Lucene search
K
VeracodeRecent

38326 matches found

Veracode
Veracode
added 2024/12/17 1:12 p.m.8 views

HTML Injection

Directus is vulnerable to HTML Injection. The vulnerability is due to the filtering of restricted characters, such as HTML tags, being implemented on the client-side, which can be bypassed. It allowing an attacker to inject malicious HTML content...

5.7CVSS6.5AI score0.00339EPSS
Exploits1References4Affected Software2
Veracode
Veracode
added 2024/12/17 1:9 p.m.13 views

Improper Input Validation

dev.sigstore, sigstore-java is vulnerable to Improper Input Validation. The vulnerability is due to insufficient verification in the KeylessVerifier.verify method, which fails to properly validate whether the inclusion proof provided by a bundle corresponds to the correct log, allows an attacker ...

2.1CVSS6.9AI score0.00209EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2024/12/17 11:33 a.m.9 views

Sensitive Information Exposure

github.com/argoproj/argo-workflows/v3 is vulnerable to a Sensitive Information Exposure. The vulnerability is due to the absence of proper authentication checks in the GET Workflow endpoint when retrieving Archived Workflows. Specifically, when using --auth-mode=client, fake or spoofed tokens can...

7.5CVSS6.4AI score0.00656EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2024/12/17 10:44 a.m.11 views

Arbitrary File Read

github.com/siyuan-note/siyuan is vulnerable to Arbitrary File Read. The vulnerability is due to lack of proper validation on the path parameter in the /api/template/render endpoint, allows attackers to manipulate the path and access sensitive files on the host system...

8.7CVSS6.5AI score0.00717EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/17 10:44 a.m.14 views

Code Injection

Mongoose is vulnerable to a Code Injection. The vulnerability is due to improper use of the $where operator, which allows the execution of arbitrary JavaScript code in MongoDB queries. This could lead to code injection attacks, enabling unauthorized access to or manipulation of database data...

9.1CVSS7.3AI score0.03988EPSS
Exploits3References8Affected Software1
Veracode
Veracode
added 2024/12/17 10:25 a.m.8 views

Open Redirection

github.com/bunkerity/bunkerweb is vulnerable to an Open Redirection. The vulnerability is due to improper validation of the "next" parameter in the loading endpoint, which allows attackers to redirect authenticated users to arbitrary external URLs. For example, visiting...

5.1CVSS6.5AI score0.0076EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2024/12/17 10:20 a.m.8 views

Insufficient Validation Of Integration Time

sigstore is vulnerable to insufficient validation of integration time. The vulnerability is due to insufficient validation of the integration time in "v2" and "v3" bundles, which allows an attacker to modify the timestamp and cause the signature verification to fail. However, the attack does not...

6.9CVSS6.5AI score0.00235EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2024/12/17 9:59 a.m.8 views

Arbitrary File Write

github.com/siyuan-note/siyuan is vulnerable to Arbitrary File Write. The vulnerability is due to improper handling of the /api/asset/upload endpoint, which allows arbitrary file writing to the host and enables stored cross-site scripting via the file upload mechanism...

8.7CVSS6AI score0.00362EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2024/12/17 8:24 a.m.13 views

Server-side Template Injection (SSTI)

SiYuan is vulnerable to Server-Side Template Injection SSTI. The vulnerability is due to improper handling of templates in the /api/template/renderSprig endpoint, allowing attackers to access environment variables through the Sprig template engine...

9.8CVSS7AI score0.0059EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/17 7:47 a.m.10 views

Cross-site Scripting (XSS)

rails-html-sanitizer is vulnerable to a Cross-Site Scripting XSS. The vulnerability is due to improper sanitization of HTML content when specific configurations are used. If HTML5 sanitization is enabled and the application developer overrides the sanitizer's allowed tags to include both "math" a...

6.1CVSS6AI score0.00581EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2024/12/17 4:56 a.m.7 views

Denial Of Service (DoS)

python-multipart is vulnerable to a Denial of Service DoS. The vulnerability is due to excessive logging and inefficient handling of data when parsing form data. Specifically, line breaks before the first boundary and trailing bytes after the last boundary are processed one byte at a time, emitti...

5.9CVSS6.6AI score0.00371EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2024/12/16 3:21 p.m.12 views

Server-Side Request Forgery (SSRF)

Mobile Security Framework MobSF is vulnerable to a Server-Side Request Forgery SSRF. The vulnerability is due to improper handling of HTTP redirects in the checkurl method, where the requests.get function is configured with allowredirects=True. This allows an SSRF when a request to...

7.5CVSS6.8AI score0.00407EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2024/12/16 12:43 p.m.13 views

Database Credentials Exposure

thorsten/phpmyfaq is vulnerable to Database Credentials Exposure. The vulnerability is due to improper error handling, which allows an attacker to obtain the database server's credentials when the connection to the database fails...

8.6CVSS6.6AI score0.00478EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2024/12/16 12:42 p.m.9 views

Insufficient Permission Checks

org.jenkins-ci.plugins, script-security is vulnerable to insufficient permission checks. The vulnerability is due to the lack of a permission check in a method that implements form validation, allows attackers with Overall/Read permission to access and check for the existence of files on the...

4.3CVSS4.4AI score0.0036EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/16 12:38 p.m.11 views

Session Fixation

org.jenkins-ci.plugins, oic-auth is vulnerable to Session Fixation. The vulnerability is due to the plugin failing to invalidate the previous session on login, allowing an attacker to reuse an old session...

8.8CVSS6.7AI score0.00613EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/16 9:21 a.m.22 views

Remote Code Execution (RCE)

org.apache.struts, struts2-core is vulnerable to Remote Code Execution RCE. The vulnerability is due to improper validation and handling of file uploads, allowing attackers to potentially upload and execute malicious files on the server...

9.8CVSS7.5AI score0.78198EPSS
Exploits15References9Affected Software1
Veracode
Veracode
added 2024/12/16 6:55 a.m.12 views

Sensitive Information Exposure

org.springframework.ldap:spring-ldap-core is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper handling of case conversions using String.toLowerCase and String.toUpperCase methods, which can have locale-dependent exceptions. This may lead to unintended columns bei...

3.7CVSS4AI score0.00376EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/16 6:39 a.m.8 views

Directory Traversal

The github.com/cli/cli is vulnerable to a Directory Traversal. The vulnerability is due to improper handling of artifact names during download when using the gh run download command. Specifically, if a malicious GitHub Actions workflow artifact is named .., the files within the artifact are...

6.3CVSS6.1AI score0.00633EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2024/12/16 6:6 a.m.9 views

Remote Code Execution (RCE)

D-Tale is vulnerable to Remote Code Execution RCE. The vulnerability is due to the ability for users to update the enablecustomfilters flag through the update-settings endpoint, allowing attackers to run malicious code on the server...

6.9CVSS7.6AI score0.01063EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2024/12/16 5:55 a.m.17 views

Remote Code Execution (RCE)

laravel/pulse is vulnerable to Remote Code Execution RCE. The vulnerability is due to insufficient input validation in the remember method of the Laravel\Pulse\Livewire\Concerns\RemembersQueries trait, allows arbitrary callables to be executed without properly validating their parameters or...

8.8CVSS8.2AI score0.28571EPSS
Exploits3References3Affected Software1
Veracode
Veracode
added 2024/12/16 5:34 a.m.7 views

Improper Input Validation

spatie/browsershot is vulnerable to Improper Input Validation. The vulnerability is due to improper URL validation through the setUrl method, allowing an attacker to exploit leading whitespace %20 before the file:// protocol, resulting in Local File Inclusion and potential access to sensitive fil...

8.6CVSS6.6AI score0.00573EPSS
Exploits0References5Affected Software1
Veracode
Veracode
added 2024/12/16 5:11 a.m.9 views

Unauthorized File Download

thorsten/phpmyfaq is vulnerable to Unauthorized File Download. The vulnerability is due to improper validation in the FAQ Record component, allowing a privileged attacker to embed a file download in an element and exploit it without user interaction or explicit consent...

7.2CVSS6.5AI score0.02121EPSS
Exploits3References4Affected Software1
Veracode
Veracode
added 2024/12/16 4:47 a.m.11 views

Authentication Bypass

Djoser is vulnerable to Authentication Bypass. The vulnerability is due to a fallback mechanism that queries the database directly when the authenticate function fails, allowing an attacker to gain unauthorized access by bypassing custom authentication checks such as two-factor authentication, LD...

7.1CVSS7AI score0.00547EPSS
Exploits0References9Affected Software1
Veracode
Veracode
added 2024/12/13 1:34 p.m.10 views

Denial Of Service (DoS)

drupal/core is vulnerable to denial of service DOS. The vulnerability is due to insufficient validation or rate-limiting of comment reply requests, allowing an attacker to overload the system...

7.5CVSS6.5AI score0.00457EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/13 1:30 p.m.12 views

Remote Code Execution (RCE)

org.apache.hive, hive-exec is vulnerable to Remote Code Execution RCE. The vulnerability is due to the unsafe deserialization of arbitrary data using the SerializationUtilitiesdeserializeObjectWithTypeInformation method, which allows attackers to execute arbitrary code if they are authenticated a...

8.3CVSS8.5AI score0.01656EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2024/12/13 1:25 p.m.8 views

File Manipulation

drupal/core is vulnerable to File Manipulation. The vulnerability is due to insufficient validation and sanitization of user-provided file paths, which can lead to unauthorized file access or manipulation...

5.9CVSS6.6AI score0.00375EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/13 7:41 a.m.16 views

Build Replay Attack

org.jenkins-ci.plugins.workflow, workflow-cps is vulnerable to Build Replay Attack. The vulnerability is due to the plugin not verifying whether the main Jenkinsfile script for a rebuilt build is approved, allowing attackers with Item/Build permission to rebuild a previous build with an unapprove...

8CVSS6.6AI score0.0044EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2024/12/13 6:22 a.m.28 views

Remote Code Execution (RCE)

Joplin is vulnerable to Remote code execution RCE. The vulnerability is due to insufficient sanitization of tag attributes introduced by the Mermaid feature, allowing execution of untrusted HTML content within the Electron window...

9.6CVSS7.5AI score0.01037EPSS
Exploits1References3Affected Software2
Veracode
Veracode
added 2024/12/13 5:52 a.m.7 views

Remote Code Execution (RCE)

GitHub CLI is vulnerable to Remote Code Execution RCE. The vulnerability is due to unvalidated SSH connection details, allowing a malicious devcontainer to inject arguments that execute arbitrary commands when using gh codespace ssh or gh codespace logs...

9.6CVSS7.9AI score0.00861EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/13 5:28 a.m.10 views

Improper Permission Validation

github.com/goharbor/harbor is vulnerable to Improper Permission Validation. The vulnerability is due to insufficient permission validation when processing requests to update p2p preheat policies, allowing attackers to modify policies in projects they do not have access to...

7.7CVSS7AI score0.00296EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/12 4:1 p.m.7 views

Cross Site Scripting

rails-html-sanitizer, is vulnerable to Cross-Site Scripting. The vulnerability is due to improper handling of certain HTML5 elements when the sanitizer's allowed tags include "math", "mtext", "table", "style", and either "mglyph" or "malignmark." Attackers can exploit this by injecting malicious...

6.1CVSS6.4AI score0.00435EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/12 2:18 p.m.4 views

Denial Of Service (DoS)

cosmossdk.io/math is vulnerable to Denial Of Service DoS. The vulnerability is due to insufficient bit-length validation in the sdk.Int and sdk.Dec types, which fails to properly enforce constraints, allowing unexpected conditions to cause a panic...

6.9AI score
Exploits0
Veracode
Veracode
added 2024/12/12 2:12 p.m.8 views

Sensitive Information Disclosure

Rancher Manager is vulnerable to sensitive information disclosure. The vulnerability is due to Helm values being stored directly in the Apps Custom Resource Definition and leaking into audit logs when the audit level is set to 2 or above, allowing users with GET access to read sensitive informati...

6.2CVSS6AI score0.00371EPSS
Exploits0
Veracode
Veracode
added 2024/12/12 1:57 p.m.9 views

Arbitrary File Upload

djangofiler is vulnerable to Arbitrary file upload. The vulnerability is due to improper input validation and the lack of neutralization of script-related HTML tags in django Filer, allows attackers to upload files with dangerous types and manipulate input data, leading to stored XSS...

5.5CVSS5.7AI score0.0034EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2024/12/12 1:53 p.m.5 views

Denial Of Service (DoS)

github.com/cert-manager/cert-manager is vulnerable to Denial Of Service DoS. The vulnerability is due to the way cert-manager processes specially crafted invalid PEM data using the pem.Decode function in the standard library, allows an attacker who can modify PEM data read by cert-manager—such as...

6.8AI score
Exploits0
Veracode
Veracode
added 2024/12/12 1:34 p.m.6 views

Content Injection

sp-php-email-handler is vulnerable to Content Injection. The vulnerability is due to improper validation of email recipients and lack of sanitization of user-provided content in confirmation emails, allows attackers to specify arbitrary email addresses and inject malicious content...

8.6CVSS6.8AI score0.00451EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2024/12/12 1:19 p.m.4 views

Non-Constant Time Cryptographic Operation

devolutions.xts.net is vulnerable to Non-Constant Time Cryptographic Operation. The vulnerability is due to non-constant time cryptographic operations, which allow attackers to exploit variations in the time taken for different operations to reveal information about the encryption key...

5.1CVSS6.4AI score0.0014EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2024/12/12 12:17 p.m.11 views

Server Side Request Forgery (SSRF)

@lobehub/chat is vulnerable to Server Side Request Forgery SSRF. The vulnerability is due to insufficient input validation and improper handling of requests, allowing attackers to craft requests that can target internal services, even without authentication...

8.6CVSS7.1AI score0.23716EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/12/12 11:7 a.m.10 views

Cross Site Scripting

rails-html-sanitizer is vulnerable to Cross Site Scripting. The vulnerability is due to a flaw in the sanitization logic, allowing crafted malicious payloads to be treated as safe. Attackers can use this to include dangerous HTML or scripts in sanitized content, potentially resulting in Cross-Sit...

6.1CVSS6.3AI score0.00435EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/12 11:0 a.m.8 views

Weak Password Enforcement

ethycafides is vulnerable to Weak Password Enforcement. The vulnerability is due to a lack of server-side password policy enforcement in the /api/v1/user/accept-invite endpoint, allowing users to bypass client-side password complexity checks...

8.8CVSS6.8AI score0.00536EPSS
Exploits0References2Affected Software1
Veracode
Veracode
added 2024/12/12 10:14 a.m.10 views

Cross Site Scripting

rails-html-sanitizer is vulnerable to Cross Site Scripting. The vulnerability is due to improper handling of namespaced elements in math or svg contexts due to a lack of checks for namespace-specific tags, which can lead to namespace confusion andallows attackers to exploit this by injecting...

6.1CVSS6.5AI score0.00462EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/11 9:5 a.m.8 views

Denial Of Service (DoS)

Kube-controller-manager is vulnerable to denial of service. The vulnerability is due to a missing .spec.behavior.scaleUp block in the HPA YAML file, causing kube-controller-manager pods to enter a restart loop and disrupt service availability. It allows an attacker to trigger a DoS by deploying t...

7.7CVSS6.4AI score0.00598EPSS
Exploits0References10Affected Software1
Veracode
Veracode
added 2024/12/11 8:35 a.m.9 views

Malicious Package

@solana/web3.js is a Malicious Package allowing an attacker to steal private key material and drain funds from applications directly handling private keys...

8.3CVSS6.7AI score0.00431EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2024/12/11 8:26 a.m.8 views

Sensitive Information Exposure

Firepad is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper access controls, allowing attackers with knowledge of a pad ID to retrieve the current document text and all previously pasted content...

5.3CVSS6.6AI score0.00487EPSS
Exploits0References4Affected Software1
Veracode
Veracode
added 2024/12/11 8:12 a.m.9 views

Denial Of Service (DoS)

Matrix-synapse is vulnerable to Denial Of Service. The vulnerability is due to insufficient rate limiting, allowing unauthenticated adversaries to trigger excessive remote media downloads and caching, potentially causing disk exhaustion and service unavailability...

7.5CVSS6.8AI score0.00572EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/11 7:55 a.m.9 views

Sensitive Information Exposure

Matrix-synapse is vulnerable to information disclosure. The vulnerability is due to improper handling of Sliding Sync, which can leak partial room state changes to users who are no longer in a room, while non-state events remain unaffected...

4.3CVSS5.9AI score0.00427EPSS
Exploits0References4Affected Software2
Veracode
Veracode
added 2024/12/11 7:8 a.m.14 views

SQL Injection

tech.powerjob, powerjob is vulnerable to SQL injection. The vulnerability is due to improper handling of the version parameter, which allows attackers to manipulate SQL queries...

9.8CVSS7.7AI score0.00409EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/11 6:48 a.m.8 views

Method Exposure

orchid/platform is vulnerable to Method Exposure. The vulnerability is due to inadequate access control in the asynchronous modal functionality of the Orchid Platform, allows arbitrary methods within the Screen class to be called without proper validation, enabling attackers to exploit the expose...

4.1CVSS6.7AI score0.00322EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2024/12/11 6:34 a.m.8 views

Cross-site Scripting (XSS)

Mobile Security Framework MobSF is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improper validation of filenames, allowing malicious users to upload script files that can execute when the "Diff or Compare" functionality is used...

8.1CVSS6.3AI score0.00508EPSS
Exploits1References3Affected Software1
Veracode
Veracode
added 2024/12/11 6:30 a.m.22 views

Directory Traversal

dotnetzip is vulnerable to Directory Traversal. The vulnerability is due to improper validation of file paths during extraction in the src/Zip.Shared/ZipEntry.Extract.cs component, allowing remote attackers to execute arbitrary code...

9.8CVSS7.5AI score0.02061EPSS
Exploits0References8Affected Software2
Total number of security vulnerabilities38326