Lucene search
K
Vulncheck KevRecent

4985 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/01/23 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-37079

vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution...

9.8CVSS6.1AI score0.22377EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2026/01/23 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-11963

IQrouter through 3.3.1, when unconfigured, has multiple remote code execution vulnerabilities in the web-panel because of Bash Shell Metacharacter Injection. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configurati...

9.8CVSS6.5AI score0.03146EPSS
Exploits3References5
VulnCheck KEV
VulnCheck KEV
added 2026/01/23 12:0 a.m.12 views

VulnCheck KEV: CVE-2025-34291

Langflow versions up to and including 1.6.9 contain a chained vulnerability that enables account takeover and remote code execution. An overly permissive CORS configuration alloworigins='' with allowcredentials=True combined with a refresh token cookie configured as SameSite=None allows a malicio...

9.4CVSS6.4AI score0.7889EPSS
Exploits3References3
VulnCheck KEV
VulnCheck KEV
added 2026/01/23 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-5571

A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. Affected is the function setSystemAdmin of the file /setSystemAdmin. The manipulation of the argument AdminID leads to os command injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS5.6AI score0.08169EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/23 12:0 a.m.9 views

VulnCheck KEV: CVE-2024-2473

The WPS Hide Login plugin for WordPress is vulnerable to Login Page Disclosure in all versions up to, and including, 1.9.15.2. This is due to a bypass that is created when the 'action=postpass' parameter is supplied. This makes it possible for attackers to easily discover any login page that may...

5.3CVSS5.8AI score0.01235EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-52691

Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution...

10CVSS6.2AI score0.85457EPSS
Exploits15References53
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2022-31208

An issue was discovered in Infiray IRAY-A8Z3 1.0.957. The webserver contains an endpoint that can execute arbitrary commands by manipulating the cmdstring URL parameter...

9CVSS6AI score0.01316EPSS
Exploits1References8
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-7407

A vulnerability, which was classified as critical, was found in Netgear D6400 1.0.0.114. This affects an unknown part of the file diag.cgi. The manipulation of the argument hostname leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to th...

8.8CVSS5.5AI score0.083EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-12213

The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to 2.3.16. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers to register as an administrator on vulnerable...

9.8CVSS5.8AI score0.00613EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.14 views

VulnCheck KEV: CVE-2025-8829

A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 up to 20250801. Affected by this vulnerability is the function umred of the file /goform/RPsetBasicAuto. The manipulation of the argument hname leads to os command injection. The attack can be launched...

8.8CVSS5.4AI score0.08257EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.20 views

VulnCheck KEV: CVE-2025-6485

A vulnerability was found in TOTOLINK A3002R 1.1.1-B20200824.0128. It has been classified as critical. This affects the function formWlSiteSurvey of the file /boafrm/formWlSiteSurvey. The manipulation of the argument wlanif leads to os command injection. It is possible to initiate the attack...

6.5CVSS5.6AI score0.05956EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-23760

SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. An...

9.8CVSS6AI score0.96268EPSS
Exploits3References92
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.8 views

VulnCheck KEV: CVE-2023-7335

EduSoho versions prior to 22.4.7 contain an arbitrary file read vulnerability in the classroom-course-statistics export functionality. A remote, unauthenticated attacker can supply crafted path traversal sequences in the fileNames parameter to read arbitrary files from the server filesystem,...

8.7CVSS5.9AI score0.00738EPSS
Exploits0References48
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-7544

A vulnerability was found in Tenda AC1206 15.03.06.23. It has been rated as critical. This issue affects the function formSetMacFilterCfg of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. The attack may be initiated remotely. Th...

9CVSS6.3AI score0.01577EPSS
Exploits1References9
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-24061

telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment variable...

9.8CVSS5.8AI score0.98871EPSS
Exploits61References87
VulnCheck KEV
VulnCheck KEV
added 2026/01/21 12:0 a.m.20 views

VulnCheck KEV: CVE-2021-27670

Appspace 6.2.4 allows SSRF via the api/v1/core/proxy/jsonprequest url parameter...

9.8CVSS5.8AI score0.61274EPSS
Exploits1References57
VulnCheck KEV
VulnCheck KEV
added 2026/01/21 12:0 a.m.6 views

VulnCheck KEV: CVE-2026-0920

The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Administrative User Creation in all versions up to, and including, 1.5.6.3. This is due to the 'ajaxregisterhandle' function not restricting what user roles a user can register with. This makes it possible for...

9.8CVSS5.8AI score0.01078EPSS
Exploits5References4
VulnCheck KEV
VulnCheck KEV
added 2026/01/21 12:0 a.m.14 views

VulnCheck KEV: CVE-2025-51683

A blind SQL Injection SQLi vulnerability in mJobtime v15.7.2 allows unauthenticated attackers to execute arbitrary SQL statements via a crafted POST request to the /Default.aspx/updateprofileServer endpoint...

9.8CVSS6.2AI score0.00381EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/21 12:0 a.m.9 views

VulnCheck KEV: CVE-2025-15521

The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.5.0. This is due to the plugin not properly validating a user's identity prior to updating their password...

9.8CVSS5.9AI score0.00354EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/21 12:0 a.m.7 views

VulnCheck KEV: CVE-2026-20045

A vulnerability in Cisco Unified Communications Manager Unified CM, Cisco Unified Communications Manager Session Management Edition Unified CM SME, Cisco Unified Communications Manager IM & Presence Service Unified CM IM&P, Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance could...

9.8CVSS6.2AI score0.04307EPSS
Exploits1References5
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-0683

In its default configuration, Contec Health CMS8000 Patient Monitor transmits plain-text patient data to a hard-coded public IP address when a patient is hooked up to the monitor. This could lead to a leakage of confidential patient data to any device with that IP address or an attacker in a...

8.2CVSS5.8AI score0.00763EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-7417

A vulnerability has been found in Tenda O3V2 1.0.0.123880 and classified as critical. Affected by this vulnerability is the function fromNetToolGet of the file /goform/setPingInfo of the component httpd. The manipulation of the argument ip leads to stack-based buffer overflow. The attack can be...

9CVSS6.3AI score0.00767EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.9 views

VulnCheck KEV: CVE-2025-11001

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this product is required to exploit this vulnerability but attack vectors may vary depending on...

7.8CVSS7.6AI score0.27017EPSS
Exploits11References3
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.9 views

VulnCheck KEV: CVE-2025-26399

SolarWinds Web Help Desk was found to be susceptible to an unauthenticated AjaxProxy deserialization remote code execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. This vulnerability is a patch bypass of CVE-2024-28988, which in turn is a patc...

9.8CVSS6.4AI score0.8833EPSS
Exploits1References4
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-20282

A vulnerability in an internal API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device and then execute those files on the underlying operating system as root. This vulnerability is due a lack of file validation checks tha...

10CVSS6.2AI score0.09805EPSS
Exploits3References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-0626

The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function also enables the network interface of the device if it is disabled. The function is triggered by attempting to...

7.7CVSS5.8AI score0.01116EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.2 views

VulnCheck KEV: CVE-2024-12248

Contec Health CMS8000 Patient Monitor is vulnerable to an out-of-bounds write, which could allow an attacker to send specially formatted UDP requests in order to write arbitrary data. This could result in remote code execution...

9.8CVSS6.2AI score0.01276EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.15 views

VulnCheck KEV: CVE-2024-6782

Improper access control in Calibre 6.9.0 7.14.0 allow unauthenticated attackers to achieve remote code execution...

9.8CVSS6.1AI score0.83393EPSS
Exploits8References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.19 views

VulnCheck KEV: CVE-2024-57040

TL-WR845NUNV4200909 and TL-WR845NUNV4190219 was discovered to contain a hardcoded password for the root account which can be obtained by analyzing downloaded firmware or via a brute force attack through physical access to the router...

9.8CVSS5.8AI score0.01116EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-0890

UNSUPPORTED WHEN ASSIGNED Insecure default credentials for the Telnet function in the legacy DSL CPE Zyxel VMG4325-B10A firmware version 1.00AAFR.4C020170615 could allow an attacker to log in to the management interface if the administrators have the option to change the default credentials but...

9.8CVSS5.8AI score0.12892EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/20 12:0 a.m.26 views

VulnCheck KEV: CVE-2025-2857

Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was...

10CVSS5.8AI score0.08404EPSS
Exploits6References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/18 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-69200

phpMyFAQ is an open source FAQ web application. In versions prior to 4.0.16, an unauthenticated remote attacker can trigger generation of a configuration backup ZIP via POST /api/setup/backup and then download the generated ZIP from a web-accessible location. The ZIP contains sensitive...

7.5CVSS5.8AI score0.02005EPSS
Exploits1References30
VulnCheck KEV
VulnCheck KEV
added 2026/01/18 12:0 a.m.8 views

VulnCheck KEV: CVE-2024-4443

The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘listingfields’ parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient...

9.8CVSS5.9AI score0.10272EPSS
Exploits1References62
VulnCheck KEV
VulnCheck KEV
added 2026/01/16 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-23800

Incorrect Privilege Assignment vulnerability in Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from 2.5.2 before 2.6.0...

10CVSS5.8AI score0.00469EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2026/01/16 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-52665

A malicious actor with access to the management network could exploit a misconfiguration in UniFi’s door access application, UniFi Access, that exposed a management API without proper authentication. This vulnerability was introduced in Version 3.3.22 and was fixed in Version 4.0.21 and later. ...

10CVSS5.8AI score0.40972EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/15 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-7334

Changjetong T+ versions up to and including 16.x contain a .NET deserialization vulnerability in an AjaxPro endpoint that can lead to remote code execution. A remote attacker can send a crafted request to /tplus/ajaxpro/Ufida.T.CodeBehind.PriorityLevel,AppCode.ashx?method=GetStoreWarehouseByStore...

9.8CVSS6.4AI score0.00988EPSS
Exploits1References81
VulnCheck KEV
VulnCheck KEV
added 2026/01/15 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-64155

An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSIEM 7.4.0, FortiSIEM 7.3.0 through 7.3.4, FortiSIEM 7.1.0 through 7.1.8, FortiSIEM 7.0.0 through 7.0.4, FortiSIEM 6.7.0 through 6.7.10 may allow an attacker to execute...

9.8CVSS6AI score0.42649EPSS
Exploits4References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.27 views

VulnCheck KEV: CVE-2017-17762

XML external entity XXE vulnerability in Episerver 7 patch 4 and earlier allows remote attackers to read arbitrary files via a crafted DTD in an XML request involving util/xmlrpc/Handler.ashx...

7.5CVSS5.9AI score0.04648EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.27 views

VulnCheck KEV: CVE-2025-63387

Dify v1.9.1 is vulnerable to Insecure Permissions. An unauthenticated attacker can directly send HTTP GET requests to the /console/api/system-features endpoint without any authentication credentials or session tokens. The endpoint fails to implement proper authorization checks, allowing anonymous...

7.5CVSS5.8AI score0.28042EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.23 views

VulnCheck KEV: CVE-2025-55749

XWiki is an open-source wiki software platform. From 16.7.0 to 16.10.11, 17.4.4, or 17.7.0, in an instance which is using the XWiki Jetty package XJetty, a context is exposed to statically access any file located in the webapp/ folder. It allows accessing files which might contains credentials...

8.7CVSS5.8AI score0.01378EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-26836

SAP Solution Manager Trace Analysis, version - 720, allows for misuse of a parameter in the application URL leading to Open Redirect vulnerability, an attacker can enter a link to malicious site which could trick the user to enter credentials or download malicious software, as a parameter in the...

6.1CVSS5.6AI score0.02338EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.30 views

VulnCheck KEV: CVE-2021-25281

An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheelasync client. Thus, an attacker can remotely run any wheel modules on the master...

9.8CVSS5.8AI score0.72945EPSS
Exploits5References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-68645

A Local File Inclusion LFI vulnerability exists in the Webmail Classic UI of Zimbra Collaboration ZCS 10.0 and 10.1 because of improper handling of user-supplied request parameters in the RestFilter servlet. An unauthenticated remote attacker can craft requests to the /h/rest endpoint to influenc...

8.8CVSS5.9AI score0.31769EPSS
Exploits5References43
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-2863

This vulnerability allows remote attackers to traverse paths via file upload on the affected LG LED Assistant...

9.8CVSS5.8AI score0.66969EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/14 12:0 a.m.18 views

VulnCheck KEV: CVE-2026-23550

Incorrect Privilege Assignment vulnerability in Modular DS Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from n/a through = 2.5.1...

10CVSS5.8AI score0.20631EPSS
Exploits8References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/13 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-20805

Exposure of sensitive information to an unauthorized actor in Desktop Windows Manager allows an authorized attacker to disclose information locally...

5.5CVSS5.6AI score0.05028EPSS
Exploits5References6
VulnCheck KEV
VulnCheck KEV
added 2026/01/09 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-14436

The Brevo for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘userconnectionid’ parameter in all versions up to, and including, 4.0.49 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

7.2CVSS5.9AI score0.00255EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2026/01/09 12:0 a.m.5 views

VulnCheck KEV: CVE-2026-21858

n8n is an open source workflow automation platform. Versions starting with 1.65.0 and below 1.121.0 enable an attacker to access files on the underlying server through execution of certain form-based workflows. A vulnerable workflow could grant access to an unauthenticated remote attacker,...

10CVSS6AI score0.97875EPSS
Exploits40References109
VulnCheck KEV
VulnCheck KEV
added 2026/01/08 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-8883

A misconfiguration flaw was found in Keycloak. This issue can allow an attacker to redirect users to an arbitrary URL if a 'Valid Redirect URI' is set to http://localhost or http://127.0.0.1, enabling sensitive information such as authorization codes to be exposed to the attacker, potentially...

6.1CVSS5.8AI score0.01959EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2026/01/07 12:0 a.m.6 views

VulnCheck KEV: CVE-2017-20216

FLIR Thermal Camera PT-Series firmware version 8.0.0.64 contains multiple unauthenticated remote command injection vulnerabilities in the controllerFlirSystem.php script. Attackers can execute arbitrary system commands as root by exploiting unsanitized POST parameters in the execFlirSystem functi...

9.8CVSS6.1AI score0.1064EPSS
Exploits1References2
Total number of security vulnerabilities4985