Lucene search
K
OsvMost viewed

905977 matches found

OSV
OSV
•added 2022/02/03 12:0 a.m.•174 views

DSA-5067-1 ruby2.7 - security update

Bulletin has no description...

9.8CVSS7.8AI score0.04766EPSS
Exploits3
OSV
OSV
•added 2018/11/09 5:50 p.m.•174 views

GHSA-GHGJ-3XQR-6JFM Jetty vulnerable to exposure of sensitive information to unauthenticated remote users

The exception handling code in Eclipse Jetty prior to 9.2.9.v20150224 allows remote attackers to obtain sensitive information from process memory via illegal characters in an HTTP header, aka JetLeak...

7.5CVSS7.3AI score0.74881EPSS
Exploits16References13
OSV
OSV
•added 2017/01/05 2:59 a.m.•174 views

CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.3CVSS6.8AI score
Exploits0References20
OSV
OSV
•added 2021/01/29 7:47 p.m.•173 views

GHSA-2CWJ-8CHV-9PP9 XML External Entity attack in log4net

Apache log4net before 2.0.10 does not disable XML external entities when parsing log4net configuration files. This could allow for XXE-based attacks in applications that accept arbitrary configuration files from users...

9.8CVSS7.3AI score0.49839EPSS
Exploits0References22
OSV
OSV
•added 2024/03/06 10:52 a.m.•172 views

BIT-APACHE-2022-28615 Read beyond bounds in ap_strcmp_match()

Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in apstrcmpmatch when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or lua scripts that use...

9.1CVSS8.9AI score0.05729EPSS
Exploits0References7
OSV
OSV
•added 2024/01/23 5:22 p.m.•172 views

CVE-2024-23341 TuiTse-TsuSin html injection vulnerability in `tuitse_html` function

TuiTse-TsuSin is a package for organizing the comparative corpus of Taiwanese Chinese characters and Roman characters, and extracting sentences of the Taiwanese Chinese characters and the Roman characters. Prior to version 1.3.2, when using tuitsehtml without quoting the input, there is a html...

6.1CVSS6.3AI score0.00428EPSS
Exploits0References5
OSV
OSV
•added 2022/07/28 2:15 a.m.•171 views

CVE-2022-2477

Use after free in Guest View in Google Chrome prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS9AI score
Exploits0References5
OSV
OSV
•added 2024/05/29 7:19 a.m.•170 views

BIT-GITLAB-2024-4835 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

A XSS condition exists within GitLab in versions 15.11 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this condition, an attacker can craft a malicious page to exfiltrate sensitive user information...

8.2CVSS7.4AI score0.00802EPSS
Exploits1References3
OSV
OSV
•added 2024/05/23 11:2 a.m.•170 views

CVE-2024-1947 Improper Handling of Highly Compressed Data (Data Amplification) in GitLab

A denial of service DoS condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this vulnerability an attacker could create a DoS condition by sending crafted API calls...

4.3CVSS6.3AI score0.00476EPSS
Exploits0References5
OSV
OSV
•added 2024/05/23 7:2 a.m.•170 views

CVE-2024-2874 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11 before 16.11.3, and 17.0 before 17.0.1. A runner registered with a crafted description has the potential to disrupt the loading of targeted GitLab web resources...

6.5CVSS6.3AI score0.00632EPSS
Exploits1References5
OSV
OSV
•added 2024/03/06 11:24 a.m.•170 views

BIT-GITLAB-2020-10078

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability...

6.1CVSS5.8AI score0.00691EPSS
Exploits0References3
OSV
OSV
•added 2020/04/25 12:0 a.m.•170 views

DLA-2184-1 jsch - security update

Bulletin has no description...

5.9CVSS5.8AI score0.24143EPSS
Exploits3
OSV
OSV
•added 2024/09/16 1:38 a.m.•169 views

RHSA-2018:3249 Red Hat Security Advisory: setup security and bug fix update

Bulletin has no description...

4.8CVSS5.1AI score0.00315EPSS
Exploits0References9
OSV
OSV
•added 2024/01/30 3:39 p.m.•169 views

CVE-2024-21653 vantage6 insecure SSH configuration for node and server containers

The vantage6 technology enables to manage and deploy privacy enhancing technologies like Federated Learning FL and Multi-Party Computation MPC. Nodes and servers get a ssh config by default that permits root login with password authentication. In a proper deployment, the SSH service is not expose...

6.5CVSS9.2AI score0.00466EPSS
Exploits0References4
OSV
OSV
•added 2021/07/20 12:0 a.m.•169 views

DLA-2715-1 systemd - security update

Bulletin has no description...

5.5CVSS6.1AI score0.0865EPSS
Exploits2
OSV
OSV
•added 2024/05/23 11:2 a.m.•168 views

CVE-2023-6502 Inefficient Regular Expression Complexity in GitLab

A Denial of Service DoS condition has been discovered in GitLab CE/EE affecting all versions before 16.10.6, version 16.11 before 16.11.3, and 17.0 before 17.0.1. It is possible for an attacker to cause a denial of service using a crafted wiki page...

4.3CVSS6.1AI score0.00505EPSS
Exploits0References5
OSV
OSV
•added 2024/05/23 11:2 a.m.•168 views

CVE-2024-5258 Authorization Bypass Through User-Controlled Key in GitLab

An authorization vulnerability exists within GitLab from versions 16.10 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1 where an authenticated attacker could utilize a crafted naming convention to bypass pipeline authorization logic...

4.4CVSS4.6AI score0.00275EPSS
Exploits1References4
OSV
OSV
•added 2022/07/02 12:0 a.m.•168 views

GHSA-V923-W3X8-WH69 Passport vulnerable to session regeneration when a users logs in or out

This affects the package passport before 0.6.0. When a user logs in or logs out, the session is regenerated instead of being closed...

4.8CVSS5.2AI score0.00985EPSS
Exploits0References5
OSV
OSV
•added 2019/05/30 12:0 a.m.•168 views

DLA-1811-1 miniupnpd - security update

Bulletin has no description...

7.8CVSS7.5AI score0.03404EPSS
Exploits6
OSV
OSV
•added 2024/05/23 6:30 a.m.•167 views

CVE-2024-4835 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

A XSS condition exists within GitLab in versions 15.11 before 16.10.6, 16.11 before 16.11.3, and 17.0 before 17.0.1. By leveraging this condition, an attacker can craft a malicious page to exfiltrate sensitive user information...

8CVSS7.4AI score0.00802EPSS
Exploits1References5
OSV
OSV
•added 2024/01/26 4:37 p.m.•167 views

CVE-2024-23820 OpenFGA DoS

OpenFGA, an authorization/permission engine, is vulnerable to a denial of service attack in versions prior to 1.4.3. In some scenarios that depend on the model and tuples used, a call to ListObjects may not release memory properly. So when a sufficiently high number of those calls are executed, t...

5.3CVSS6.3AI score0.00734EPSS
Exploits0References5
OSV
OSV
•added 2022/01/10 2:12 p.m.•167 views

PYSEC-2022-10

PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method...

9.8CVSS3AI score0.03399EPSS
Exploits0References3
OSV
OSV
•added 2024/07/11 5:42 p.m.•166 views

GHSA-GMC6-FWG3-75M5 Mimekit has vulnerable dependency that can lead to denial of service

Summary Denial of service vulnerability. Details See: https://github.com/advisories/GHSA-447r-wph3-92pm and https://github.com/dotnet/announcements/issues/312 PoC Update System.Security.Cryptography.Pkcs to 8.0.1 so that the transitive dependency with the issue gets updated Impact Denial of servi...

8.7CVSS7.2AI score
Exploits0References5
OSV
OSV
•added 2024/03/06 11:24 a.m.•166 views

BIT-GITLAB-2020-10080

GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group...

5.3CVSS5AI score0.00929EPSS
Exploits0References3
OSV
OSV
•added 2024/07/01 7:15 p.m.•165 views

CVE-2024-38475

Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure...

9.1CVSS7AI score0.99957EPSS
Exploits1References7
OSV
OSV
•added 2024/05/23 11:2 a.m.•165 views

CVE-2023-7045 Cross-Site Request Forgery (CSRF) in GitLab

A CSRF vulnerability exists within GitLab CE/EE from versions 13.11 before 16.10.6, from 16.11 before 16.11.3, from 17.0 before 17.0.1. By leveraging this vulnerability, an attacker could exfiltrate anti-CSRF tokens via the Kubernetes Agent Server KAS...

5.4CVSS6.1AI score0.00286EPSS
Exploits1References5
OSV
OSV
•added 2018/11/07 4:29 p.m.•165 views

CVE-2018-19059

An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts...

6.5CVSS6.5AI score
Exploits0References3
OSV
OSV
•added 2024/06/28 7:25 a.m.•164 views

BIT-GITLAB-2024-1816 Uncontrolled Resource Consumption in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 12.0 prior to 16.11.5, starting from 17.0 prior to 17.0.3, and starting from 17.1 prior to 17.1.1, which allows for an attacker to cause a denial of service using a crafted OpenAPI file...

5.5CVSS5AI score0.00287EPSS
Exploits0References3
OSV
OSV
•added 2024/03/06 11:11 a.m.•164 views

BIT-TOMCAT-2020-13934

An h2c direct connection to Apache Tomcat 10.0.0 to 10.0.0, 9.0.0 to 9.0.36 and 8.5.1 to 8.5.56 did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of such requests were made, an OutOfMemoryException could occur leading to a denial of service...

7.5CVSS7.1AI score0.64124EPSS
Exploits0References14
OSV
OSV
•added 2024/01/29 3:46 p.m.•164 views

CVE-2024-23822 Thruk Incorrect limitation of a pathname to a restricted directory (Path Traversal) (CWE-22)

Thruk is a multibackend monitoring webinterface. Prior to 3.12, the Thruk web monitoring application presents a vulnerability in a file upload form that allows a threat actor to arbitrarily upload files to the server to any path they desire and have permissions for. This vulnerability is known as...

5.4CVSS9.1AI score0.01436EPSS
Exploits1References4
OSV
OSV
•added 2022/09/06 6:20 p.m.•164 views

CVE-2022-36032 ReactPHP's HTTP server parses encoded cookie names so malicious `__Host-` and `__Secure-` cookies can be sent

ReactPHP HTTP is a streaming HTTP client and server implementation for ReactPHP. In ReactPHP's HTTP server component versions starting with 0.7.0 and prior to 1.7.0, when ReactPHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with prefixes...

5.3CVSS5.2AI score0.00775EPSS
Exploits0References6
OSV
OSV
•added 2024/05/24 12:0 a.m.•163 views

DSA-5699-1 redmine - security update

Bulletin has no description...

6.1CVSS6.1AI score0.00397EPSS
Exploits0
OSV
OSV
•added 2024/02/07 11:15 a.m.•164 views

CVE-2024-1118

The Podlove Subscribe button plugin for WordPress is vulnerable to UNION-based SQL Injection via the 'button' attribute of the podlove-subscribe-button shortcode in all versions up to, and including, 1.3.10 due to insufficient escaping on the user supplied parameter and lack of sufficient...

8.8CVSS7.3AI score
Exploits0References3
OSV
OSV
•added 2024/02/07 1:15 a.m.•163 views

CVE-2024-24019

A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. An attacker can pass in crafted offset, limit, and sort parameters to perform SQL injection via /system/roleDataPerm/list...

9.8CVSS8.1AI score
Exploits0References2
OSV
OSV
•added 2024/03/06 11:24 a.m.•162 views

BIT-GITLAB-2020-10079

GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required...

5.3CVSS5.2AI score0.0086EPSS
Exploits0References3
OSV
OSV
•added 2024/09/08 2:50 p.m.•161 views

MAL-2024-10225 Malicious code in mobileye-8-connect (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e7b3a006f16102113625364a266a513016fe138d66a4008fc548e6df97c1a9a8 The OpenSSF Package Analysis project identified 'mobileye-8-connect' @ 7.7.8 npm as malicious. It is considered malicious because: - The package...

7.4AI score
Exploits0
OSV
OSV
•added 2024/02/02 5:15 a.m.•161 views

CVE-2024-21485

Versions of the package dash-core-components before 2.13.0; versions of the package dash-core-components before 2.0.0; versions of the package dash before 2.15.0; versions of the package dash-html-components before 2.0.0; versions of the package dash-html-components before 2.0.16 are vulnerable t...

5.4CVSS5.1AI score
Exploits0References9
OSV
OSV
•added 2022/03/16 10:47 p.m.•161 views

GHSA-4FC4-4P5G-6W89 Cross-site Scripting in CKEditor4

Affected packages The vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. Impact A potential vulnerability has been discovered in CKEditor 4 HTML processing core module. The vulnerability allowed to inject malformed HTML bypassing...

5.4CVSS6.1AI score0.02448EPSS
Exploits0References10
OSV
OSV
•added 2024/10/22 11:56 a.m.•160 views

BIT-HAPROXY-2024-49214

QUIC in HAProxy 3.1.x before 3.1-dev7, 3.0.x before 3.0.5, and 2.9.x before 2.9.11 allows opening a 0-RTT session with a spoofed IP address. This can bypass the IP allow/block list functionality...

5.3CVSS5AI score0.00502EPSS
Exploits0References8
OSV
OSV
•added 2024/07/13 7:20 a.m.•160 views

BIT-GITLAB-2024-5257 Improper Access Control in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Developer user with admincomplianceframework custom role may have been able to modify the URL for a group namespace...

4.9CVSS4.5AI score0.0042EPSS
Exploits0References3
OSV
OSV
•added 2024/07/13 7:19 a.m.•160 views

BIT-GITLAB-2024-5470 Improper Access Control in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.0 prior to 17.0.4 and from 17.1 prior to 17.1.2 where a Guest user with adminpushrules permission may have been able to create project-level deploy tokens...

3.8CVSS3.8AI score0.00328EPSS
Exploits0References3
OSV
OSV
•added 2024/03/19 5:15 a.m.•160 views

PYSEC-2024-48

Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial of Service ReDoS via the lineswithleadingtabsexpanded function in the strings.py file. An attacker could exploit this vulnerability by crafting a malicious input that causes a denial of service. Exploiting thi...

5.3CVSS6.9AI score0.00971EPSS
Exploits0References4
OSV
OSV
•added 2024/03/06 11:19 a.m.•160 views

BIT-GITLAB-2021-22241

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0. It was possible to exploit a stored cross-site-scripting via a specifically crafted default branch name...

8.7CVSS6.3AI score0.00991EPSS
Exploits0References4
OSV
OSV
•added 2021/02/27 5:15 a.m.•160 views

PYSEC-2021-73

An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any user able to create a files on the minion in a non-blacklisted directory...

7.8CVSS4.4AI score0.04302EPSS
Exploits2References8
OSV
OSV
•added 2020/10/01 7:15 p.m.•160 views

CVE-2020-15227

Nette versions before 2.0.19, 2.1.13, 2.2.10, 2.3.14, 2.4.16, 3.0.6 are vulnerable to an code injection attack by passing specially formed parameters to URL that may possibly leading to RCE. Nette is a PHP/Composer MVC Framework...

9.8CVSS9.6AI score
Exploits0References4
OSV
OSV
•added 2022/10/17 12:0 a.m.•158 views

DLA-3153-1 libksba - security update

Bulletin has no description...

9.8CVSS8.3AI score0.01635EPSS
Exploits1
OSV
OSV
•added 2024/05/07 4:48 p.m.•157 views

GHSA-87HQ-Q4GP-9WR4 react-pdf vulnerable to arbitrary JavaScript execution upon opening a malicious PDF with PDF.js

Summary If PDF.js is used to load a malicious PDF, and PDF.js is configured with isEvalSupported set to true which is the default value, unrestricted attacker-controlled JavaScript will be executed in the context of the hosting domain. Patches This patch forces isEvalSupported to false, removing...

7.1CVSS7.7AI score0.01064EPSS
Exploits1References8
OSV
OSV
•added 2022/12/13 6:30 p.m.•157 views

GHSA-3V6V-2X6P-32MC pgadmin4 vulnerable to Code Injection

The pgAdmin server includes an HTTP API that is intended to be used to validate the path a user selects to external PostgreSQL utilities such as pgdump and pgrestore. The utility is executed by the server to determine what PostgreSQL version it is from. Versions of pgAdmin prior to 6.17 failed to...

8.8CVSS8.5AI score0.79933EPSS
Exploits0References5
OSV
OSV
•added 2022/09/27 12:0 a.m.•157 views

GHSA-6HRG-QMVC-2XH8 joblib vulnerable to arbitrary code execution

The package joblib from 0 and before 1.2.0 is vulnerable to Arbitrary Code Execution via the predispatch flag in Parallel class due to the eval statement...

9.8CVSS8.3AI score0.01893EPSS
Exploits1References17
OSV
OSV
•added 2021/07/11 12:1 a.m.•157 views

OSV-2021-958 Dynamic-stack-buffer-overflow in mdb_numeric_to_string

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35972 Crash type: Dynamic-stack-buffer-overflow WRITE 16 Crash state: mdbnumerictostring mdbxferbounddata mdbattemptbind...

7.2AI score
Exploits0References1
Total number of security vulnerabilities5000