Improper Access Control

virtualbox is vulnerable to Improper Access Control. This vulnerability allows an attacker with local access to a vulnerable VirtualBox installation to execute arbitrary code on the host system...

Improper Access Control

virtualbox is vulnerable to Improper Access Control. This vulnerability allows an attacker with local access to a vulnerable VirtualBox installation to execute arbitrary code on the host system...

Privilege Escalation

samba is vulnerable to Privilege Escalation. A design flaw in the Samba DirSync control implementation that exposes passwords and secrets in Active Directory to privileged users and Read-Only Domain Controllers RODCs allows RODCs and users possessing the GETCHANGES right to access all attributes,...

Improper Authorization

samba is vulnerable to Improper Authorization. This vulnerability allows an attacker to truncate files, even with read-only permissions, when the Samba VFS module aclxattr is configured with aclxattr:ignore system acls = yes...

Path Traversal

samba is vulnerable to Path Traversal. An attacker could exploit this vulnerability by creating a malicious file with a specially crafted path and then uploading the file to a Samba share. When a user downloads the file, the Samba server will resolve the path to the file on the underlying...

SQL Injection

Nocodb is vulnerable to SQL Injection. The vulnerability is due to improper sanitation or parameterization of sql queries in the triggerList function in the SqliteClient.ts file. This can potentially lead to Information Disclosure...

HTML Injection

slurm-wlm is vulnerable to Race Condition. This vulnerability allows an attacker who has access to the plugin's configuration page to inject malicious HTML into the page. This malicious HTML could then be executed by users who visit the configuration page, which could allow the attacker to steal...

Improper Privilege Management

Github.com/grafana/grafana is vulnerable to Improper Privilege Management. The vulnerability impacts Grafana instances with several organizations, which allows a user with Organization Admin permissions in one organization to change the permissions associated with Organization Viewer, Organizatio...

Directory Traversal

Python is vulnerable to directory traversal attack. The vulnerability is due to the extract and extractall functions in the tarfile module which allows an attacker to overwrite arbitrary files via a dot dot.. sequence. The vulnerability results in an arbitrary file overwrite...

Information Disclosure

urllib3 is vulnerable to Information Disclosure. The vulnerability is due the http body not being removed after a redirect with a 301, 302, or 303 status. to An attacker could exploit this vulnerability by tricking a user into performing a POST request to a vulnerable application. The attacker...

Use After Free

chromium is vulnerable to Use After Free. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The malicious website would contain specially crafted HTML code that would trigger the use-after-free vulnerability in Site Isolation. Once the vulnerabilit...

Privilege Escalation

Arduino Create Agent is vulnerable to Privilege Escalation. The vulnerability is due to the improper handling of requests to the endpoint /v2/pkgs/tools/installed. This can be exploited by an attacker via executing a HTTP requests to the localhost interface leading to the elevation of privileges ...

Cross-site Scripting (XSS)

roundcube is vulnerable to Cross-site Scripting XSS. This vulnerability allows an attacker to inject malicious code into a user's web browser, which could then be executed when the user views a specially crafted email...

Denial Of Service (DoS)

Mosquitto is vulnerable to Denial of Service DoS. This vulnerability exists in the packetwrite function in packetmosq.c because it does not properly validate user inputs , allowing an attacker to cause the mosquitto broker to consume excessive CPU resources by establishing a connection to the...

Spoofing Attack

chromium is vulnerable to Spoofing Attack. The vulnerability exists due to the inappropriate implementation in Input of the library, allowing an attacker to spoof security UI via a maliciously crafted HTML page...

Misconfigured Security Controls

chromium is vulnerable to Misconfigured Security Controls. The vulnerability exists because of an improper implementation in the Fullscreen feature of the library, which could allow an attacker to deceive a user into installing a malicious extension. This would enable the attacker to bypass...

Spoofing Attack

chromium is vulnerable to Spoofing Attack. The vulnerability exists due to the inappropriate implementation in Downloads feature of the library, allowing an attacker to spoof security UI via a maliciously crafted HTML page...

Spoofing Attack

chromium is vulnerable to Spoofing Attack. The vulnerability exists due to the inappropriate implementation in Navigation feature of the library, allowing an attacker to spoof security UI via a maliciously crafted HTML page...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The website would contain a specially crafted HTML page that would exploit the inappropriate implementation in Autofill and allow the attacker to...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The website would contain a specially crafted HTML page that would exploit the inappropriate implementation in Intents and allow the attacker to...

Use After Free

vim is vulnerable to Use After Free. An attacker could exploit this vulnerability by tricking a user into opening a malicious URL or by sending a specially crafted HTTP request to a vulnerable web server. The request would contain a specially crafted curl command that would cause the curl library...

Denial Of Service (DoS)

samba is vulnerable to Denial of Service DoS. An attacker could exploit this vulnerability by sending a specially crafted request to a vulnerable Samba server. The request would cause the server to allocate a large amount of memory, which would eventually exhaust the server's resources and cause ...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability by tricking a user into running a specially crafted command. The command would cause the Chrome installer to overwrite arbitrary files on the system, which could allow the attacker to gain elevated...

Information Disclosure

chromium is vulnerable to Information Disclosure. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The website would contain a specially crafted HTML page that would exploit the inappropriate implementation in Autofill and allow the attacker to le...

Improper Authorization

chromium is vulnerable to Improper Authorization. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The website would contain a specially crafted HTML page that would exploit the race condition in DevTools and allow the attacker to break...

Denial Of Service (DoS)

chromium is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use after free in Blink History of the library, allowing an attacker to cause a heap corruption via a maliciously crafted HTML page...

Improper Authorization

chromium is vulnerable to Improper Authorization. The vulnerability allows an attacker who convinced a user to install a malicious extension to bypass an enterprise policy via a crafted HTML page...

Use After Free

chromium is vulnerable to Use After Free. An attacker could exploit this vulnerability by tricking a user into visiting a malicious website. The malicious website could contain a specially crafted HTML page that would trigger the use-after-free vulnerability in the Cast component. Once the...

Heap Buffer Overflow

chromium is vulnerable to Heap Buffer Overflow. An attacker could exploit this vulnerability by tricking a user into opening a malicious PDF file. The malicious PDF file could contain specially crafted data that would trigger the buffer overflow vulnerability in the PDF function. Once the...

Denial Of Service (DoS)

vim is vulnerable to Denial Of Service DoS. This vulnerability allows an attacker to exploit a specially crafted file to trigger a NULL pointer dereference, causing the application to crash...

Denial Of Service (DoS)

vim is vulnerable to Denial Of Service DoS. This vulnerability allows an attacker to exploit a Heap-based Buffer Overflow, causing the application to crash...

Improper Preservation Of Permissions

OpenSearch Security is vulnerable to Improper Preservation Of Permissions. The vulnerability exists in the isTenantAllowed function at PrivilegesInterceptorImpl.java which allows an attacker with read only access to create, edit, and delete operations on index metadata of dashboards...

Path Traversal

Go is vulnerable to Path Traversal attack. On Windows, function clean can transform an invalid path to a valid path. This transformation of a relative path to absolute path could enable a directory traversal attack...

Command Injection

Node-qpdf are vulnerable to Command Injection.The vulnerability is due to not sanitizing the input parameters in the encrypt method. This allows an attacker to inject malicious commands if they can specify the input pdf file path...

Denial Of Service (DoS)

OpenFGA is vulnerable to Denial of service attacks. The vulnerability is due to an insufficient mechanism to release resources. When a number of Listobjects calls are executed, the resources are not released after the response is sent...

Cross-Site Request Forgery (CSRF)

github.com/gofiber/fiber is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is caused by improper validation and enforcement of CSRF tokens within the application. An attacker is able to trick a user into performing unauthorized actions on the application, such as changing their...

Improper Authentication

WebAuthn4J is vulnerable to Improper Authentication. The vulnerability is due to the improper persistence of an incremented signature counter value by the authenticator during authentication. This can be exploited by the attacker using cloned authenticators without being detected...

Cross-Site Request Forgery (CSRF)

github.com/gofiber/fiber is vulnerable to Cross-Site Request Forgery CSRF. The vulnerability is due to improper validation and enforcement of CSRF tokens within the application. An attacker is able to exploit this vulnerability by tricking a user into clicking on a malicious link or by sending a...

Information Disclosure

mantisbt/mantisbt is vulnerable to Information Disclosure. The vulnerability is due to insufficient access-level checks on the Wiki redirection page which allows an attacker to reveal private Projects' names by accessing the wiki.php page...

Distributed Denial Of Service (DDoS)

silverstripe/graphql is vulnerable to Distributed Denial Of Service attacks. The vulnerability is due to publicly exposed graphql schemas because it does not properly validate recursive queries, allowing an attacker to send recursive queries into the system...

Cross-site Scripting (XSS)

github.com/crewjam/saml is vulnerable to Cross-site Scripting XSS. The vulnerability arises from inadequate validation of the ACS location URI in metadata.go, enabling an attacker to register malicious service providers at the IdP. This allows an attacker to inject and execute malicious JavaScrip...

Insecure Data Handling

libnbd is vulnerable to Insecure Data Handling. The vulnerability is due to nbdunlockedgetsize function not sanitizing/checking data that sizes larger than INT64MAX. This could lead to potential Denial of service...

Information Disclosure

Apache Airflow is vulnerable to Information Disclosure. The vulnerability is due to the sensitiveconfigvalues function in configuration.py failing to check for sensitive configurations using case-sensitive matches. This allows an attackers to retrieve sensitive data by exploiting case mismatches,...

Information Disclosure

org.apache.inlong: manager-web is vulnerable to Information Disclosure. The vulnerability is due to the list and getByName functions in UserController.java lacking Role-Based Access Control. This allows any authenticated user to access data that meant for admin regardless of their role...

Authorization Bypass

org.apache.inlong: manager-pojo is vulnerable to Authorization Bypass. The vulnerability is due to filterSensitive function in MySQLSinkDTO.java which has no checks for parameters that not present in predefined maps. This allows potentially malicious parameters to pass through unchecked. An...

SQL Injection

librenms/librenms is vulnerable to SQL Injection. The vulnerability exists because the the search query is not properly sanitized which allows an attacker to extract the whole database...

SQL Injection

org.apache.inlong: manager-web is vulnerable to SQL Injection. The vulnerability is due to a lack of Input Validation in the testConnection function in both DataNodeController.java and InlongClusterController.java. This allows an attacker to create misleading or false records that can potentially...

Denial Of Service (DoS)

vrite is vulnerable to Denial of Service DoS. This vulnerability exists due to the absence of rate limits, which allows an attacker to send spam messages to the victim's email inbox...

Buffer Overflow

libzephyr.so is vulnerable to Buffer Overflow. The vulnerability exists in wifiargstoparams function at wifishell.c which allows an attacker to cause an application crash...

Buffer Overflow

libzephyr.so is vulnerable to Buffer Overflow. The vulnerability exists due to the IEEE 802.15.4 driver in ieee802154nrf5.c, which allows an attacker to cause an application crash...