Lucene search
K
NvdMost viewed

364447 matches found

NVD
NVD
added 2013/07/01 9:55 p.m.43 views

CVE-2013-3925

Atlassian Crowd 2.5.x before 2.5.4, 2.6.x before 2.6.3, 2.3.8, and 2.4.9 allows remote attackers to read arbitrary files and send HTTP requests to intranet servers via a request to 1 /services/2 or 2 services/latest with a DTD containing an XML external entity declaration in conjunction with an...

5.8CVSS6.6AI score0.01758EPSS
Exploits1References2
NVD
NVD
added 2013/02/08 7:55 p.m.43 views

CVE-2013-1624

The TLS implementation in the Bouncy Castle Java library before 1.48 and C library before 1.8 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attack...

4CVSS6.6AI score0.02972EPSS
Exploits0References6
NVD
NVD
added 2012/06/13 10:24 a.m.43 views

CVE-2011-1927

The ipexpire function in net/ipv4/ipfragment.c in the Linux kernel before 2.6.39 does not properly construct ICMPTIMEEXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service invalid pointer dereference via crafted fragmented packets...

5CVSS5.6AI score0.02591EPSS
Exploits2References4
NVD
NVD
added 2011/03/22 5:55 p.m.43 views

CVE-2010-4228

Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service abend via a long DELE command, a different vulnerability than CVE-2010-0625.4...

9CVSS7.6AI score0.14658EPSS
Exploits2References8
NVD
NVD
added 2011/01/12 1:0 a.m.43 views

CVE-2011-0026

Integer signedness error in the SQLConnectW function in an ODBC API odbc32.dll in Microsoft Data Access Components MDAC 2.8 SP1 and SP2, and Windows Data Access Components WDAC 6.0, allows remote attackers to execute arbitrary code via a long string in the Data Source Name DSN and a crafted szDSN...

9.3CVSS7.5AI score0.34399EPSS
Exploits0References10
NVD
NVD
added 2010/11/03 8:0 p.m.43 views

CVE-2010-4006

Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the 1 namecondition or 2 namesearch parameter...

7.5CVSS8.4AI score0.01145EPSS
Exploits6References6
NVD
NVD
added 2010/09/15 7:0 p.m.43 views

CVE-2010-2730

Buffer overflow in Microsoft Internet Information Services IIS 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."...

9.3CVSS7.6AI score0.32826EPSS
Exploits1References2
NVD
NVD
added 2010/04/20 4:30 p.m.43 views

CVE-2010-1151

Race condition in the modauthshadow module for the Apache HTTP Server allows remote attackers to bypass authentication, and read and possibly modify data, via vectors related to improper interaction with an external helper application for validation of credentials...

6.8CVSS6.5AI score0.03766EPSS
Exploits0References8
NVD
NVD
added 2010/02/10 6:30 p.m.43 views

CVE-2010-0017

Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB client implementation in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows local...

9.3CVSS7AI score0.30879EPSS
Exploits3References3
NVD
NVD
added 2009/12/18 7:30 p.m.43 views

CVE-2009-3703

Multiple SQL injection vulnerabilities in the WP-Forum plugin before 2.4 for WordPress allow remote attackers to execute arbitrary SQL commands via 1 the searchmax parameter in a search action to the default URI, related to wpf.class.php; 2 the forum parameter to an unspecified component, related...

7.5CVSS8.5AI score0.02626EPSS
Exploits9References2
NVD
NVD
added 2009/10/13 10:30 a.m.43 views

CVE-2009-3695

Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service CPU consumption via a crafted 1 EmailField email address or 2 URLField URL that triggers a large amount of backtracking in a regular...

5CVSS6.3AI score0.03686EPSS
Exploits0References10
NVD
NVD
added 2009/04/29 3:30 p.m.43 views

CVE-2009-1429

The Intel LANDesk Common Base Agent CBA in Symantec Alert Management System 2 AMS2, as used in Symantec System Center SSS; Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus SAV Corporate Edition 9 before 9.0 MR7, 10.0 and 10.1 before 10.1 MR8, and 10.2...

10CVSS7.4AI score0.8793EPSS
Exploits8References10
NVD
NVD
added 2009/01/14 2:30 a.m.43 views

CVE-2008-4014

Unspecified vulnerability in the Oracle BPEL Process Manager component in Oracle Application Server allows remote authenticated users to affect confidentiality and integrity via unknown vectors...

5.5CVSS5.2AI score0.01018EPSS
Exploits1References5
NVD
NVD
added 2008/05/21 1:24 p.m.43 views

CVE-2008-2241

Directory traversal vulnerability in caloggerd in CA BrightStor ARCServe Backup 11.0, 11.1, and 11.5 allows remote attackers to append arbitrary data to arbitrary files via directory traversal sequences in unspecified input fields, which are used in log messages. NOTE: this can be leveraged for...

10CVSS7.3AI score0.11942EPSS
Exploits1References9
NVD
NVD
added 2007/01/24 11:28 p.m.43 views

CVE-2006-6952

Computer Associates Host Intrusion Prevention System HIPS drivers 1 Core kmxstart.sys 6.5.4.31 and 2 Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers...

7.2CVSS6.6AI score0.01021EPSS
Exploits1References10
NVD
NVD
added 2005/05/31 4:0 a.m.43 views

CVE-2005-0356

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers PAWS with the timestamps option enabled allow remote attackers to cause a denial of service connection loss via a spoofed packet with a large timer value, which causes the host to discard later packets because they appe...

5CVSS6.4AI score0.83284EPSS
Exploits1References11
NVD
NVD
added 2000/07/07 4:0 a.m.43 views

CVE-2000-0573

The lreply function in wu-ftpd 2.6.0 and earlier does not properly cleanse an untrusted format string, which allows remote attackers to execute arbitrary commands via the SITE EXEC command...

10CVSS7.5AI score0.96292EPSS
Exploits4References14
NVD
NVD
added 1999/05/17 4:0 a.m.43 views

CVE-1999-1510

Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long 1 USER, 2 LIST, or 3 CWD commands...

7.5CVSS7.5AI score0.67091EPSS
Exploits7References2
NVD
NVD
added 2026/06/28 2:16 a.m.42 views

CVE-2026-58052

7-Zip for Windows through 26.02 fails to preserve the Mark-of-the-Web when extracting a crafted RAR5 archive, because its guard that suppresses an archive-supplied Zone.Identifier stream matches the exact name 'Zone.Identifier' while a RAR5 STM record named ':Zone.Identifier:$DATA' is not matched...

4.8CVSS0.00119EPSS
Exploits0References3
NVD
NVD
added 2026/05/27 6:16 p.m.42 views

CVE-2026-4390

A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects the function processresendqueue of the component Connection State Management. This manipulation causes use after free. The attack may be initiated remotely. Upgrading to version 3.13.8 is able to mitigate this issue...

5.5CVSS0.0026EPSS
Exploits0References5
NVD
NVD
added 2026/05/26 10:16 p.m.42 views

CVE-2026-44213

The OpenTelemetry.Exporter.Instana exports telemetry to Instana backend. Prior to 1.1.0, the OpenTelemetry.Exporter.Instana NuGet package does not validate HTTPS/TLS certificates are valid when sending telemetry to a configured Instana back-end when a proxy is configured using the...

6.5CVSS0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/05/17 7:16 a.m.42 views

CVE-2026-8736

A security flaw has been discovered in Oinone Pamirs up to 7.2.0. This vulnerability affects the function request.getParameter of the file LocalFileClient.java of the component RestController. Performing a manipulation of the argument uniqueFileName results in path traversal. The attack may be...

4.3CVSS0.00216EPSS
Exploits0References4
NVD
NVD
added 2026/05/15 10:16 a.m.42 views

CVE-2026-41970

Out-of-bounds write vulnerability in the distributed file system module. Impact: Successful exploitation of this vulnerability may affect availability...

6.8CVSS0.00131EPSS
Exploits0References2
NVD
NVD
added 2026/05/15 9:16 a.m.42 views

CVE-2026-8425

The Notify Odoo plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. This is due to missing or incorrect nonce validation on the updateSettings function. This makes it possible for unauthenticated attackers to change the Notify Odoo URL to ...

4.3CVSS0.00135EPSS
Exploits0References8
NVD
NVD
added 2026/05/14 9:16 p.m.42 views

CVE-2026-44700

Elixir WebRTC is an Elixir implementation of the W3C WebRTC API. Prior to 0.15.1 and 0.16.1, missing DTLS peer certificate fingerprint validation in the DTLS client active role removes one side of WebRTC's mutual authentication. The bug is not independently exploitable for media interception in...

8.7CVSS0.00255EPSS
Exploits0References5
NVD
NVD
added 2026/05/14 5:16 p.m.42 views

CVE-2026-44511

Katalyst Koi is a framework for building Rails admin functionality. Prior to 4.20.0 and 5.6.0, admin session cookies were not invalidated when an admin user logged out. An attacker with access to a valid admin session cookie could continue to access admin functionality after logout, until the...

7.4CVSS0.00197EPSS
Exploits0References1
NVD
NVD
added 2026/05/14 7:16 a.m.42 views

CVE-2026-5365

The LatePoint plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 5.3.2. This is due to missing nonce verification on the requestcancellation function. This makes it possible for unauthenticated attackers to cancel a logged-in customer's bookings v...

4.3CVSS0.00105EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 10:16 p.m.42 views

CVE-2026-44437

The Angular SSR is a server-rise rendering tool for Angular applications. From 19.0.0-next.0 to before 19.2.25, 20.3.25, 21.2.9, and 22.0.0-next.7, a vulnerability exists in the X-Forwarded-Prefix header processing logic within Angular SSR. The internal validation mechanism fails to properly...

6.9CVSS0.00203EPSS
Exploits0References2
NVD
NVD
added 2026/05/13 9:16 p.m.42 views

CVE-2026-44381

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, a SQL injection vulnerability existed in the handling of user-controlled ordering parameters in the event and shadow attribute listing endpoints. The affected code accepted order or sort values from request paramete...

9.3CVSS0.0054EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 9:16 p.m.42 views

CVE-2026-42561

Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.27, python-multipart has a denial of service vulnerability in multipart part header parsing. When parsing multipart/form-data, MultipartParser previously had no limit on the number of part headers or the size of an individu...

7.5CVSS0.00549EPSS
Exploits0References4
NVD
NVD
added 2026/05/13 4:16 p.m.42 views

CVE-2026-43479

In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in netifnapidellocked on disconnect Remove redundant netifnapidel call from disconnect path. A WARN may be triggered in netifnapidellocked during USB device disconnect: WARNING: CPU: 0 PID: 11 at...

5.5CVSS0.00112EPSS
Exploits0References3
NVD
NVD
added 2026/05/11 6:16 p.m.42 views

CVE-2026-42860

The Open edx Enterprise Service app provides enterprise features to the Open edX platform. From 7.0.2 to 7.0.4, the syncproviderdata endpoint in SAMLProviderDataViewSet fetches SAML metadata from a URL stored in SAMLProviderConfig.metadatasource. An authenticated user with the Enterprise Admin ro...

8.5CVSS0.00301EPSS
Exploits1References1
NVD
NVD
added 2026/05/11 4:17 p.m.42 views

CVE-2026-44197

Wagtail is an open source content management system built on Django. Prior to 7.0.7, 7.3.2, and 7.4, a CMS user without the ability to edit a page could access revisions of the page through the revision compare view if they knew the primary key of two revisions. This could potentially result in...

6.5CVSS0.00204EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 12:16 a.m.42 views

CVE-2026-8252

A vulnerability was determined in Open5GS up to 2.7.7. Affected is the function smfnsmfhandlecreatedatainhsmf of the component SMF. Executing a manipulation can lead to null pointer dereference. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized...

6.5CVSS0.00378EPSS
Exploits1References5
NVD
NVD
added 2026/05/10 9:16 p.m.42 views

CVE-2026-8177

XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences. A node name ending in the middle of a multi byte UTF-8 sequence causes the parser to read past the end of the input string into adjacent heap memory...

7.5CVSS0.00531EPSS
Exploits0References8
NVD
NVD
added 2026/05/02 8:16 a.m.42 views

CVE-2026-6229

The Royal Elementor Addons plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including, 1.7.1057. This is due to insufficient validation of user-supplied URLs in the rendercsvdata function, which can be bypassed by including 'docs.google.com/spreadsheets' in...

7.2CVSS0.00379EPSS
Exploits0References10
NVD
NVD
added 2026/04/27 4:16 p.m.42 views

CVE-2026-6970

authd prior to version 0.6.4 contains a logic error in primary group ID assignment that can lead to local privilege escalation. When a user's primary group ID GID differs from their UID, either because the account was created with authd prior to version 0.5.4 or because the primary group was...

7.3CVSS0.0011EPSS
Exploits0References2
NVD
NVD
added 2026/04/06 6:16 p.m.42 views

CVE-2026-35047

Brave CMS is an open-source CMS. Prior to 2.0.6, an Unrestricted File Upload vulnerability in the CKEditor endpoint allows attackers to upload arbitrary files, including executable scripts. This may lead to Remote Code Execution RCE on the server, potentially resulting in full system compromise,...

9.8CVSS0.00554EPSS
Exploits0References3
NVD
NVD
added 2025/10/09 8:15 a.m.42 views

CVE-2025-11522

The Search & Go - Directory WordPress Theme theme for WordPress is vulnerable to Authentication Bypass via account takeover in all versions up to, and including, 2.7. This is due to insufficient user validation in the searchandgoelatedcheckfacebookuser function This makes it possible for...

9.8CVSS0.00522EPSS
Exploits0References2
NVD
NVD
added 2025/09/17 6:15 a.m.42 views

CVE-2025-10058

The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the uploadfunction function in all versions up to, and including, 7.27. This makes it possible for authenticated attackers, with...

8.1CVSS0.00578EPSS
Exploits0References4
NVD
NVD
added 2025/09/12 9:15 p.m.42 views

CVE-2025-10327

A weakness has been identified in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this vulnerability is an unknown functionality of the file /htdocs/api/playlist/shuffle.php. Executing manipulation of the argument playlist can lead to os command injection. The attack can be launched remotely...

9.8CVSS0.10158EPSS
Exploits3References5
NVD
NVD
added 2025/09/10 4:15 p.m.42 views

CVE-2025-59045

Stalwart is a mail and collaboration server. Starting in version 0.12.0 and prior to version 0.13.3, a memory exhaustion vulnerability exists in Stalwart's CalDAV implementation that allows authenticated attackers to cause denial-of-service by triggering unbounded memory consumption through...

7.1CVSS0.00319EPSS
Exploits0References5
NVD
NVD
added 2025/09/04 10:42 a.m.42 views

CVE-2025-36900

In lwistestregisterio of lwisdevicetest.c, there is a possible OOB Write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.7CVSS0.00079EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 7:15 a.m.42 views

CVE-2025-8949

A vulnerability was identified in D-Link DIR-825 2.10. Affected by this vulnerability is the function getpingappstat of the file pingresponse.cgi of the component httpd. The manipulation of the argument pingipaddr leads to stack-based buffer overflow. The attack can be launched remotely. The...

9.8CVSS0.00858EPSS
Exploits1References5
NVD
NVD
added 2025/08/04 6:15 p.m.42 views

CVE-2025-51390

TOTOLINK N600R V4.3.0cu.7647B20210106 was discovered to contain a command injection vulnerability via the pin parameter in the setWiFiWpsConfig function...

9.8CVSS0.01796EPSS
Exploits1References2
NVD
NVD
added 2025/07/02 10:15 a.m.42 views

CVE-2025-27025

The target device exposes a service on a specific TCP port with a configured endpoint. The access to that endpoint is granted using a Basic Authentication method. The endpoint accepts also the PUT method and it is possible to write files on the target device file system. Files are written as root...

8.8CVSS0.0062EPSS
Exploits0References2
NVD
NVD
added 2025/06/10 3:15 p.m.42 views

CVE-2025-5335

A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the Autodesk Installer application. Exploitation of this vulnerability may lead to code execution...

7.8CVSS0.00177EPSS
Exploits0References2
NVD
NVD
added 2025/06/06 7:15 a.m.42 views

CVE-2025-5018

The Hive Support plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the hsupdateaichatsettings and hivelitesupportgetallbinbox functions in all versions up to, and including, 1.2.5. This makes it possible for authenticated...

7.1CVSS0.00272EPSS
Exploits0References4
NVD
NVD
added 2025/05/23 1:15 p.m.42 views

CVE-2025-32286

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ApusTheme Butcher butcher allows PHP Local File Inclusion.This issue affects Butcher: from n/a through = 2.40...

8.1CVSS0.00669EPSS
Exploits0References1
NVD
NVD
added 2025/05/16 9:15 p.m.42 views

CVE-2025-32407

Samsung Internet for Galaxy Watch version 5.0.9, available up until Samsung Galaxy Watch 3, does not properly validate TLS certificates, allowing for an attacker to impersonate any and all websites visited by the user. This is a critical misconfiguration in the way the browser validates the...

5.9CVSS0.00251EPSS
Exploits1References1
Total number of security vulnerabilities5000