Lucene search
K
Vulncheck KevRecent

4985 matches found

VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.5 views

VulnCheck KEV: CVE-2016-0736

In Apache HTTP Server versions 2.4.0 to 2.4.23, modsessioncrypto was encrypting its data/cookie using the configured ciphers with possibly either CBC or ECB modes of operation AES256-CBC by default, hence no selectable or builtin authenticated encryption. This made it vulnerable to padding...

7.5CVSS7.1AI score0.49024EPSS
Exploits4References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-21715

Microsoft Office Publisher contains a security feature bypass vulnerability that allows for a local, authenticated attack on a targeted system...

7.3CVSS7.3AI score0.12107EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.7 views

VulnCheck KEV: CVE-2023-25050

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Vova Anokhin Shortcodes Ultimate allows Absolute Path Traversal.This issue affects Shortcodes Ultimate: from n/a through 5.12.6...

7.1CVSS7.3AI score0.00591EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.10 views

VulnCheck KEV: CVE-2021-33558

Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, preview.html, js/log.js, log.html, email.html, online-users.html, and config.js. NOTE: multiple third parties report that this is a site-specific issue because those files are not...

7.5CVSS7.3AI score0.10329EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-1932

IBM API Connect 5.0.0.0 through 5.0.8.4 is affected by a vulnerability in the role-based access control in the management server that could allow an authenticated user to obtain highly sensitive information. IBM X-Force ID: 153175...

4.9CVSS5.8AI score0.0323EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.3 views

VulnCheck KEV: CVE-2009-2521

Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services IIS 5.0 through 7.0 allows remote authenticated users to cause a denial of service daemon crash via a list ls -R command containing a wildcard that references a subdirectory, followed by a...

5CVSS5.8AI score0.82265EPSS
Exploits9References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.3 views

VulnCheck KEV: CVE-2021-44832

Apache Log4j2 versions 2.0-beta7 through 2.17.0 excluding security fix releases 2.3.2 and 2.12.4 are vulnerable to a remote code execution RCE attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. This issue...

8.5CVSS7.6AI score0.97906EPSS
Exploits9References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.6 views

VulnCheck KEV: CVE-2015-2551

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2015. Notes: none...

5.8AI score
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.6 views

VulnCheck KEV: CVE-2018-19518

University of Washington IMAP Toolkit 2007f on UNIX, as used in imapopen in PHP and other products, launches an rsh command by means of the imaprimap function in c-client/imap4r1.c and the tcpaopen function in osdep/unix/tcpunix.c without preventing argument injection, which might allow...

8.5CVSS6.7AI score0.9523EPSS
Exploits6References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-21823

Microsoft Windows Graphic Component contains an unspecified vulnerability that allows for privilege escalation...

7.8CVSS7.3AI score0.05563EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/14 12:0 a.m.10 views

VulnCheck KEV: CVE-2020-1210

A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SharePoint application pool and the SharePoint...

9.9CVSS8AI score0.0176EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/13 12:0 a.m.4 views

VulnCheck KEV: CVE-2022-47986

IBM Aspera Faspex could allow a remote attacker to execute code on the system, caused by a YAML deserialization flaw...

9.8CVSS7.4AI score0.99968EPSS
Exploits5References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/13 12:0 a.m.7 views

VulnCheck KEV: CVE-2023-23529

Apple iOS, MacOS, Safari and iPadOS WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely...

8.8CVSS7.8AI score0.09426EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/13 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-23524

A denial-of-service issue was addressed with improved input validation. This issue is fixed in tvOS 16.3.2, iOS 16.3.1 and iPadOS 16.3.1, watchOS 9.3.1, macOS Ventura 13.2.1. Processing a maliciously crafted certificate may lead to a denial-of-service...

7.5CVSS7.1AI score0.00605EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/13 12:0 a.m.8 views

VulnCheck KEV: CVE-2023-23522

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Ventura 13.2.1. An app may be able to observe unprotected user data...

5.5CVSS6AI score0.00294EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/13 12:0 a.m.8 views

VulnCheck KEV: CVE-2023-23514

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS7.6AI score0.00726EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-0711

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxsavestate function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.2 views

VulnCheck KEV: CVE-2023-0718

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxsavefolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00588EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.3 views

VulnCheck KEV: CVE-2010-2261

Linksys WAP54Gv3 firmware 3.04.03 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 data2 and 2 data3 parameters to a Debugcommandpage.asp and b debug.cgi...

10CVSS6.1AI score0.02642EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-0720

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxsavefolderorder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.2 views

VulnCheck KEV: CVE-2023-0715

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxclonefolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-0717

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxdeletefolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-0716

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxeditfolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.6 views

VulnCheck KEV: CVE-2023-0719

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxsavesortorder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to...

5.4CVSS6.5AI score0.00601EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-0713

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxaddfolder function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00576EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-0669

Fortra formerly, HelpSystems GoAnywhere MFT contains a pre-authentication remote code execution vulnerability in the License Response Servlet due to deserializing an attacker-controlled object...

7.2CVSS7.9AI score0.99999EPSS
Exploits12References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/08 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-0712

The Wicked Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the ajaxmoveobject function in versions up to, and including, 2.18.16. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to invoke...

5.4CVSS6.5AI score0.00601EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/06 12:0 a.m.8 views

VulnCheck KEV: CVE-2022-48323

Sunlogin Sunflower Simplified aka Sunflower Simple and Personal 1.0.1.43315 is vulnerable to a path traversal issue. A remote and unauthenticated attacker can execute arbitrary programs on the victim host by sending a crafted HTTP request, as demonstrated by /check?cmd=ping../ followed by the...

9.8CVSS7.5AI score0.56787EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.10 views

VulnCheck KEV: CVE-2022-4701

The Royal Elementor Addons plugin for WordPress is vulnerable to insufficient access control in the 'wpractivaterequiredplugins' AJAX action in versions up to, and including, 1.3.59. This allows any authenticated user, including those with subscriber-level permissions, to activate the...

8.8CVSS7.2AI score0.00754EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-21974

OpenSLP as used in ESXi 7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue...

8.8CVSS7.4AI score0.45063EPSS
Exploits7References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.7 views

VulnCheck KEV: CVE-2022-4703

The Royal Elementor Addons plugin for WordPress is vulnerable to insufficient access control in the 'wprresetpreviousimport' AJAX action in versions up to, and including, 1.3.59. This allows any authenticated user, including those with subscriber-level permissions, to reset previously imported...

8.1CVSS7.2AI score0.00945EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.7 views

VulnCheck KEV: CVE-2022-1654

Jupiter Theme = 6.10.1 and JupiterX Core Plugin = 2.0.7 allow any authenticated attacker, including a subscriber or customer-level attacker, to gain administrative privileges via the "abbuninstalltemplate" both and "jupiterxcorecpuninstalltemplate" JupiterX Core Only AJAX actions...

9CVSS7.3AI score0.01498EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.8 views

VulnCheck KEV: CVE-2022-4708

The Royal Elementor Addons plugin for WordPress is vulnerable to insufficient access control in the 'wprsavetemplateconditions' AJAX action in versions up to, and including, 1.3.59. This allows any authenticated user, including those with subscriber-level permissions, to modify the...

6.5CVSS6.9AI score0.00603EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/03 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-34621

A vulnerability in the user registration component found in the /src/Classes/RegistrationAuth.php file of the ProfilePress WordPress plugin made it possible for users to register on sites as an administrator. This issue affects versions 3.0.0 - 3.1.3...

9.8CVSS7.2AI score0.68862EPSS
Exploits8References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/02 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-20627

The includes/gateways/stripe/includes/admin/admin-actions.php in GiveWP plugin through 2.5.9 for WordPress allows unauthenticated settings change...

5.3CVSS6AI score0.01881EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/02 12:0 a.m.5 views

VulnCheck KEV: CVE-2022-21587

Oracle E-Business Suite contains an unspecified vulnerability that allows an unauthenticated attacker with network access via HTTP to compromise Oracle Web Applications Desktop Integrator...

9.8CVSS7.5AI score0.98342EPSS
Exploits7References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/02 12:0 a.m.6 views

VulnCheck KEV: CVE-2022-3911

The iubenda WordPress plugin before 3.3.3 does does not have authorisation and CSRF in an AJAX action, and does not ensure that the options to be updated belong to the plugin as long as they are arrays. As a result, any authenticated users, such as subscriber can grant themselves any...

8.8CVSS7.3AI score0.00462EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.2 views

VulnCheck KEV: CVE-2023-26802

An issue in the component /networkconfig/nsgmasq.cgi of DCN Digital China Networks DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted request...

9.8CVSS7.5AI score0.4871EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.5 views

VulnCheck KEV: CVE-2019-10891

An issue was discovered in D-Link DIR-806 devices. There is a command injection in function hnapmain, which calls system without checking the parameter that can be controlled by user, and finally allows remote attackers to execute arbitrary shell commands with a special HTTP header...

10CVSS7.7AI score0.19442EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-27076

Command injection vulnerability found in Tenda G103 v.1.0.0.5 allows attacker to execute arbitrary code via a the language parameter...

9.8CVSS7.6AI score0.2293EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-26801

LB-LINK BL-AC19002.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 were discovered to contain a command injection vulnerability via the mac, time1, and time2 parameters at /goform/setLimitClientcfg...

9.8CVSS7.5AI score0.69663EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.2 views

VulnCheck KEV: CVE-2023-3388

The Beautiful Cookie Consent Banner for WordPress is vulnerable to Stored Cross-Site Scripting via the 'nscbarcontenthref' parameter in versions up to, and including, 2.10.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

7.2CVSS6.3AI score0.84461EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.9 views

VulnCheck KEV: CVE-2022-2551

The Duplicator WordPress plugin before 1.4.7 discloses the url of the a backup to unauthenticated visitors accessing the main installer endpoint of the plugin, if the installer script has been run once by an administrator, allowing download of the full site backup without authenticating...

7.5CVSS6.9AI score0.12485EPSS
Exploits5References1
VulnCheck KEV
VulnCheck KEV
added 2023/02/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-17207

An issue was discovered in Snap Creek Duplicator before 1.2.42. By accessing leftover installer files installer.php and installer-backup.php, an attacker can inject PHP code into wp-config.php during the database setup step, achieving arbitrary code execution...

9.8CVSS7.5AI score0.57557EPSS
Exploits4References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/31 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-6008

LifterLMS Wordpress plugin version below 3.37.15 is vulnerable to arbitrary file write leading to remote code execution...

9.8CVSS8.1AI score0.03776EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/30 12:0 a.m.3 views

VulnCheck KEV: CVE-2023-23888

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Rank Math Rank Math SEO allows Path Traversal.This issue affects Rank Math SEO: from n/a through 1.0.107.2...

8.8CVSS5.8AI score0.00948EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/30 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-11515

The Rank Math plugin through 1.0.40.2 for WordPress allows unauthenticated remote attackers to create new URIs that redirect to an external web site via the unsecured rankmath/v1/updateRedirection REST API endpoint. In other words, this is not an "Open Redirect" issue; instead, it allows the...

6.1CVSS6.4AI score0.02072EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/29 12:0 a.m.5 views

VulnCheck KEV: CVE-2021-24278

In the Redirection for Contact Form 7 WordPress plugin before 2.3.4, unauthenticated users can use the wpcf7rgetnonce AJAX action to retrieve a valid nonce for any WordPress action/function...

7.5CVSS7.1AI score0.07359EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/29 12:0 a.m.1 views

VulnCheck KEV: CVE-2021-24205

In the Elementor Website Builder WordPress plugin before 3.1.4, the icon box widget includes/widgets/icon-box.php accepts a ‘titlesize’ parameter. Although the element control lists a fixed set of possible html tags, it is possible for a user with Contributor or above permissions to send a...

5.4CVSS6AI score0.00746EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2023/01/24 12:0 a.m.3 views

VulnCheck KEV: CVE-2021-24139

Unvalidated input in the Photo Gallery 10Web Photo Gallery WordPress plugin, versions before 1.5.55, leads to SQL injection via the frontend/models/model.php bwgsearchx parameter...

9.8CVSS7.3AI score0.05418EPSS
Exploits1References1
Total number of security vulnerabilities4985