoogle Search is a self-hosted metasearch engine. Versions 0.8.3 and prior have a limited file write vulnerability when the configuration options in Whoogle are enabled. The config function in app/routes.py does not validate the user-controlled name variable on line 447 and configdata variable o...

5.3CVSS5.3AI score0.00751EPSS
Exploits1References6
NVD
NVD
added 2024/01/23 12:15 a.m.47 views

CVE-2024-23345

Nautobot is a Network Source of Truth and Network Automation Platform built as a web application. All users of Nautobot versions earlier than 1.6.10 or 2.1.2 are potentially impacted by a cross-site scripting vulnerability. Due to inadequate input sanitization, any user-editable fields that suppo...

7.1CVSS6.4AI score0.00433EPSS
Exploits0References5
NVD
NVD
added 2024/01/21 5:15 p.m.47 views

CVE-2024-23731

The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument...

9.8CVSS9.6AI score0.0105EPSS
Exploits0References2
NVD
NVD
added 2024/01/16 11:15 p.m.47 views

CVE-2024-22408

Shopware is an open headless commerce platform. The implemented Flow Builder functionality in the Shopware application does not adequately validate the URL used when creating the “call webhook” action. This enables malicious users to perform web requests to internal hosts. This issue has been fix...

8.1CVSS7.7AI score0.00366EPSS
Exploits0References1
NVD
NVD
added 2024/01/15 10:15 a.m.47 views

CVE-2023-50290

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Solr. The Solr Metrics API publishes all unprotected environment variables available to each Apache Solr instance. Users are able to specify which environment variables to hide, however, the default list is designe...

6.5CVSS6.4AI score0.68665EPSS
Exploits0References1
NVD
NVD
added 2024/01/11 9:15 a.m.47 views

CVE-2023-4372

The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'esi' shortcode in versions up to, and including, 5.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers with...

6.4CVSS5.7AI score0.19684EPSS
Exploits2References4
NVD
NVD
added 2023/12/29 5:16 p.m.47 views

CVE-2023-52137

The tj-actions/verify-changed-files action allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. The verify-changed-files workflow returns the list of files changed within a workflow execution. This could potentially allow...

8.8CVSS0.02621EPSS
Exploits1References3
NVD
NVD
added 2023/12/25 6:15 a.m.47 views

CVE-2022-39820

In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected Storage of Credentials vulnerability occurs under /root/RestUploadManager.xml.DRC and /DEPOT/KECustom199/OTNEDRC/RestUploadManager.xml. A remote user, authenticated to the operating system, with access privileges to the directory /ro...

6.5CVSS0.00631EPSS
Exploits1References1
NVD
NVD
added 2023/12/05 3:15 a.m.47 views

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE...

9.8CVSS0.00528EPSS
Exploits0References1
Total number of security vulnerabilities5000