Lucene search
K
Vulncheck KevRecent

4985 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/10/13 12:0 a.m.21 views

VulnCheck KEV: CVE-2013-2134

Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vulnerability than CVE-2013-2135...

9.3CVSS7.6AI score0.70211EPSS
Exploits1References184
VulnCheck KEV
VulnCheck KEV
added 2025/10/13 12:0 a.m.14 views

VulnCheck KEV: CVE-2024-9643

The Four-Faith F3x36 router using firmware v2.0.0 is vulnerable to authentication bypass due to hard-coded credentials in the administrative web server. An attacker with knowledge of the credentials can gain administrative access via crafted HTTP requests. This issue appears similar to...

9.8CVSS5.8AI score0.53533EPSS
Exploits0References183
VulnCheck KEV
VulnCheck KEV
added 2025/10/13 12:0 a.m.14 views

VulnCheck KEV: CVE-2023-27163

request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery SSRF via the component /api/baskets/name. This vulnerability allows attackers to access network resources and sensitive information via a crafted API request...

6.5CVSS5.7AI score0.07497EPSS
Exploits29References40
VulnCheck KEV
VulnCheck KEV
added 2025/10/12 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-2539

The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...

7.5CVSS5.9AI score0.0155EPSS
Exploits6References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/12 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-2611

The ICTBroadcast application unsafely passes session cookie data to shell processing, allowing an attacker to inject shell commands into a session cookie that get executed on the server. This results in unauthenticated remote code execution in the session handling. Versions 7.4 and below are know...

9.3CVSS6.4AI score0.0604EPSS
Exploits3References187
VulnCheck KEV
VulnCheck KEV
added 2025/10/11 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-11533

The WP Freeio plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.21. This is due to the processregister function not restricting what user roles a user can register with. This makes it possible for unauthenticated attackers to supply the...

9.8CVSS5.8AI score0.00577EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-11371

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an unauthenticated Local File Inclusion Flaw that allows unintended disclosure of system files. Exploitation of this vulnerability has been observed in the wild. This issue impacts Gladinet CentreStack and...

7.5CVSS5.7AI score0.92094EPSS
Exploits4References143
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-26828

OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via viewedit.shtm...

8.8CVSS6AI score0.39096EPSS
Exploits8References6
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.18 views

VulnCheck KEV: CVE-2025-37899

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in session logoff The sess-user object can currently be in use by another thread, for example if another connection has sent a session setup request to bind to the session being free'd. The handler for...

7.8CVSS5.7AI score0.00384EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-36604

Dell Unity, versions 5.5 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to arbitrary command execution...

9.8CVSS5.9AI score0.61125EPSS
Exploits1References81
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.15 views

VulnCheck KEV: CVE-2025-1829

A vulnerability was found in TOTOLINK X18 9.1.0cu.2024B20220329. It has been declared as critical. This vulnerability affects the function setMtknatCfg of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument mtkhnatEnable leads to os command injection. The attack can be initiated...

8.8CVSS5.5AI score0.11681EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-26829

OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via systemsettings.shtm...

5.4CVSS5.8AI score0.4805EPSS
Exploits1References7
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.9 views

VulnCheck KEV: CVE-2020-27867

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Although authentication is required to exploit...

7.7CVSS6.1AI score0.02344EPSS
Exploits0References112
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.116 views

VulnCheck KEV: CVE-2024-1781

A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.85220230719. It has been rated as critical. This issue affects the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component shttpd. The manipulation leads to command injection. The exploit has been disclosed to the public...

9.8CVSS5.4AI score0.14692EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.248 views

VulnCheck KEV: CVE-2025-22905

RE11S v1.11 was discovered to contain a command injection vulnerability via the command parameter at /goform/mp...

9.8CVSS5.8AI score0.04456EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.28 views

VulnCheck KEV: CVE-2025-5504

A vulnerability has been found in TOTOLINK X2000R 1.0.0-B20230726.1108 and classified as critical. This vulnerability affects unknown code of the file /boafrm/formWsc. The manipulation of the argument peerRptPin leads to command injection. The attack can be initiated remotely. The exploit has bee...

6.5CVSS5.5AI score0.15041EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.18 views

VulnCheck KEV: CVE-2025-33073

Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.2AI score0.64987EPSS
Exploits6References6
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.5 views

VulnCheck KEV: CVE-2017-18369

The Billion 5200W-T 1.02b.rc5.dt49 router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user. The vulnerability is in the advremotelog.asp page and can be exploited through the syslogServerAd...

10CVSS5.8AI score0.67644EPSS
Exploits2References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.14 views

VulnCheck KEV: CVE-2022-37129

D-Link DIR-816 A2v1.10CNB04.img is vulnerable to Command Injection via /goform/SystemCommand. After the user passes in the command parameter, it will be spliced into byte4836B0 by snprintf, and finally doSystem&byte4836B0; will be executed, resulting in a command injection...

8.8CVSS5.8AI score0.08293EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-10957

CSRF exists on D-Link DIR-868L devices, leading to for example a change to the Admin password. hedwig.cgi and pigwidgeon.cgi are two of the affected components...

8.8CVSS5.8AI score0.00883EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.15 views

VulnCheck KEV: CVE-2014-1635

Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103WW1.10.17m allows remote attackers to execute arbitrary code via a long string in the jump parameter...

10CVSS6.2AI score0.67487EPSS
Exploits8References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.12 views

VulnCheck KEV: CVE-2025-6019

A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the "allowactive" setting in Polkit permits a physically present user to take certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, an "allowactive" user on a syst...

7CVSS5.9AI score0.00423EPSS
Exploits18References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/09 12:0 a.m.22 views

VulnCheck KEV: CVE-2018-11714

An issue was discovered on TP-Link TL-WR840N v5 00000005 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n and TL-WR841N v13 00000013 0.9.1 4.16 v0001.0 Build 170622 Rel.64334n devices. This issue is caused by improper session handling on the /cgi/ folder or a /cgi file. If an attacker sends a header of...

10CVSS5.8AI score0.36516EPSS
Exploits1References58
VulnCheck KEV
VulnCheck KEV
added 2025/10/08 12:0 a.m.12 views

VulnCheck KEV: CVE-2023-20598

An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution...

7.8CVSS6AI score0.0046EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/08 12:0 a.m.14 views

VulnCheck KEV: CVE-2016-10960

The wsecure plugin before 2.4 for WordPress has remote code execution via shell metacharacters in the wsecure-config.php publish parameter...

8.8CVSS6.4AI score0.08976EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/07 12:0 a.m.9 views

VulnCheck KEV: CVE-2025-53772

Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network...

8.8CVSS5.9AI score0.22323EPSS
Exploits3References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/07 12:0 a.m.10 views

VulnCheck KEV: CVE-2025-5947

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via authentication bypass in all versions up to, and including, 6.0. This is due to the plugin not properly validating a user's cookie value prior to logging them in through the servicefinderswitchback function...

9.8CVSS5.8AI score0.04469EPSS
Exploits2References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/07 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-55161

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, when using the /api/v1/convert/markdown/pdf endpoint to convert Markdown to PDF, the backend calls a third-party tool to process it and includes a sanitizer for security...

9.8CVSS5.7AI score0.01865EPSS
Exploits1References40
VulnCheck KEV
VulnCheck KEV
added 2025/10/06 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-64446

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9, FortiWeb 7.2.0 through 7.2.11, FortiWeb 7.0.0 through 7.0.11 may allow an attacker to execute administrative commands on the system via crafted HTTP or HTT...

9.8CVSS5.9AI score0.89177EPSS
Exploits17References220
VulnCheck KEV
VulnCheck KEV
added 2025/10/06 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-20363

A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance ASA Software, Cisco Secure Firewall Threat Defense FTD Software, Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, remote attacker Cisco ASA and FTD Software...

9CVSS6.3AI score0.0752EPSS
Exploits0References7
VulnCheck KEV
VulnCheck KEV
added 2025/10/04 12:0 a.m.14 views

VulnCheck KEV: CVE-2025-61882

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite component: BI Publisher Integration. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

9.8CVSS5.8AI score0.99722EPSS
Exploits15References146
VulnCheck KEV
VulnCheck KEV
added 2025/10/03 12:0 a.m.15 views

VulnCheck KEV: CVE-2025-3605

The Frontend Login and Registration Blocks plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.1.1. This is due to the plugin not properly validating a user's identity prior to updating their details like email via the...

9.8CVSS5.9AI score0.06441EPSS
Exploits4References2
VulnCheck KEV
VulnCheck KEV
added 2025/10/02 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-6388

The Spirit Framework plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.2.14. This is due to the customactions function not properly validating a user's identity prior to authenticating them to the site. This makes it possible for unauthenticated...

9.8CVSS5.8AI score0.00527EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2025/10/02 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-4008

The Meteobridge web interface let meteobridge administrator manage their weather station data collection and administer their meteobridge system through a web application written in CGI shell scripts and C. This web interface exposes an endpoint that is vulnerable to command injection. Remote...

8.8CVSS6.1AI score0.94991EPSS
Exploits3References9
VulnCheck KEV
VulnCheck KEV
added 2025/10/02 12:0 a.m.10 views

VulnCheck KEV: CVE-2023-27008

A Cross-site scripting XSS vulnerability in the function encryptpassword in login.tmpl.php in ATutor 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the token parameter...

6.1CVSS5.9AI score0.01499EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/30 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-27915

An issue was discovered in Zimbra Collaboration ZCS 9.0 and 10.0 and 10.1. A stored cross-site scripting XSS vulnerability exists in the Classic Web Client due to insufficient sanitization of HTML content in ICS files. When a user views an e-mail message containing a malicious ICS entry, its...

5.4CVSS5.9AI score0.04241EPSS
Exploits1References6
VulnCheck KEV
VulnCheck KEV
added 2025/09/30 12:0 a.m.13 views

VulnCheck KEV: CVE-2024-56064

Unrestricted Upload of File with Dangerous Type vulnerability in azzaroco WP SuperBackup indeed-wp-superbackup allows Upload a Web Shell to a Web Server.This issue affects WP SuperBackup: from n/a through = 2.3.3...

10CVSS5.8AI score0.14488EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/29 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-41244

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate...

7.8CVSS7.3AI score0.0788EPSS
Exploits3References6
VulnCheck KEV
VulnCheck KEV
added 2025/09/29 12:0 a.m.10 views

VulnCheck KEV: CVE-2025-32463

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...

9.3CVSS5.8AI score0.47467EPSS
Exploits70References5
VulnCheck KEV
VulnCheck KEV
added 2025/09/26 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-29030

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /api/resource that allows authenticated users to enumerate the internal network. Version 0.22.0 of memos removes the vulnerable file...

5.8CVSS5.8AI score0.01135EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/26 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-29028

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/httpmeta that allows unauthenticated users to enumerate the internal network and receive limited html values in json form. This vulnerability is fixed in 0.16.1...

5.8CVSS5.8AI score0.01049EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/26 12:0 a.m.11 views

VulnCheck KEV: CVE-2024-7344

Howyar UEFI Application "Reloader" 32-bit and 64-bit is vulnerable to execution of unsigned software in a hardcoded path...

8.2CVSS6AI score0.01036EPSS
Exploits1References7
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-20362

Update: On November 5, 2025, Cisco became aware of a new attack variant against devices running Cisco Secure ASA Software or Cisco Secure FTD Software releases that are affected by CVE-2025-20333 and CVE-2025-20362. This attack can cause unpatched devices to unexpectedly reload, leading to denial...

9.9CVSS5.8AI score0.85543EPSS
Exploits1References201
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-10035

A deserialization vulnerability in the License Servlet of Fortra's GoAnywhere MFT allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection...

10CVSS5.9AI score0.99614EPSS
Exploits2References23
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.8 views

VulnCheck KEV: CVE-2022-37932

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. The vulnerability could be remotely exploited to allow authentication bypass. HPE has made the following software updates to resolve the vulnerability in...

9.8CVSS5.8AI score0.02641EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-21650

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. XWiki is vulnerable to a remote code execution RCE attack through its user registration feature. This issue allows an attacker to execute arbitrary code by crafting malicious payloads in the...

10CVSS6.7AI score0.9348EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.9 views

VulnCheck KEV: CVE-2024-29029

memos is a privacy-first, lightweight note-taking service. In memos 0.13.2, an SSRF vulnerability exists at the /o/get/image that allows unauthenticated users to enumerate the internal network and retrieve images. The response from the image request is then copied into the response of the current...

6.1CVSS5.8AI score0.0108EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-33326

A cross-site scripting XSS vulnerability in the component XsltResultControllerHtml.jsp of Lumisxp v15.0.x to v16.1.x allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the lumPageID parameter...

6.1CVSS5.9AI score0.0081EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/09/25 12:0 a.m.2 views

VulnCheck KEV: CVE-2025-20333

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an authenticated, remote attacker to execute arbitrary code on an affected device. This vulnerability is due to improper...

9.9CVSS6.2AI score0.40391EPSS
Exploits1References21
VulnCheck KEV
VulnCheck KEV
added 2025/09/24 12:0 a.m.7 views

VulnCheck KEV: CVE-2025-20352

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges could cause a denial of service DoS condition on an affected device that is running Cisco IOS...

7.7CVSS6.3AI score0.37613EPSS
Exploits1References8
Total number of security vulnerabilities4985