Lucene search
K
Vulncheck KevRecent

4985 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/08/23 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-57788

A vulnerability in a known login mechanism allows unauthenticated attackers to execute API calls without requiring user credentials. RBAC helps limit the exposure but does not eliminate risk...

6.9CVSS5.9AI score0.02721EPSS
Exploits4References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2020-14993

A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi...

9.8CVSS6.6AI score0.05328EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-45890

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to downloadovpn...

8CVSS5.8AI score0.02081EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.52 views

VulnCheck KEV: CVE-2024-48074

An authorized RCE vulnerability exists in the DrayTek Vigor2960 router version 1.4.4, where an attacker can place a malicious command into the table parameter of the doPPPoE function in the cgi-bin/mainfunction.cgi route, and finally the command is executed by the system function...

8CVSS5.8AI score0.00653EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.8 views

VulnCheck KEV: CVE-2024-45891

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to deletewlanprofile...

8CVSS5.8AI score0.01291EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.19 views

VulnCheck KEV: CVE-2025-5821

The Case Theme User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.3. This is due to the plugin not properly logging in a user with the data that was previously verified through the facebookajaxlogincallback function. This makes it possible f...

9.8CVSS5.7AI score0.00714EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-45888

DrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setapmapconfig.'...

8CVSS5.8AI score0.01977EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2024-45887

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to doOpenVPN...

8CVSS5.8AI score0.02081EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-45885

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to autodiscoveryclear...

8CVSS5.8AI score0.01291EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2024-45884

DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the action parameter in cgi-bin/mainfunction.cgi is set to setSWMGroup...

8CVSS5.8AI score0.02081EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/21 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-5815

The News & Blog Designer Pack – WordPress Blog Plugin — Blog Post Grid, Blog Post Slider, Blog Post Carousel, Blog Post Ticker, Blog Post Masonry plugin for WordPress is vulnerable to Remote Code Execution via Local File Inclusion in all versions up to, and including, 3.4.1 via the bdpgetmorepost...

9.8CVSS6.2AI score0.04262EPSS
Exploits0References98
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.9 views

VulnCheck KEV: CVE-2010-20103

A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when invoked, causes the server to execute arbitrary shell commands with root privileges. This allows...

9.8CVSS6.1AI score0.04753EPSS
Exploits1References3
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.23 views

VulnCheck KEV: CVE-2023-46229

LangChain before 0.0.317 allows SSRF via documentloaders/recursiveurlloader.py because crawling can proceed from an external server to an internal server...

8.8CVSS5.8AI score0.44711EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.8 views

VulnCheck KEV: CVE-2020-1048

An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly allows arbitrary writing to the file system, aka 'Windows Print Spooler Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1070...

7.8CVSS7.2AI score0.16502EPSS
Exploits10References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2022-35803

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.23818EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-43300

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.8.5 and iPadOS 15.8.5, iOS 16.7.12 and iPadOS 16.7.12, iOS 18.6.2 and iPadOS 18.6.2, iPadOS 17.7.10, macOS Sequoia 15.6.1, macOS Sonoma 14.7.8, macOS Ventura 13.7.8. Processing a malicious imag...

10CVSS5.8AI score0.19972EPSS
Exploits9References21
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-55177

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2.25.21.73, WhatsApp Business for iOS v2.25.21.78, and WhatsApp for Mac v2.25.21.78 could have allowed an unrelated user to trigger processing of content from an arbitrary URL on a target’s device. We...

10CVSS5.9AI score0.19972EPSS
Exploits9References9
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2022-24481

Windows Common Log File System Driver Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.17108EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2024-9193

The WHMpress - WHMCS WordPress Integration Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 6.3-revision-0 via the whmpressdomainsearchajaxextendedresults function. This makes it possible for unauthenticated attackers to include and execute...

9.8CVSS6.4AI score0.03111EPSS
Exploits0References114
VulnCheck KEV
VulnCheck KEV
added 2025/08/20 12:0 a.m.40 views

VulnCheck KEV: CVE-2023-44467

langchainexperimental aka LangChain Experimental in LangChain before 0.0.306 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via import in Python code, which is not prohibited by palchain/base.py...

9.8CVSS6.1AI score0.01074EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/19 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-13101

An issue was discovered on D-Link DIR-600M 3.02, 3.03, 3.04, and 3.06 devices. wan.htm can be accessed directly without authentication, which can lead to disclosure of information about the WAN, and can also be leveraged by an attacker to modify the data fields of the page...

9.8CVSS5.8AI score0.67091EPSS
Exploits2References181
VulnCheck KEV
VulnCheck KEV
added 2025/08/19 12:0 a.m.6 views

VulnCheck KEV: CVE-2021-3297

On Zyxel NBG2105 V1.00AAGU.2C0 devices, setting the login cookie to 1 provides administrator access...

7.8CVSS5.8AI score0.20514EPSS
Exploits1References123
VulnCheck KEV
VulnCheck KEV
added 2025/08/19 12:0 a.m.6 views

VulnCheck KEV: CVE-2018-7282

The username parameter of the TITool PrintMonitor solution during the login request is vulnerable to and/or time-based blind SQLi...

9.8CVSS5.8AI score0.10095EPSS
Exploits1References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/19 12:0 a.m.7 views

VulnCheck KEV: CVE-2023-26258

Arcserve UDP through 9.0.6034 allows authentication bypass. The method getVersionInfo at WebServiceImpl/services/FlashServiceImpl leaks the AuthUUID token. This token can be used at /WebServiceImpl/services/VirtualStandbyServiceImpl to obtain a valid session. This session can be used to execute a...

9.8CVSS5.9AI score0.37715EPSS
Exploits2References131
VulnCheck KEV
VulnCheck KEV
added 2025/08/18 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-40875

Improper Access Control in Gurock TestRail versions 7.2.0.3014 resulted in sensitive information exposure. A threat actor can access the /files.md5 file on the client side of a Gurock TestRail application, disclosing a full list of application files and the corresponding file paths. The...

7.5CVSS5.8AI score0.48417EPSS
Exploits4References98
VulnCheck KEV
VulnCheck KEV
added 2025/08/18 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-54782

Nest is a framework for building scalable Node.js server-side applications. In versions 0.2.0 and below, a critical Remote Code Execution RCE vulnerability was discovered in the @nestjs/devtools-integration package. When enabled, the package exposes a local development HTTP server with an API...

9.4CVSS6.3AI score0.43921EPSS
Exploits4References125
VulnCheck KEV
VulnCheck KEV
added 2025/08/17 12:0 a.m.8 views

VulnCheck KEV: CVE-2023-0159

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated attacker to override the template path to read arbitrary files from the hosts file system. This may ...

7.5CVSS5.8AI score0.55736EPSS
Exploits3References86
VulnCheck KEV
VulnCheck KEV
added 2025/08/17 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-38433

Fujitsu Real-time Video Transmission Gear "IP series" use hard-coded credentials, which may allow a remote unauthenticated attacker to initialize or reboot the products, and as a result, terminate the video transmission. Affected products and versions are as follows: IP-HE950E firmware versions...

7.5CVSS5.8AI score0.0299EPSS
Exploits0References98
VulnCheck KEV
VulnCheck KEV
added 2025/08/17 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-34105

SRS is a real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181. Prior to versions 5.0.157, 5.0-b1, and 6.0.48, SRS's api-server server is vulnerable to a drive-by command injection. An attacker may send a request to the /api/v1/snapshots endpoint containing an...

7.5CVSS6AI score0.0876EPSS
Exploits1References102
VulnCheck KEV
VulnCheck KEV
added 2025/08/16 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-45038

An improper authentication vulnerability has been reported to affect Music Station. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following version: Music Station 5.4.0 and later...

8.8CVSS5.8AI score0.01173EPSS
Exploits0References55
VulnCheck KEV
VulnCheck KEV
added 2025/08/15 12:0 a.m.28 views

VulnCheck KEV: CVE-2025-7441

The StoryChief plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 1.0.42. This vulnerability occurs through the /wp-json/storychief/webhook REST-API endpoint that does not have sufficient filetype validation. This makes it possible for unauthenticat...

9.8CVSS6.5AI score0.37349EPSS
Exploits8References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/15 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-48703

CWP aka Control Web Panel or CentOS Web Panel before 0.9.8.1205 allows unauthenticated remote code execution via shell metacharacters in the ttotal parameter in a filemanager changePerm request. A valid non-root username must be known...

9CVSS6.4AI score0.99589EPSS
Exploits3References8
VulnCheck KEV
VulnCheck KEV
added 2025/08/14 12:0 a.m.8 views

VulnCheck KEV: CVE-2020-7136

A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...

10CVSS5.8AI score0.79522EPSS
Exploits0References162
VulnCheck KEV
VulnCheck KEV
added 2025/08/14 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-54701

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in ThemeMove Unicamp unicamp allows PHP Local File Inclusion.This issue affects Unicamp: from n/a through = 2.6.3...

9.8CVSS5.8AI score0.00364EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/13 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-8875

Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central: before 2025.3.1...

9.4CVSS5.8AI score0.03171EPSS
Exploits1References8
VulnCheck KEV
VulnCheck KEV
added 2025/08/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-6715

The LatePoint WordPress plugin before 5.1.94 is vulnerable to Local File Inclusion via the layout parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

9.8CVSS6.1AI score0.0053EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/13 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-8876

Improper Input Validation vulnerability in N-able N-central allows OS Command Injection.This issue affects N-central: before 2025.3.1...

9.4CVSS5.8AI score0.03171EPSS
Exploits1References8
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-39265

Apache Superset would allow for SQLite database connections to be incorrectly registered when an attacker uses alternative driver names like sqlite+pysqlite or by using database imports. This could allow for unexpected file creation on Superset webservers. Additionally, if Apache Superset is usin...

6.5CVSS5.7AI score0.83716EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.11 views

VulnCheck KEV: CVE-2023-37941

If an attacker gains write access to the Apache Superset metadata database, they could persist a specifically crafted Python object that may lead to remote code execution on Superset's web backend. The Superset metadata db is an 'internal' component that is typically only accessible directly by t...

6.6CVSS6.4AI score0.29226EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.10 views

VulnCheck KEV: CVE-2025-25256

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in Fortinet FortiSIEM version 7.3.0 through 7.3.1, 7.2.0 through 7.2.5, 7.1.0 through 7.1.7, 7.0.0 through 7.0.3 and before 6.7.9 allows an unauthenticated attacker to execute...

9.8CVSS6AI score0.56192EPSS
Exploits2References5
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-54253

Adobe Experience Manager versions 6.5.23 and earlier are affected by a Misconfiguration vulnerability that could result in arbitrary code execution. An attacker could leverage this vulnerability to bypass security mechanisms and execute code. Exploitation of this issue does not require user...

10CVSS7.6AI score0.87515EPSS
Exploits7References18
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-54254

Adobe Experience Manager versions 6.5.23 and earlier are affected by an Improper Restriction of XML External Entity Reference 'XXE' vulnerability that could lead to arbitrary file system read. An attacker could exploit this vulnerability to access sensitive files on the local file system, scope i...

8.6CVSS7.4AI score0.77133EPSS
Exploits2References14
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-4429

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. IBM X-Force ID: 180534...

10CVSS7.7AI score0.71363EPSS
Exploits10References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-36661

Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. This is fixed in, for example, Shibboleth Service Provider 3.4.1.3 on Windows...

7.5CVSS5.8AI score0.03055EPSS
Exploits3References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/12 12:0 a.m.11 views

VulnCheck KEV: CVE-2025-44177

A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/ endpoint. An unauthenticated attacker can remotely read arbitrary files on the underlying OS using encoded traversal sequences...

8.2CVSS5.9AI score0.04173EPSS
Exploits3References72
VulnCheck KEV
VulnCheck KEV
added 2025/08/08 12:0 a.m.73 views

VulnCheck KEV: CVE-2025-8088

A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by crafting malicious archive files. This vulnerability was exploited in the wild and was discovered by Anton Cherepanov, Peter Košinár, and Peter Strýček from ESET...

8.8CVSS7.5AI score0.86192EPSS
Exploits43References41
VulnCheck KEV
VulnCheck KEV
added 2025/08/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-6218

RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open...

7.8CVSS7.6AI score0.86192EPSS
Exploits8References18
VulnCheck KEV
VulnCheck KEV
added 2025/08/07 12:0 a.m.20 views

VulnCheck KEV: CVE-2025-34300

A template injection vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prior to 9.16.14 via the ciwweb.pl http://ciwweb.pl/ Perl web application. Exploitation allows an unauthenticated attacker can execute arbitrary commands...

10CVSS6AI score0.4942EPSS
Exploits4References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/07 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-53833

LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior to 2.8.1 are vulnerable to Server-Side Template Injection SSTI, which could potentially lead to Remote Code Execution RCE in vulnerable configurations. Attackers could execute...

10CVSS6.2AI score0.09357EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/08/07 12:0 a.m.25 views

VulnCheck KEV: CVE-2025-3415

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS5.8AI score0.0089EPSS
Exploits0References41
Total number of security vulnerabilities4985