Lucene search
K
NvdMost viewed

364381 matches found

NVD
NVD
added 2019/01/27 2:29 a.m.46 views

CVE-2019-6977

gdImageColorMatch in gdcolormatch.c in the GD Graphics Library aka LibGD 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be exploited by an attacker who is able to trigg...

8.8CVSS8.6AI score0.65116EPSS
Exploits7References19
NVD
NVD
added 2019/01/13 2:29 a.m.46 views

CVE-2018-16887

A cross-site scripting XSS flaw was found in the katello component of Satellite. An attacker with privilege to create/edit organizations and locations is able to execute a XSS attacks against other users through the Subscriptions or the Red Hat Repositories wizards. This can possibly lead to...

5.4CVSS5.5AI score0.00999EPSS
Exploits1References2
NVD
NVD
added 2019/01/09 4:29 p.m.46 views

CVE-2019-5747

An issue was discovered in BusyBox through 1.30.0. An out of bounds read in udhcp components consumed by the DHCP client, server, and/or relay might allow a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to assurance of a 4-byte...

7.5CVSS7.3AI score0.04651EPSS
Exploits2References6
NVD
NVD
added 2018/12/10 7:29 p.m.46 views

CVE-2018-1279

Pivotal RabbitMQ for PCF, all versions, uses a deterministically generated cookie that is shared between all machines when configured in a multi-tenant cluster. A remote attacker who can gain information about the network topology can guess this cookie and, if they have access to the right ports ...

8.5CVSS8.5AI score0.0183EPSS
Exploits0References1
NVD
NVD
added 2018/12/10 2:29 p.m.46 views

CVE-2018-1000865

A sandbox bypass vulnerability exists in Script Security Plugin 1.47 and earlier in groovy-sandbox/src/main/java/org/kohsuke/groovy/sandbox/SandboxTransformer.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM, if plugins using the Groovy...

8.8CVSS8.9AI score0.01639EPSS
Exploits0References3
NVD
NVD
added 2018/09/26 6:29 p.m.46 views

CVE-2018-10602

WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files...

9.3CVSS9.2AI score0.01947EPSS
Exploits0References2
NVD
NVD
added 2018/07/27 6:29 p.m.46 views

CVE-2017-2621

An access-control flaw was found in the OpenStack Orchestration heat service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information...

5.9CVSS5.3AI score0.00413EPSS
Exploits0References4
NVD
NVD
added 2018/07/24 1:29 p.m.46 views

CVE-2018-10905

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.8CVSS7.4AI score0.00474EPSS
Exploits0References3
NVD
NVD
added 2017/03/17 12:59 a.m.46 views

CVE-2017-0146

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka...

9.3CVSS8.5AI score0.89862EPSS
Exploits27References12
NVD
NVD
added 2016/07/03 2:59 p.m.46 views

CVE-2016-4509

Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and earlier allows remote authenticated users to execute arbitrary code via a crafted file...

6CVSS6.7AI score0.01973EPSS
Exploits0References3
NVD
NVD
added 2015/07/14 4:59 p.m.46 views

CVE-2015-3258

Heap-based buffer overflow in the WriteProlog function in filter/texttopdf.c in texttopdf in cups-filters before 1.0.70 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a small line size in a print job...

7.5CVSS8.1AI score0.08295EPSS
Exploits0References10
NVD
NVD
added 2015/03/09 2:59 p.m.46 views

CVE-2014-3691

Smart Proxy aka Smart-Proxy and foreman-proxy in Foreman before 1.5.4 and 1.6.x before 1.6.2 does not validate SSL certificates, which allows remote attackers to bypass intended authentication and execute arbitrary API requests via a request without a certificate...

7.5CVSS7.5AI score0.01706EPSS
Exploits0References5
NVD
NVD
added 2014/10/22 2:55 p.m.46 views

CVE-2014-7182

Multiple cross-site scripting XSS vulnerabilities in the WP Google Maps plugin before 6.0.27 for WordPress allow remote attackers to inject arbitrary web script or HTML via the polyid parameter in an 1 editpoly, 2 editpolyline, or 3 editmarker action in the wp-google-maps-menu page to...

4.3CVSS5.8AI score0.02461EPSS
Exploits3References5
NVD
NVD
added 2014/05/05 5:6 p.m.46 views

CVE-2013-7003

Multiple cross-site scripting XSS vulnerabilities in LiveZilla before 5.1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 full name field, 2 company field, or 3 filename to chat.php...

4.3CVSS5.6AI score0.01854EPSS
Exploits2References4
NVD
NVD
added 2014/03/03 4:50 a.m.46 views

CVE-2014-1939

java/android/webkit/BrowserFrame.java in Android before 4.4 uses the addJavascriptInterface API in conjunction with creating an object of the SearchBoxImpl class, which allows attackers to execute arbitrary Java code by leveraging access to the searchBoxJavaBridge interface at certain Android API...

7.5CVSS7.3AI score0.01071EPSS
Exploits0References3
NVD
NVD
added 2014/01/20 3:14 p.m.46 views

CVE-2014-0008

lib/adminlib.php in Moodle through 2.3.11, 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 logs cleartext passwords, which allows remote authenticated administrators to obtain sensitive information by reading the Config Changes Report...

4CVSS5.6AI score0.01823EPSS
Exploits0References6
NVD
NVD
added 2013/12/11 12:55 a.m.46 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the forma...

8.8CVSS7.5AI score0.44647EPSS
Exploits1References4
NVD
NVD
added 2013/08/09 9:55 p.m.46 views

CVE-2013-4625

Cross-site scripting XSS vulnerability in files/installer.cleanup.php in the Duplicator plugin before 0.4.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the package parameter...

4.3CVSS5.8AI score0.11102EPSS
Exploits2References7
NVD
NVD
added 2013/03/05 10:3 p.m.46 views

CVE-2013-0931

EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration...

5.4CVSS6.5AI score0.00548EPSS
Exploits0References1
NVD
NVD
added 2012/12/03 9:55 p.m.46 views

CVE-2012-5858

Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP address for authentication, which allows remote man-in-the-middle attackers to read arbitrary phone contents by spoofing or controlling the IP address...

4.3CVSS6.5AI score0.0427EPSS
Exploits5References4
NVD
NVD
added 2010/11/09 9:0 p.m.46 views

CVE-2010-3040

Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager ICM before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a 1 HandleUpgradeAll, 2 AgentUpgrade, 3 HandleQueryNodeInfoReq, or 4 HandleUpgradeTrace TCP packet, aka...

10CVSS7.6AI score0.07995EPSS
Exploits1References9
NVD
NVD
added 2008/10/03 3:7 p.m.46 views

CVE-2008-2439

Directory traversal vulnerability in the UpdateAgent function in TmListen.exe in the OfficeScanNT Listener service in the client in Trend Micro OfficeScan 7.3 Patch 4 build 1367 and other builds before 1372, OfficeScan 8.0 SP1 before build 1222, OfficeScan 8.0 SP1 Patch 1 before build 3087, and...

5CVSS6.7AI score0.2014EPSS
Exploits2References13
NVD
NVD
added 2008/06/06 6:32 p.m.46 views

CVE-2008-2562

SQL injection vulnerability in edCss.php in PowerPhlogger 2.2.5 and earlier allows remote authenticated users to execute arbitrary SQL commands via the cssstr parameter in an edit action...

6.5CVSS7.9AI score0.00895EPSS
Exploits0References4
NVD
NVD
added 2007/03/06 1:19 a.m.46 views

CVE-2006-7119

PHP remote file inclusion vulnerability in kernel/system/startup.php in J. He PHPGiggle 12.08 and earlier, as distributed on comscripts.com, allows remote attackers to execute arbitrary PHP code via a URL in the CFGPHPGIGGLEROOT parameter...

7.5CVSS7.6AI score0.02301EPSS
Exploits0References2
NVD
NVD
added 2006/09/27 11:7 p.m.46 views

CVE-2006-5051

Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free...

9.3CVSS8.4AI score0.44963EPSS
Exploits7References58
NVD
NVD
added 2006/09/15 10:7 p.m.46 views

CVE-2006-4828

PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 through 4.6 allows remote attackers to execute arbitrary PHP code via a URL in the PPPATH parameter...

7.5CVSS7.5AI score0.06362EPSS
Exploits1References4
NVD
NVD
added 2006/08/10 12:4 a.m.46 views

CVE-2006-4069

Multiple cross-site scripting XSS vulnerabilities in Elaine Aquino Online Zone Journals OZJournals 1.5 allow remote attackers to inject arbitrary web script or HTML via the 1 m and 2 c parameters in index.php, 3 a search action, and 4 a "submit comment" action...

4.3CVSS5.8AI score0.02393EPSS
Exploits1References6
NVD
NVD
added 2006/06/07 10:2 a.m.46 views

CVE-2006-2885

Multiple cross-site scripting XSS vulnerabilities in KnowledgeTree Open Source 3.0.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 fDocumentId parameter in view.php and the 2 fSearchableText parameter in /search/simpleSearch.php...

4.3CVSS5.8AI score0.01342EPSS
Exploits0References7
NVD
NVD
added 2003/10/20 4:0 a.m.46 views

CVE-2003-0661

The NetBT Name Service NBNS for NetBIOS in Windows NT 4.0, 2000, XP, and Server 2003 may include random memory in a response to a NBNS query, which could allow remote attackers to obtain sensitive information...

5CVSS6.3AI score0.22019EPSS
Exploits0References3
NVD
NVD
added 2026/06/09 5:16 a.m.45 views

CVE-2026-41710

An attacker can craft a large number of unique requests that trigger a failure, exhausting the capacity of the application-wide stateful retry cache. Once the cache is full, it permanently rejects any further updates, causing all later stateful retries and circuit breakers in the application to...

5.9CVSS0.0028EPSS
Exploits0References1
NVD
NVD
added 2026/05/27 5:16 p.m.45 views

CVE-2026-44316

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's PCF POST /npcf-smpolicycontrol/v1/sm-policies handler HandleCreateSmPolicyRequest panics with a nil-pointer dereference when a downstream OpenAPI consumer call UDR lookup returns 404 Not Found and the...

7.5CVSS0.00404EPSS
Exploits1References4
NVD
NVD
added 2026/05/15 9:16 p.m.45 views

CVE-2026-45395

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, the tool update endpoint POST /api/v1/tools/id/id/update is missing the workspace.tools permission check that is present on the tool create endpoint. This allows a user who has been...

7.2CVSS0.00437EPSS
Exploits1References1
NVD
NVD
added 2026/05/15 7:17 p.m.45 views

CVE-2026-46408

Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the checkout endpoint accepts a user-controlled cartid and uses it to enter the payment flow without verifying cart ownership. A logged-in attacker can therefore reuse another...

7.6CVSS0.002EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 4:16 p.m.45 views

CVE-2026-42283

DevSpace is a client-only developer tool for cloud-native development with Kubernetes. Prior to 6.3.21, DevSpace's UI server WebSocket accepts connections from all origins by default, and therefore several endpoints are exposed via this WebSocket. When a developer runs the DevSpace UI and at the...

7.8CVSS0.00152EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.45 views

CVE-2026-8466

Allocation of Resources Without Limits or Throttling vulnerability in ninenines cowboy allows denial of service via unbounded buffer accumulation in multipart header parsing. cowboyreq:readpart/3 in src/cowboyreq.erl accumulates incoming request bytes into a Buffer binary with no upper-bound chec...

8.2CVSS0.00382EPSS
Exploits0References3
NVD
NVD
added 2026/05/13 4:16 p.m.45 views

CVE-2026-44289

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs could recurse without a depth limit while decoding nested protobuf data. This affected both skipping unknown group fields and generated decoding of nested message fields. A crafted protobuf...

7.5CVSS0.0058EPSS
Exploits0References4
NVD
NVD
added 2026/05/13 4:16 p.m.45 views

CVE-2026-43487

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. The drive belongs to the same BarraCuda family as the ST2000DM008-2FR102...

5.5CVSS0.00114EPSS
Exploits0References4
NVD
NVD
added 2026/05/12 4:16 a.m.45 views

CVE-2026-7287

UNSUPPORTED WHEN ASSIGNED A buffer overflow vulnerability in the formWep, formWlAc, formPasswordSetup, formUpgradeCert, and formDelcert functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00AACE.1C0 could allow an attacker to trigger a denial-of-service DoS condition b...

7.5CVSS0.00309EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 9:19 p.m.45 views

CVE-2026-41489

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS0.00132EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 2:16 a.m.45 views

CVE-2026-8263

A security flaw has been discovered in Tenda AC6 15.03.06.49multiTDE01. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet of the component httpd. Performing a manipulation of the argument mac/ssid results in os command injection. It is possible to initiate the attack...

9.8CVSS0.04554EPSS
Exploits1References5
NVD
NVD
added 2026/05/09 4:16 a.m.45 views

CVE-2026-42137

Kirby is an open-source content management system. Prior to versions 4.9.0 and 5.4.0, pages.access/list and files.access/list permissions are not consistently checked in the Panel and REST API. This issue has been patched in versions 4.9.0 and 5.4.0...

7.1CVSS0.00303EPSS
Exploits0References3
NVD
NVD
added 2026/05/08 4:16 p.m.45 views

CVE-2026-44499

ZEBRA is a Zcash node written entirely in Rust. Prior to version 4.4.0, a composite denial-of-service vulnerability in Zebra's block discovery pipeline allows an unauthenticated remote attacker to permanently halt all new block discovery on a targeted node. The attack exploits three independent...

8.7CVSS0.00351EPSS
Exploits0References1
NVD
NVD
added 2026/05/08 4:16 a.m.45 views

CVE-2026-41646

Nuclei is a vulnerability scanner built on a simple YAML-based DSL. From version 3.0.0 to before version 3.8.0, a vulnerability in Nuclei's JavaScript protocol runtime allows JavaScript templates to read local .js and .json files through the require function, bypassing the default local file acce...

5.5CVSS0.00114EPSS
Exploits0References3
NVD
NVD
added 2026/05/07 12:16 p.m.45 views

CVE-2026-8080

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in misp allows Stored XSS. This issue affects MISP before 2.5.37. A stored cross-site scripting vulnerability exists in the template element attribute handling logic. The application accepted...

6.8CVSS0.00139EPSS
Exploits0References1
NVD
NVD
added 2026/05/06 10:16 a.m.45 views

CVE-2026-43113

In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: validate packet IDs before indexing txframes wl1251txpacketcb uses the firmware completion ID directly to index the fixed 16-entry wl-txframes array. The ID is a raw u8 from the completion block, and the callback do...

8.8CVSS0.00247EPSS
Exploits0References8
NVD
NVD
added 2026/05/05 4:16 p.m.45 views

CVE-2026-34956

A flaw was found in Open vSwitch. When Open vSwitch is configured with a conntrack flow using FTP helpers over the userspace datapath, a remote attacker can send a specially crafted FTP stream with an EPASV command exceeding 255 characters. This heap access error can lead to a crash, resulting in...

5.9CVSS0.00405EPSS
Exploits0References3
NVD
NVD
added 2026/05/05 4:16 p.m.45 views

CVE-2026-31195

OS command injection vulnerability in the ping diagnostic handler in /bin/httpdclientside in ALTICE LABS / SFR France GR140DG Fibre Router with firmware 3GN8020801R13, 3GN8020802R0A, or 3GN8020803R0A inserts unsanitized user input into a system call, allowing authenticated remote attackers to...

8.8CVSS0.01275EPSS
Exploits0References3
NVD
NVD
added 2026/05/04 8:16 a.m.45 views

CVE-2026-7743

A vulnerability has been found in CodeAstro Online Classroom 1.0. The impacted element is an unknown function of the file /OnlineClassroom/studentdetails. The manipulation of the argument deleteid leads to sql injection. The attack is possible to be carried out remotely. The exploit has been...

6.5CVSS0.00241EPSS
Exploits0References5
NVD
NVD
added 2026/05/02 12:16 p.m.45 views

CVE-2026-4062

The Geo Mashup plugin for WordPress is vulnerable to Time-Based SQL Injection via the 'objectids' and 'excludeobjectids' parameters in all versions up to, and including, 1.13.18. This is due to insufficient escaping on the user supplied parameters and lack of sufficient preparation on the existin...

7.5CVSS0.00328EPSS
Exploits0References5
NVD
NVD
added 2026/03/30 6:16 p.m.45 views

CVE-2026-33032

Nginx UI is a web user interface for the Nginx web server. In versions 2.3.5 and prior, the nginx-ui MCP Model Context Protocol integration exposes two HTTP endpoints: /mcp and /mcpmessage. While /mcp requires both IP whitelisting and authentication AuthRequired middleware, the /mcpmessage endpoi...

9.8CVSS0.38477EPSS
Exploits4References2
Total number of security vulnerabilities5000