Lucene search
K
Vulncheck KevRecent

4985 matches found

VulnCheck KEV
VulnCheck KEV
added 4 days ago5 views

VulnCheck KEV: CVE-2022-50973

Yonyou KSOA 9.0 contains an unauthenticated arbitrary file upload vulnerability in the com.sksoft.bill.ImageUpload servlet that allows unauthenticated attackers to upload arbitrary files by submitting a POST request with attacker-controlled filepath and filename parameters without any...

9.8CVSS6.2AI score0.0086EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 4 days ago5 views

VulnCheck KEV: CVE-2024-58352

Landray OA contains an unauthenticated HQL injection vulnerability that allows unauthenticated attackers to query arbitrary Hibernate entity classes by injecting malicious HQL syntax into the uid POST parameter of the wechatLoginHelper.do endpoint. Attackers can exploit the lack of input...

8.7CVSS6.2AI score0.00564EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 4 days ago8 views

VulnCheck KEV: CVE-2026-5524

The Divi Form Builder plugin for WordPress is vulnerable to Arbitrary File Upload leading to Remote Code Execution in all versions up to and including 5.1.8. This is due to insufficient file extension validation in the doimageupload function where user-supplied input from the acceptFileTypes POST...

9.8CVSS6AI score0.00542EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 4 days ago8 views

VulnCheck KEV: CVE-2026-1125

A weakness has been identified in D-Link DIR-823X 250416. Affected by this issue is the function sub412E7C of the file /goform/setwifidogsettings. Executing a manipulation of the argument wdenable can lead to command injection. The attack can be executed remotely. The exploit has been made...

9.8CVSS6.7AI score0.1438EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 4 days ago7 views

VulnCheck KEV: CVE-2024-14037

Redsea Cloud eHR contains an arbitrary file upload vulnerability that allows unauthenticated attackers to achieve remote code execution by uploading malicious files through the PtFjk.mob servlet endpoint. Attackers can submit a multipart POST request with a JSP webshell disguised using a spoofed...

9.8CVSS6.5AI score0.00708EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 4 days ago10 views

VulnCheck KEV: CVE-2026-48282

ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interactio...

10CVSS6.7AI score0.01021EPSS
Exploits2References3
VulnCheck KEV
VulnCheck KEV
added 5 days ago10 views

VulnCheck KEV: CVE-2026-57624

Unauthenticated Remote Code Execution RCE in Blocksy Companion Pro = 2.1.46 versions...

10CVSS5.9AI score0.00697EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 5 days ago6 views

VulnCheck KEV: CVE-2026-8451

Insufficient input validation in NetScaler ADC and NetScaler Gateway leading to memory overread if NetScaler ADC or NetScaler Gateway is configured as a SAML IDP...

8.8CVSS6.1AI score0.00502EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 5 days ago5 views

VulnCheck KEV: CVE-2026-8037

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints...

9.6CVSS7.9AI score0.29641EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 5 days ago6 views

VulnCheck KEV: CVE-2026-45659

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.7AI score0.03219EPSS
Exploits3References3
VulnCheck KEV
VulnCheck KEV
added 6 days ago4 views

VulnCheck KEV: CVE-2018-8007

Apache CouchDB administrative users can configure the database server via HTTPS. Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operating system's user th...

9CVSS7.4AI score0.11681EPSS
Exploits3References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/29 12:0 a.m.13 views

VulnCheck KEV: CVE-2026-46817

Vulnerability in the Oracle Payments product of Oracle E-Business Suite component: File Transmission. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Payments. Successful...

9.8CVSS5.8AI score0.00677EPSS
Exploits2References5
VulnCheck KEV
VulnCheck KEV
added 2026/06/29 12:0 a.m.15 views

VulnCheck KEV: CVE-2026-48558

SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity tokens submitted during login are accepted without verifying their cryptographic signature. In a...

10CVSS5.9AI score0.0116EPSS
Exploits1References4
VulnCheck KEV
VulnCheck KEV
added 2026/06/28 12:0 a.m.6 views

VulnCheck KEV: CVE-2026-52806

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Gogs allows authenticated users to achieve Remote Code Execution RCE on the server by creating a pull request with a specially crafted branch name that injects the --exec flag into the git rebase command during the "Rebase before...

9.9CVSS6AI score0.01029EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/27 12:0 a.m.6 views

VulnCheck KEV: CVE-2026-56290

The Joomla extension Page Builder CK is vulnerable to an unauthenticated arbitrary file upload that allows uploading executable files and leads to full RCE...

10CVSS5.8AI score0.00329EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/27 12:0 a.m.16 views

VulnCheck KEV: CVE-2026-8054

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' in the Publish Audit API endpoints /api/auditPublishing/get and /api/auditPublishing/getAll in dotCMS Core 25.11.04-1 through 26.04.28-02 allows remote unauthenticated attackers to read, modify, or destroy arbitrar...

10CVSS6.1AI score0.01584EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/26 12:0 a.m.21 views

VulnCheck KEV: CVE-2026-55255

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference IDOR vulnerability in /api/v1/responses endpoint allows an authenticated attacker to execute any flow belonging to another user by specifying the victim's flow ID in...

9.9CVSS5.8AI score0.00233EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/26 12:0 a.m.13 views

VulnCheck KEV: CVE-2026-52813

Gogs is an open source self-hosted Git service. Prior to 0.14.3, organization names containing path traversal sequences ../ are accepted by Gogs, and repositories under them are written to paths following these path traversals. This allows storing/retrieving data for repositories at arbitrary...

10CVSS7.6AI score0.01107EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/25 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-41700

Barix – CWE-200 Exposure of Sensitive Information to an Unauthorized Actor...

7.5CVSS5.8AI score0.00425EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/25 12:0 a.m.11 views

VulnCheck KEV: CVE-2026-12569

A critical remote code execution RCE vulnerability has been reported in PTC Windchill PDMlink and PTC FlexPLM. The vulnerability may be exploited through the deserialization of untrusted data. This advisory also applies to all CPS versions The identified vulnerability also impacts Windchill and...

9.8CVSS6.5AI score0.01106EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/06/25 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-57700

Unrestricted Upload of File with Dangerous Type vulnerability in Daan.Dev OMGF Pro allows Using Malicious Files. This issue affects OMGF Pro: from n/a through 5.2.6...

10CVSS5.8AI score0.00373EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/25 12:0 a.m.19 views

VulnCheck KEV: CVE-2026-28496

FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 have a Server-Side Template Injection SSTI vulnerability in the template rendering system. Administrators with access to features that render Twig templates email templates, mass mail campaigns, custo...

9.4CVSS6.4AI score0.01892EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/24 12:0 a.m.8 views

VulnCheck KEV: CVE-2021-27076

Microsoft SharePoint Server Remote Code Execution Vulnerability...

8.8CVSS7.6AI score0.14387EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/24 12:0 a.m.7 views

VulnCheck KEV: CVE-2026-0769

Langflow evalcustomcomponentcode Eval Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Langflow. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

9.8CVSS7.8AI score0.33827EPSS
Exploits1References11
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-12352

The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the copypostimage function in all versions up to, and including, 2.9.20. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's serv...

9.8CVSS6.7AI score0.00737EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2026-6433

The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in a SQL query, and the result is passed to eval, allowing unauthenticated users to execute arbitrary PHP code on the server...

7.3CVSS6.3AI score0.00753EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.12 views

VulnCheck KEV: CVE-2026-42589

Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, Gotenberg's /forms/pdfengines/metadata/write HTTP endpoint accepts a JSON metadata object and passes its keys directly to ExifTool via the go-exiftool library. No validation is performed on key characters. A \n embedded i...

9.8CVSS6.1AI score0.0295EPSS
Exploits2References12
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2020-36847

The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 4.2.2 via the rename function which can be used to rename uploaded PHP code with a png extension to use a php extension. This allows unauthenticated attackers to execute code on the...

9.8CVSS6.1AI score0.12633EPSS
Exploits5References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-6648

Absolute Path Traversal vulnerability in AP Page Builder versions prior to 4.0.0 could allow an unauthenticated remote user to modify the 'productitempath' within the 'config' JSON file, allowing them to read any file on the system...

8.7CVSS6AI score0.00555EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.9 views

VulnCheck KEV: CVE-2025-7443

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images, CSS, and JavaScript plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the storejavascriptcache.php file in all versions up to, and including, 2.2.4...

8.1CVSS6.7AI score0.00669EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/23 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-67038

An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write logs when user's authantication fails. The username is directly concatenated with the command without any sanitization. This allow attackers to inject arbitrary OS commands into the...

9.8CVSS6.1AI score0.01094EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2026/06/22 12:0 a.m.6 views

VulnCheck KEV: CVE-2021-30128

Apache OFBiz has unsafe deserialization prior to 17.12.07 version...

10CVSS7.3AI score0.81079EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-28199

The specific function in ASUS BMC’s firmware Web management page Modify user’s information function does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate th...

4.9CVSS6AI score0.0181EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/22 12:0 a.m.13 views

VulnCheck KEV: CVE-2026-20230

A vulnerability in Cisco Unified Communications Manager Unified CM and Cisco Unified Communications Manager Session Management Edition Unified CM SME could allow an unauthenticated, remote attacker to conduct server-side request forgery SSRF attacks through an affected device. This vulnerability ...

8.6CVSS7.6AI score0.41694EPSS
Exploits3References5
VulnCheck KEV
VulnCheck KEV
added 2026/06/21 12:0 a.m.11 views

VulnCheck KEV: CVE-2026-36356

The GoAhead web server on MeiG Smart FORGESLT711 devices firmware MDM9607.LE.1.0-00110-STD.PROD-1 allows unauthenticated OS command injection via the /action/SetRemoteAccessCfg endpoint...

9.1CVSS5.8AI score0.14408EPSS
Exploits3References3
VulnCheck KEV
VulnCheck KEV
added 2026/06/19 12:0 a.m.10 views

VulnCheck KEV: CVE-2026-56011

Unauthenticated Cross Site Scripting XSS in MapPress Maps for WordPress = 2.97.3 versions...

7.1CVSS5.8AI score0.00244EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/19 12:0 a.m.8 views

VulnCheck KEV: CVE-2026-7515

The BetterDocs Pro plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 3.8.0 via the docstyle parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary .php files on the server, allowing the execution of any PHP code ...

9.8CVSS6.5AI score0.00886EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/18 12:0 a.m.9 views

VulnCheck KEV: CVE-2026-8713

The Avada Fusion Builder plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the maybedeletefiles function in all versions up to, and including, 3.15.3. This makes it possible for unauthenticated attackers to delete arbitrary files on the...

9.1CVSS6.6AI score0.01193EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/17 12:0 a.m.14 views

VulnCheck KEV: CVE-2016-5681

Stack-based buffer overflow in dws/api/Login on D-Link DIR-850L B1 2.07 before 2.07WWB05, DIR-817 Ax, DIR-818LW Bx before 2.05b03beta03, DIR-822 C1 3.01 before 3.01WWb02, DIR-823 A1 1.00 before 1.00WWb05, DIR-895L A1 1.11 before 1.11WWb04, DIR-890L A1 1.09 before 1.09b14, DIR-885L A1 1.11 before...

9.8CVSS8AI score0.11927EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/17 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-11837

An improper control of generation of code vulnerability has been reported to affect Malware Remover. The remote attackers can then exploit the vulnerability to bypass protection mechanism. We have already fixed the vulnerability in the following version: Malware Remover 6.6.8.20251023 and later...

9.8CVSS7.3AI score0.01437EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/17 12:0 a.m.9 views

VulnCheck KEV: CVE-2026-27760

OpenCATS prior to commit 3002a29 contains a PHP code injection vulnerability in the installer AJAX endpoint that allows unauthenticated attackers to execute arbitrary code by injecting PHP statements into the databaseConnectivity action parameter. Attackers can break out of the define string...

9.2CVSS6AI score0.22189EPSS
Exploits0References13
VulnCheck KEV
VulnCheck KEV
added 2026/06/16 12:0 a.m.13 views

VulnCheck KEV: CVE-2025-1055

A vulnerability in the K7RKScan.sys driver, part of the K7 Security Anti-Malware suite, allows a local low-privilege user to send crafted IOCTL requests to terminate a wide range of processes running with administrative or system-level privileges, with the exception of those inherently protected ...

5.6CVSS5.3AI score0.00211EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/16 12:0 a.m.16 views

VulnCheck KEV: CVE-2026-10735

Multiple Shapedsmart-post-show-pro WordPress plugin before 4.0.2, Real Testimonials Pro WordPress plugin before 3.2.5, Product Slider for WooCommerce Pro WordPress plugin before 3.5.3 Pro smart-post-show-pro WordPress plugin before 4.0.2, Real Testimonials Pro WordPress plugin before 3.2.5, Produ...

7.5CVSS6.2AI score0.00387EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/16 12:0 a.m.9 views

VulnCheck KEV: CVE-2023-52271

The wsftprm.sys kernel driver 2.0.0.0 in Topaz Antifraud allows low-privileged attackers to kill any Protected Process Light process via an IOCTL which will be named at a later time...

6.5CVSS6.4AI score0.00325EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.37 views

VulnCheck KEV: CVE-2026-20262

A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker to create a file or overwrite any file on the filesystem of an affected system. This vulnerability exists because the affected software does not properly validate...

6.5CVSS5.5AI score0.07683EPSS
Exploits2References4
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.12 views

VulnCheck KEV: CVE-2026-48969

Subscriber Broken Access Control in Really Simple SSL = 9.5.9 versions...

6.5CVSS5.1AI score0.00223EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.11 views

VulnCheck KEV: CVE-2026-20253

In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar service endpoint lacks authentication controls,...

9.8CVSS5.9AI score0.88171EPSS
Exploits5References5
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.11 views

VulnCheck KEV: CVE-2026-25089

A improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox 4.2 all versions, FortiSandbox Cloud 5.0.4 through 5.0.5, FortiSandbox PaaS 5.0.4 through 5.0.5 may...

9.8CVSS6.1AI score0.23393EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.19 views

VulnCheck KEV: CVE-2026-53435

In Jenkins 2.567 and earlier, LTS 2.555.2 and earlier, it is possible for attackers to have Jenkins deserialize arbitrary types defined in Jenkins core or plugins from an attacker-controlled config.xml submission in a way that allows them to handle HTTP requests afterwards. This can be used to...

8.8CVSS5.5AI score0.14907EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/15 12:0 a.m.13 views

VulnCheck KEV: CVE-2026-39813

A path traversal: '../filedir' vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.5, FortiSandbox 4.4.0 through 4.4.8 may allow attacker to escalation of privilege via specially crafted HTTP requests...

9.8CVSS5.8AI score0.16739EPSS
Exploits2References4
Total number of security vulnerabilities4985