Lucene search
+L
VeracodeMost viewed

38468 matches found

Veracode
Veracode
•added 2023/04/06 10:50 a.m.•96 views

Timing Attack

github.com/hashicorp/vault is vulnerable to Timing Attacks. The vulnerability exists in mult and div functions of shamir.go because of not implementing a constant time which allows an attacker to observe a large number of unseal operations on the host...

5CVSS5AI score0.0021EPSS
Exploits0References5Affected Software1
Veracode
Veracode
•added 2022/10/12 2:12 a.m.•96 views

Regular Expression Denial Of Service (ReDoS)

loader-utils is vulnerable to regular expression denial of service. The vulnerability exists due to the insecure regex pattern used for the resourcePath variable in interpolateName.js, allowing an attacker to crash the application by providing a malicious input...

7.5CVSS7.3AI score0.0204EPSS
Exploits0References6Affected Software6
Veracode
Veracode
•added 2020/04/10 1:6 a.m.•95 views

Authorization Bypass

squirrelmail is vulnerable to authorization bypass. THe vulnerability exists as SquirrelMail was allowed to be loaded into an HTML sub-frame, allowing a remote attacker to perform a clickjacking attack against logged in users and possibly gain access to sensitive user data...

4.3CVSS5.1AI score0.01807EPSS
Exploits1References15Affected Software1
Veracode
Veracode
•added 2023/04/24 4:51 a.m.•94 views

Information Disclosure

jetty-server is vulnerable to Information Disclosure. The vulnerability exists because the cookie parsing of quoted values can exfiltrate values from other cookies because the cookie VALUE that starts with " double quote will continue to read the cookie string until it sees a closing quote even i...

5.3CVSS5.3AI score0.013EPSS
Exploits0References10Affected Software3
Veracode
Veracode
•added 2022/06/20 9:8 a.m.•94 views

Open Redirect

got is vulnerable to open redirect. The vulnerability exists onResponseBase function in index.ts because the redirects are enabled to UNIX sockets which allows an attacker to redirect to malicious URLs...

5.3CVSS6.4AI score0.01855EPSS
Exploits0References5Affected Software7
Veracode
Veracode
•added 2022/05/23 11:8 a.m.•94 views

Denial Of Service (DoS)

dicer is vulnerable to denial of service. The vulnerability exists in parseHeader function in HeaderParser.js due to the use of a variable h which allows an attacker to modify and send the form to server and crash the service...

7.5CVSS7.2AI score0.03237EPSS
Exploits2References5Affected Software1
Veracode
Veracode
•added 2019/01/15 9:18 a.m.•93 views

Remote Code Execution (RCE) Through Deserialization

Jackson-databind is vulnerable to remote code execution RCE attacks. These attacks are possible during bean deserialization. Using this flaw attackers are able to execute code and commands. In order to be vulnerable to this attack, either the use of @JsonTypeInfouse = JsonTypeInfo.Id.CLASS or...

9.8CVSS9.5AI score0.37925EPSS
Exploits7References75Affected Software213
Veracode
Veracode
•added 2024/06/14 5:45 a.m.•92 views

XML External Entity (XXE) Injection

magento/community-edition is vulnerabile to XML External Entity XXE Injection. The vulnerability is due to improper handling of XML documents which allows for external entities to be referenced, leading to potential arbitrary code execution. An attacker can exploit this by sending a crafted XML...

9.8CVSS7.4AI score0.99994EPSS
Exploits26References4Affected Software1
Veracode
Veracode
•added 2022/07/08 4:29 a.m.•92 views

Improper Input Validation

jetty-http is vulnerable to improper input validation. The vulnerability exists because the authority function of HttpURI.java does not properly validate the path parameter as a valid authority, allowing an attacker to parse invalid URLs such as http://localhost;/path for the hostname...

2.7CVSS5.9AI score0.01173EPSS
Exploits0References10Affected Software2
Veracode
Veracode
•added 2022/05/19 8:2 a.m.•92 views

Cross-Site Scripting (XSS)

moodle/moodle is vulnerable to stored cross-site scripting. The vulnerability exists in renderassignusersummary function in renderer.php because the identity fields in allocate marker form are not properly escaped which allows an attacker to inject and execute arbitrary javascript...

5.4CVSS7.4AI score0.00846EPSS
Exploits0References12Affected Software1
Veracode
Veracode
•added 2020/07/16 6:42 a.m.•92 views

Remote Code Execution (RCE)

system.data.common is vulnerable to remote code execution RCE. The vulnerability exists as it allows unrestricted polymorphic deserialization in DataSet without proper validation...

7.8CVSS4.4AI score0.94243EPSS
Exploits10References9Affected Software1
Veracode
Veracode
•added 2020/04/10 12:53 a.m.•92 views

Insecure Randomness

php is vulnerable to insecure randomness. The vulnerability as it was discovered that the PHP lcgvalue function used insufficient entropy to seed the pseudo-random number generator. A remote attacker could possibly use this flaw to predict values returned by the function, which are used to genera...

6.4CVSS3.2AI score0.07937EPSS
Exploits1References10Affected Software1
Veracode
Veracode
•added 2022/11/08 5:37 a.m.•91 views

Deserialization Of Untrusted Data

org.drools:drools-compiler is vulnerable to deserialization of untrusted data. The vulnerability exists due to lack of serialization in multiple functions in CompositeKnowledgeBuilderImpl.java and KnowledgeBuilderImpl.java which allows an attacker to execute arbitrary malicious code on the system...

8.8CVSS5.4AI score0.01044EPSS
Exploits0References6Affected Software1
Veracode
Veracode
•added 2022/03/14 9:2 a.m.•91 views

Denial Of Service (DoS)

com.fasterxml.jackson.core:jackson-databind is vulnerable to Denial Of Service DoS. A malicious user is able to cause a StackOverflow exception using a large depth of nested objects resulting in a denial of service conditions...

7.5CVSS7AI score0.0486EPSS
Exploits1References10Affected Software27
Veracode
Veracode
•added 2022/02/20 2:24 p.m.•91 views

Remote Code Execution

redis is vulnerable to remote code execution. A persistent key-value database is prone to a Debian-specific Lua sandbox escape due to a packaging issue allows an attacker to upload and execute malicious code on the targeted system...

10CVSS6.1AI score0.9967EPSS
Exploits10References7Affected Software1
Veracode
Veracode
•added 2019/06/24 12:20 a.m.•91 views

Information Disclosure

python is vulnerable to information disclosure. A regression of CVE-2019-9636 due to a functional fix to allow port numbers in netloc allows an attacker to locate confidential information such as cookies and authentication data and forward the information to a different host. python: regression o...

9.8CVSS9.3AI score0.09125EPSS
Exploits0References42Affected Software9
Veracode
Veracode
•added 2026/01/08 8:53 a.m.•90 views

Information Disclosure

Aircompressor is vulnerable to Information Disclosure. The vulnerability is due to improper handling of malformed Snappy and LZ4 compressed input in the Java decompressor implementations, which allows a remote attacker to craft input that causes previously used buffer contents to be included in t...

7.5CVSS7.1AI score0.00369EPSS
Exploits0References4Affected Software2
Veracode
Veracode
•added 2022/12/23 5:35 a.m.•90 views

Improper Input Validation

jsonwebtoken is vulnerable to improper input validation. A remote attacker is able to write arbitrary files on the host machine via the secretOrPublicKey argument from the readme link of the jwt.verify function due to improper input validation. The vulnerability is only possible if untrusted...

3.2AI score
Exploits0References4Affected Software1
Veracode
Veracode
•added 2022/06/16 5:20 p.m.•90 views

Use-After-Free

linux is vulnerable to use-after-free. The vulnerability exists write function which allows a local user to gain unauthorized access to data from the FUSE file system...

7.8CVSS7.7AI score0.01169EPSS
Exploits0References6Affected Software4
Veracode
Veracode
•added 2021/11/05 10:27 a.m.•90 views

Privilege Escalation

freeswitch is vulnerable to privilege escalation. The vulnerability exists due to SIP requests of the type SUBSCRIBE are not authenticated by default...

5.3CVSS2.4AI score0.0169EPSS
Exploits4References5Affected Software1
Veracode
Veracode
•added 2019/05/16 3:22 a.m.•90 views

Denial Of Service (DoS)

MySQL is vulnerable to denial of service DoS attacks. The vulnerability exists due to some unknown processing of the component InnoDB in the MySQL Server component of Oracle MySQL. A high privileged attacker with network access via multiple protocols could gain unauthorized creation, deletion or...

6.5CVSS6.2AI score0.02947EPSS
Exploits0References8Affected Software3
Veracode
Veracode
•added 2015/11/09 7:34 p.m.•90 views

Potential Remote Code Execution Via Java Object Deserialization

Apache Commons includes a class called InvokerTransformer. An application is vulnerable to a deserialization attack if this class is available on the classpath and the application deserializes untrusted or user-supplied data. It's not necessary to actually use InvokerTransfomer to be vulnerable...

10CVSS9.7AI score0.97655EPSS
Exploits34References24Affected Software6
Veracode
Veracode
•added 2023/07/06 9:9 a.m.•89 views

Prototype Pollution

protobufjs is vulnerable to Prototype Pollution. The vulnerability exists in the setProperty function of util.js, which allows an attacker to inject and modify malicious properties such as proto, resulting in prototype pollution...

9.8CVSS6.8AI score0.01683EPSS
Exploits1References6Affected Software1
Veracode
Veracode
•added 2022/04/28 11:3 a.m.•89 views

Cross-site Scripting (XSS)

rails is vulnerable to Cross-site Scripting XSS. The library does not properly escape input data passed as hash keys for tag attributes in Action View tag helpers, allowing an attacker to inject and execute malicious javascript...

6.1CVSS6.2AI score0.01485EPSS
Exploits1References11Affected Software2
Veracode
Veracode
•added 2022/11/29 2:52 a.m.•88 views

Denial Of Service (DoS)

decode-uri-component is vulnerable to Denial Of Service DoS. A remote attacker is able to cause denial of service conditions via sending a malicious payload through the decode function in index.js due to improper input validation...

7.5CVSS7.1AI score0.24928EPSS
Exploits1References13Affected Software7
Veracode
Veracode
•added 2022/05/20 12:37 a.m.•88 views

SQL Injection

Moodle is vulnerable to SQL injection. An attacker is able to inject malicious SQL script via Badges code relating to configuring criteria as it fails to validate profile criteria when reviewing...

9.8CVSS9.6AI score0.01316EPSS
Exploits0References10Affected Software1
Veracode
Veracode
•added 2022/03/18 2:42 a.m.•88 views

Prototype Pollution

minimist is vulnerable to Prototype Pollution. An attacker can inject properties into existing construct prototypes via the setKey function in the index.js and modify attributes such as proto, constructor, and prototype...

9.8CVSS8.7AI score0.04581EPSS
Exploits1References7Affected Software2
Veracode
Veracode
•added 2022/07/15 5:14 p.m.•87 views

Regular Expression Denial Of Service (ReDoS)

jquery-validation is vulnerable to regular expression denial of service. The vulnerability exists in the url parse function in src/core.js, and due to insufficient regular expression complexity checks an attacker can cause a ReDoS when supplying input to the url parse function. This CVE exists du...

7.5CVSS7AI score0.02026EPSS
Exploits2References4Affected Software1
Veracode
Veracode
•added 2021/06/13 8:39 a.m.•87 views

Denial Of Service (DoS)

Apache HTTP Server is vulnerable to denial of service. A stack overflow in modauthdigest allows an attacker to crash the application...

7.3CVSS2AI score0.53191EPSS
Exploits0References17Affected Software20
Veracode
Veracode
•added 2023/05/25 3:20 a.m.•86 views

Remote Code Execution (RCE)

sqlite-jdbc is vulnerable to Remote Code Execution RCE. The vulnerability exists because the extractResource function of SQLiteConnection.java does not properly validate the user input URL, which allows an attacker to inject and execute malicious code through the JDBC URL...

9.8CVSS7.7AI score0.01592EPSS
Exploits0References3Affected Software1
Veracode
Veracode
•added 2022/12/23 7:14 p.m.•86 views

Use-After-Free

curl is vulnerable to Use-After-Free. When getting denied to tunnel the specific protocols such as SMB or TELNET, the library uses a heap-allocated struct after it had been freed, in its transfer shutdown code path resulting in use after free conditions...

5.9CVSS6.9AI score0.02511EPSS
Exploits1References10Affected Software5
Veracode
Veracode
•added 2022/05/11 10:47 a.m.•86 views

OS Command Injection

openssl is vulnerable to OS command injection. The crehash script does not properly sanitise shell metacharacters to prevent command injection which allows an attacker to execute arbitrary commands with the privileges of the script...

9.8CVSS6.1AI score0.83223EPSS
Exploits5References20Affected Software21
Veracode
Veracode
•added 2022/02/14 4:33 a.m.•86 views

Remote Code Execution (RCE)

cassandra-all is vulnerable to remote code execution. When enableuserdefinedfunctions, enablescripteduserdefinedfunctions, and enablescripteduserdefinedfunctions are set, an attacker can inject and execute malicious code on the host through the scripted UDFs...

9.1CVSS2.4AI score0.54889EPSS
Exploits7References7Affected Software1
Veracode
Veracode
•added 2020/08/14 1:35 a.m.•86 views

Remote Code Execution (RCE)

struts2-core is vulnerable to remote code execution RCE. The vulnerability exists through the possibility of a forced double OGNL expression through the $itemValue expression in simple/radiomap.ftl...

9.8CVSS3AI score0.97399EPSS
Exploits15References14Affected Software1
Veracode
Veracode
•added 2020/03/03 4:20 a.m.•86 views

Remote Code Execution (RCE)

jackson-databind is vulnerable to remote code execution RCE. The vulnerability exists through the deserialization of a JSON payload that uses the br.com.anteros.dbcp.AnterosDBCPConfig gadget...

9.8CVSS3.7AI score0.18345EPSS
Exploits0References26Affected Software305
Veracode
Veracode
•added 2022/11/10 12:27 a.m.•85 views

Privilege Escalation

rh-mysql80-mysql is vulnerable to privilege escalation. A high privileged attacker with network access via multiple protocols to compromise MySQL server, resulting in unauthorized update, insert or delete access to some of MySQL server accessible data...

7.1CVSS6.1AI score0.01197EPSS
Exploits0References7Affected Software1
Veracode
Veracode
•added 2022/02/08 6:1 p.m.•85 views

Privilege Escalation

linux is vulnerable to privilege escalation. The vulnerability exists due to a double free bug in packetsetring in net/packet/afpacket.c...

7CVSS2.6AI score0.05918EPSS
Exploits2References5Affected Software2
Veracode
Veracode
•added 2024/01/03 10:31 a.m.•84 views

Open Redirect

follow-redirects is vulnerable to Open Redirect. The vulnerability is due to improper input validation of URL's in the url.parse function. This issue can be exploited by an attacker to redirect users to malicious page leading to information disclosure or phishing attacks...

7.3CVSS6.3AI score0.00797EPSS
Exploits1References4Affected Software2
Veracode
Veracode
•added 2023/05/24 3:22 a.m.•84 views

Remote Code Execution (RCE)

codeigniter4/framework is vulnerable to Remote Code Execution RCE. The vulnerability exists because the Validation.php does not properly validate the validation placeholders, which allows an attacker to inject and execute malicious code...

9.8CVSS7.6AI score0.01126EPSS
Exploits0References5Affected Software1
Veracode
Veracode
•added 2022/12/14 3:52 a.m.•84 views

Path Traversal

cxf-rt-transports-http is vulnerable to Path Traversal. The vulnerability exists in the handleRequest function of AbstractHTTPServlet.java when the CXFServlet is configured with both the static-resources-list and redirect-query-check attributes, allowing an attacker to access any path on the syst...

7.5CVSS8.3AI score0.01193EPSS
Exploits1References5Affected Software2
Veracode
Veracode
•added 2022/11/19 12:47 a.m.•84 views

Information Disclosure

rh-mysql80-mysql is vulnerable to information disclosure. The vulnerability exists in the Server: PAM Auth Plugin component, allowing attackers to modify the critical data or all MySQL Server accessible data through the multiple protocols...

4.9CVSS5.8AI score0.00962EPSS
Exploits0References7Affected Software1
Veracode
Veracode
•added 2023/04/11 4:10 a.m.•83 views

Prototype Pollution

xml2js is vulnerable to Prototype Pollution. The vulnerability exists because the library does not properly validate the incoming JSON keys, allowing an attacker to modify the proto. attribute...

5.3CVSS5.6AI score0.01404EPSS
Exploits1References6Affected Software2
Veracode
Veracode
•added 2023/01/09 6:49 p.m.•83 views

Arbitrary Code Injection

Tomcat Catalina is vulnerable to Arbitrary Code Injection. The vulnerability exists in the report function of JsonErrorReportValve.java due to improper escaping of inputs from JsonErrorReportValve which allows an attacker to inject invalid input values...

7.5CVSS7.5AI score0.02505EPSS
Exploits0References11Affected Software6
Veracode
Veracode
•added 2022/01/19 12:47 p.m.•83 views

SQL Injection

JDBCAppender in Log4j is vulnerable to SQL Injection. An attacker is able to execute arbitrary SQL commands via entering crafted strings into input fields and headers where the values to be inserted are converters from PatternLayout...

9.8CVSS9.8AI score0.66537EPSS
Exploits1References6Affected Software93
Veracode
Veracode
•added 2021/09/20 6:48 a.m.•83 views

Regular Expression Denial Of Service (ReDoS)

nth-check is vulnerable to regular expression denial of service. The vulnerability exists due to inefficient regular expression complexity in parse.ts, which may crash the system when parsing a malicious string...

7.5CVSS7.2AI score0.02165EPSS
Exploits1References4Affected Software2
Veracode
Veracode
•added 2021/08/24 6:32 a.m.•83 views

Remote Code Execution (RCE)

xstream is vulnerable to remote code execution. The vulnerability exists due to the usage of an insecure default blacklist which does not cover all the excluded XStream security framework...

8.5CVSS2.8AI score0.98124EPSS
Exploits6References16Affected Software4
Veracode
Veracode
•added 2018/06/27 5:49 a.m.•83 views

Arbitrary File Deletion

WordPress is vulnerable to Arbitrary File Deletion. The vulnerability can be triggered because the application does not check the filename inside the wpdeleteattachment function in wp-includes/post.php, allowing an attacker to input a malicious filename string via thumb parameter to cause arbitra...

8.8CVSS7.5AI score0.62558EPSS
Exploits4References8Affected Software2
Veracode
Veracode
•added 2023/04/27 10:39 a.m.•82 views

Access Restriction Bypass

org.springframework.boot:spring-boot-actuator-autoconfigure is vulnerable to Access Restriction Bypass. The vulnerability is due to improper wild card matching, which allows a remote attacker to bypass access restrictions and gain access to the system. Please note that the vulnerability is only...

9.8CVSS9AI score0.01122EPSS
Exploits0References6Affected Software1
Veracode
Veracode
•added 2023/03/06 8:47 p.m.•82 views

Arbitrary Memory Write

firefox is vulnerable to Arbitrary Memory Write. An attacker is able to construct a PKCS 12 cert bundle in such a way that may allow for arbitrary memory writes via PKCS 12 Safe Bag attributes being mishandled...

8.8CVSS4.9AI score0.00817EPSS
Exploits0References7Affected Software6
Veracode
Veracode
•added 2022/06/14 5:42 p.m.•82 views

Insecure Access Control

Apache HTTP Server has insecure access control. The vulnerability exists due to the system not sending the X-Forwarded- headers to the origin server based on client side Connection header hop-by-hop mechanism...

9.8CVSS9.1AI score0.0314EPSS
Exploits1References10Affected Software18
Total number of security vulnerabilities5000