Lucene search
K
NvdMost viewed

363949 matches found

NVD
NVD
added 2020/03/06 9:15 p.m.44 views

CVE-2020-10112

Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies that those cached...

5.8CVSS5.5AI score0.01433EPSS
Exploits3References3
NVD
NVD
added 2020/02/13 12:15 a.m.44 views

CVE-2019-18915

A potential security vulnerability has been identified with certain versions of HP System Event Utility prior to version 1.4.33. This vulnerability may allow a local attacker to execute arbitrary code via an HP System Event Utility system service...

7.8CVSS7.8AI score0.01478EPSS
Exploits5References2
NVD
NVD
added 2020/01/18 12:15 a.m.44 views

CVE-2019-20357

A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 v160 and 2019 v15 consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vulnerable system...

7.8CVSS7.8AI score0.00732EPSS
Exploits5References3
NVD
NVD
added 2019/12/05 3:15 p.m.44 views

CVE-2019-14910

A vulnerability was found in keycloak 7.x, when keycloak is configured with LDAP user federation and StartTLS is used instead of SSL/TLS from the LDAP server ldaps, in this case user authentication succeeds even if invalid password has entered...

9.8CVSS9.6AI score0.01054EPSS
Exploits0References1
NVD
NVD
added 2019/11/25 11:15 a.m.44 views

CVE-2019-14891

A flaw was found in cri-o, as a result of all pod-related processes being placed in the same memory cgroup. This can result in container management conmon processes being killed if a workload process triggers an out-of-memory OOM condition for the cgroup. An attacker could abuse this flaw to get...

6CVSS5.3AI score0.00691EPSS
Exploits0References1
NVD
NVD
added 2019/11/13 11:15 p.m.44 views

CVE-2019-13555

In Mitsubishi Electric MELSEC-Q Series Q03/04/06/13/26UDVCPU: serial number 21081 and prior, Q04/06/13/26UDPVCPU: serial number 21081 and prior, and Q03UDECPU, Q04/06/10/13/20/26/50/100UDEHCPU: serial number 21081 and prior, MELSEC-L Series L02/06/26CPU, L26CPU-BT: serial number 21101 and prior,...

5.9CVSS5.7AI score0.01521EPSS
Exploits0References1
NVD
NVD
added 2019/10/29 7:15 p.m.44 views

CVE-2019-3977

RouterOS 6.45.6 Stable, RouterOS 6.44.5 Long-term, and below insufficiently validate where upgrade packages are download from when using the autoupgrade feature. Therefore, a remote attacker can trick the router into "upgrading" to an older version of RouterOS and possibly reseting all the system...

8.5CVSS7.8AI score0.01059EPSS
Exploits0References1
NVD
NVD
added 2019/10/24 6:15 p.m.44 views

CVE-2019-18413

In TypeStack class-validator 0.10.2, validate input validation can be bypassed because certain internal attributes can be overwritten via a conflicting name. Even though there is an optional forbidUnknownValues parameter that can be used to reduce the risk of this bypass, this option is not...

9.8CVSS6.1AI score0.01987EPSS
Exploits1References4
NVD
NVD
added 2019/09/13 1:15 p.m.44 views

CVE-2019-12516

The slickquiz plugin through 1.3.7.1 for WordPress allows SQL Injection by Subscriber users, as demonstrated by a /wp-admin/admin.php?page=slickquiz-scores&id= or /wp-admin/admin.php?page=slickquiz-edit&id= or /wp-admin/admin.php?page=slickquiz-preview&id= URI...

8.8CVSS9.2AI score0.02347EPSS
Exploits3References2
NVD
NVD
added 2019/06/19 8:15 p.m.44 views

CVE-2019-2006

In serviceDied of HalDeathHandlerHidl.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege in the audio server with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

10CVSS8.8AI score0.00716EPSS
Exploits0References1
NVD
NVD
added 2019/05/31 3:29 p.m.44 views

CVE-2019-10330

Jenkins Gitea Plugin 1.1.1 and earlier did not implement trusted revisions, allowing attackers without commit access to the Git repo to change Jenkinsfiles even if Jenkins is configured to consider them to be untrusted...

7.5CVSS7.5AI score0.02135EPSS
Exploits0References3
NVD
NVD
added 2019/04/22 3:29 p.m.44 views

CVE-2019-11243

In Kubernetes v1.12.0-v1.12.4 and v1.13.0, the rest.AnonymousClientConfig method returns a copy of the provided config, with credentials removed bearer token, username/password, and client certificate/key data. In the affected versions, rest.AnonymousClientConfig did not effectively clear service...

8.1CVSS5.1AI score0.01492EPSS
Exploits0References3
NVD
NVD
added 2019/04/18 5:29 p.m.44 views

CVE-2019-10300

A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfigdoTestConnection form validation method allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing...

8CVSS7.6AI score0.01355EPSS
Exploits0References3
NVD
NVD
added 2019/02/26 3:29 p.m.44 views

CVE-2019-9184

SQL injection vulnerability in the J2Store plugin 3.x before 3.3.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the productoption parameter...

9.8CVSS10AI score0.0898EPSS
Exploits5References3
NVD
NVD
added 2019/02/22 11:29 p.m.44 views

CVE-2019-9020

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Invalid input to the function xmlrpcdecode can lead to an invalid memory access heap out of bounds read or read after free. This is related to xmlelemparsebuf in...

9.8CVSS8.5AI score0.10059EPSS
Exploits1References13
NVD
NVD
added 2019/02/20 8:29 p.m.44 views

CVE-2019-3924

MikroTik RouterOS before 6.43.12 stable and 6.42.12 long-term is vulnerable to an intermediary vulnerability. The software will execute user defined network requests to both WAN and LAN clients. A remote unauthenticated attacker can use this vulnerability to bypass the router's firewall or for...

7.5CVSS7.7AI score0.15697EPSS
Exploits4References3
NVD
NVD
added 2019/02/06 4:29 p.m.44 views

CVE-2019-1003018

An exposure of sensitive information vulnerability exists in Jenkins GitHub Authentication Plugin 0.29 and earlier in GithubSecurityRealm/config.jelly that allows attackers able to view a Jenkins administrator's web browser output, or control the browser e.g. malicious extension to retrieve the...

4.3CVSS4.5AI score0.01131EPSS
Exploits0References1
NVD
NVD
added 2018/12/06 2:29 p.m.44 views

CVE-2018-9550

In CAacDecoderInit of aacdecoder.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: Android-9. Android ID:...

9.3CVSS8.6AI score0.01246EPSS
Exploits0References2
NVD
NVD
added 2018/11/14 6:29 p.m.44 views

CVE-2018-9537

In CAacDecoderDecodeFrame of aacdecode.cpp, there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote code execution in the media server with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions:...

9.3CVSS9.1AI score0.01539EPSS
Exploits0References2
NVD
NVD
added 2018/09/10 7:29 p.m.44 views

CVE-2018-14635

When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...

6.5CVSS6.3AI score0.02527EPSS
Exploits0References7
NVD
NVD
added 2018/09/06 2:29 p.m.44 views

CVE-2018-14632

An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management...

7.7CVSS7.3AI score0.01952EPSS
Exploits0References7
NVD
NVD
added 2018/08/13 9:47 p.m.44 views

CVE-2018-10636

CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an attacker to gain remot...

9.3CVSS9.5AI score0.09536EPSS
Exploits0References2
NVD
NVD
added 2018/06/13 4:29 p.m.44 views

CVE-2018-11688

Ignite Realtime Openfire before 3.9.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability via a crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site,...

6.1CVSS6.2AI score0.0242EPSS
Exploits2References7
NVD
NVD
added 2017/10/24 6:29 p.m.44 views

CVE-2016-10517

networking.c in Redis before 3.2.7 allows "Cross Protocol Scripting" because it lacks a check for POST and Host: strings, which are not valid in the Redis protocol but commonly occur when an attack triggers an HTTP request to the Redis TCP port...

7.4CVSS7.3AI score0.02147EPSS
Exploits0References4
NVD
NVD
added 2017/08/30 7:29 p.m.44 views

CVE-2017-12069

An XXE vulnerability has been identified in OPC Foundation UA .NET Sample Code before 2017-03-21 and Local Discovery Server LDS before 1.03.367. Among the affected products are Siemens SIMATIC PCS7 All versions V8.1 and earlier, SIMATIC WinCC All versions V7.4 SP1, SIMATIC WinCC Runtime...

8.2CVSS8.1AI score0.02904EPSS
Exploits0References4
NVD
NVD
added 2015/10/26 5:59 p.m.44 views

CVE-2015-5286

OpenStack Image Service Glance before 2014.2.4 juno and 2015.1.x before 2015.1.2 kilo allows remote authenticated users to bypass the storage quota and cause a denial of service disk consumption by deleting images that are being uploaded using a token that expires during the process. NOTE: this...

6.8CVSS6.2AI score0.02376EPSS
Exploits0References4
NVD
NVD
added 2014/05/05 5:6 p.m.44 views

CVE-2013-7003

Multiple cross-site scripting XSS vulnerabilities in LiveZilla before 5.1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 full name field, 2 company field, or 3 filename to chat.php...

4.3CVSS5.6AI score0.01854EPSS
Exploits2References4
NVD
NVD
added 2014/04/11 1:55 a.m.44 views

CVE-2014-2746

net/IOService.java in Tigase before 5.2.1 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service resource consumption via a crafted XMPP stream, aka an "xmppbomb" attack...

7.8CVSS6.5AI score0.02994EPSS
Exploits0References6
NVD
NVD
added 2013/08/19 11:55 p.m.44 views

CVE-2012-5575

Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definition before decrypting, which allows remote attackers to force CXF to use weaker cryptographic...

6.4CVSS5.6AI score0.06322EPSS
Exploits0References21
NVD
NVD
added 2012/11/23 7:55 p.m.44 views

CVE-2010-1330

The regular expression engine in JRuby before 1.4.1, when $KCODE is set to 'u', does not properly handle characters immediately after a UTF-8 character, which allows remote attackers to conduct cross-site scripting XSS attacks via a crafted string...

4.3CVSS5.6AI score0.02218EPSS
Exploits1References7
NVD
NVD
added 2010/06/15 2:4 p.m.44 views

CVE-2010-2263

nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending ::$DATA to the URI...

5CVSS6.9AI score0.71926EPSS
Exploits4References4
NVD
NVD
added 2010/05/12 4:5 p.m.44 views

CVE-2010-1482

Cross-site scripting XSS vulnerability in admin/editprefs.php in the backend in CMS Made Simple CMSMS before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the dateformatstring parameter...

4.3CVSS5.6AI score0.01085EPSS
Exploits3References4
NVD
NVD
added 2010/01/25 7:30 p.m.44 views

CVE-2010-0386

The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and CVE-2005-3398...

8.1CVSS6.5AI score0.01692EPSS
Exploits0References1
NVD
NVD
added 2010/01/13 8:30 p.m.44 views

CVE-2009-4490

minihttpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a terminal emulator...

5CVSS7.6AI score0.1027EPSS
Exploits2References2
NVD
NVD
added 2009/10/22 6:30 p.m.44 views

CVE-2009-1991

Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle...

3.6CVSS6.5AI score0.01712EPSS
Exploits0References6
NVD
NVD
added 2009/09/22 10:30 a.m.44 views

CVE-2009-3288

The sgbuildindirect function in drivers/scsi/sg.c in Linux kernel 2.6.28-rc1 through 2.6.31-rc8 uses an incorrect variable when accessing an array, which allows local users to cause a denial of service kernel OOPS and NULL pointer dereference, as demonstrated by using xcdroast to duplicate a CD...

4.9CVSS6AI score0.00438EPSS
Exploits2References5
NVD
NVD
added 2006/11/22 12:7 a.m.44 views

CVE-2006-6038

SQL injection vulnerability in editpoll.php in Powie's PHP Forum pForum 1.29a and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.5AI score0.01202EPSS
Exploits1References5
NVD
NVD
added 2006/07/31 11:4 p.m.44 views

CVE-2006-3942

The server driver srv.sys in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service system crash via an SMBCOMTRANSACTION SMB message that contains a string without null character termination, which leads to a NULL dereference in the...

7.8CVSS6.6AI score0.75742EPSS
Exploits4References14
NVD
NVD
added 2006/05/10 2:10 a.m.44 views

CVE-2006-0027

Unspecified vulnerability in Microsoft Exchange allows remote attackers to execute arbitrary code via e-mail messages with crafted 1 vCal or 2 iCal Calendar properties...

7.5CVSS7.5AI score0.78679EPSS
Exploits2References12
NVD
NVD
added 2005/06/07 4:0 a.m.44 views

CVE-2005-1869

PHP remote file inclusion vulnerability in startlobby.php in MWChat 6.x allows remote attackers to execute arbitrary PHP code via the CONFIGMWCHATLibs parameter...

7.5CVSS7.5AI score0.01878EPSS
Exploits1References5
NVD
NVD
added 2005/05/02 4:0 a.m.44 views

CVE-2005-0862

Multiple PHP remote file inclusion vulnerabilities in PHPOpenChat 3.0.1 and earlier allow remote attackers to execute arbitrary PHP code via the phpbbrootpath parameter to 1 pocloginform.php or 2 phpbb/poc.php, the pocrootpath parameter to 3 phpbb/poc.php, 4 phpnuke/ENGLISHpoc.php, 5...

7.5CVSS7.7AI score0.10918EPSS
Exploits1References10
NVD
NVD
added 2026/05/15 8:16 p.m.43 views

CVE-2026-45399

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, any authenticated user with low privileges can enumerate active background tasks across the system and stop tasks belonging to other users via the GET /api/tasks and POST...

7.1CVSS0.0027EPSS
Exploits1References1
NVD
NVD
added 2026/05/14 7:16 p.m.43 views

CVE-2026-45147

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, POST /api/tag/getTag is registered with model.CheckAuth only, omitting both model.CheckAdminRole and model.CheckReadonly, despite the handler performing a configuration write that is normally guarded by both. Any...

4.3CVSS0.00152EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 3:16 p.m.43 views

CVE-2026-44216

Wasmtime is a runtime for WebAssembly. From 30.0.0 to 36.0.8, 43.0.2, and 44.0.1, Wasmtime's allocation logic for a WebAssembly table contained checked arithmetic which panicked on overflow. This overflow is possible to trigger, and thus panic, when a table with an extremely large size is...

7.5CVSS0.00319EPSS
Exploits0References4
NVD
NVD
added 2026/05/13 6:16 p.m.43 views

CVE-2026-44007

vm2 is an open source vm/sandbox for Node.js. Prior to 3.11.1, when a NodeVM is created with nesting: true, sandbox code can unconditionally require'vm2' regardless of the outer VM's require configuration — including require: false. With access to vm2, the sandbox constructs a new inner NodeVM wi...

9.9CVSS0.009EPSS
Exploits1References5
NVD
NVD
added 2026/05/13 4:16 p.m.43 views

CVE-2026-44292

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs generated message constructors copied enumerable properties from a provided properties object without filtering the proto key. If an application constructed a message from an...

5.3CVSS0.00264EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 4:16 p.m.43 views

CVE-2026-44291

protobufjs compiles protobuf definitions into JavaScript JS functions. Prior to 7.5.6 and 8.0.2, protobufjs used plain objects with inherited prototypes for internal type lookup tables used by generated encode and decode functions. If Object.prototype had already been polluted, those lookup table...

8.1CVSS0.00499EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 4:16 p.m.43 views

CVE-2026-43480

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp3x-rt5682-max9836: Add missing error check for clock acquisition The acp3x5682init function did not check the return value of clkget, which could lead to dereferencing error pointers in rt5682clkenable. Fix this by:...

5.5CVSS0.00114EPSS
Exploits0References8
NVD
NVD
added 2026/05/12 11:16 p.m.43 views

CVE-2026-5371

The MonsterInsights – Google Analytics Dashboard for WordPress Website Stats Made Easy plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability checks on the getadsaccesstoken and resetexperience functions in all versions up to, and including,...

7.1CVSS0.00349EPSS
Exploits0References4
NVD
NVD
added 2026/05/12 10:16 p.m.43 views

CVE-2026-44871

Command injection vulnerabilities exist in the command line interface CLI service accessed by the PAPI protocol of AOS-8 and AOS-10 Operating Systems. Successful exploitation of these vulnerabilities could allow an authenticated remote attacker to execute arbitrary commands on the underlying...

8.8CVSS0.01226EPSS
Exploits0References1
Total number of security vulnerabilities5000