Symfony Cross-Site Request Forgery vulnerability in the Web Profiler
All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony WebProfiler bundle are affected by this security issue. This issue has been fixed in Symfony 2.3.19, 2.4.9, and 2.5.4. Note that no fixes are provided for Symfony 2.0, 2.1, and 2.2 as they are not maintained anymore....
7.8AI Score
EPSS
omero-web is vulnerable to Improper Callback Validation. The vulnerability is due to a lack of sanitization or validation of callback parameters in JSONP-enabled endpoints, which allows an attacker to execute arbitrary JavaScript code in the...
6.1CVSS
7.3AI Score
0.0004EPSS
Improper Neutralization of Input During Web Page Generation in Spring Framework
The JavaScriptUtils.javaScriptEscape method in web/util/JavaScriptUtils.java in Spring MVC in Spring Framework before 3.2.2 does not properly escape certain characters, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a (1) line separator or (2) paragraph separator...
5.4CVSS
4AI Score
0.001EPSS
A vulnerability, which was classified as critical, has been found in WeiYe-Jing datax-web 2.1.2. Affected by this issue is some unknown functionality of the file /api/log/killJob of the component HTTP POST Request Handler. The manipulation of the argument processId leads to os command injection....
9.8CVSS
7.5AI Score
0.003EPSS
A vulnerability was found in 3D City Database OGC Web Feature Service up to 5.2.0. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to xml external entity reference. Upgrading to version 5.2.1 is able to address this issue. The name of the patch.....
9.8CVSS
7AI Score
0.002EPSS
Genie Path Traversal vulnerability via File Uploads
Overview Path Traversal Vulnerability via File Uploads in Genie Impact Any Genie OSS users running their own instance and relying on the filesystem to store file attachments submitted to the Genie application may be impacted. Using this technique, it is possible to write a file with any...
9.9CVSS
7.2AI Score
0.0004EPSS
The XAO::Web module before 1.84 for Perl mishandles < and > characters in JSON output during use of json-embed in...
7.1AI Score
0.0004EPSS
The Web Stories plugin for WordPress is vulnerable to Server-Side Request Forgery in versions up to, and including 1.24.0 due to insufficient validation of URLs supplied via the 'url' parameter found via the /v1/hotlink/proxy REST API Endpoint. This makes it possible for authenticated users to...
9.6CVSS
6.5AI Score
0.001EPSS
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations in versions prior to v2.3.7. The vulnerability may allow an...
5.4CVSS
5.2AI Score
0.0004EPSS
A vulnerability, which was classified as problematic, has been found in cloudfavorites favorites-web 1.3.0. Affected by this issue is some unknown functionality of the component Nickname Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has...
5.4CVSS
6.2AI Score
0.001EPSS
Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations . The vulnerability in allows an attacker to inject malicious...
6.3CVSS
5.4AI Score
0.001EPSS
Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web prior to...
9.8CVSS
8.7AI Score
0.002EPSS
raptor-web is a CMS for game server communities that can be used to host information and keep track of players. In version 0.4.4 of raptor-web, it is possible to craft a malicious URL that will result in a reflected cross-site scripting vulnerability. A user controlled URL parameter is loaded into....
6.1CVSS
6AI Score
0.0005EPSS
Farmbot-Web-App is a web control interface for the Farmbot farm automation platform. An SQL injection vulnerability was found in FarmBot's web app that allows authenticated attackers to extract arbitrary data from its database (including the user table). This issue may lead to Information...
7.7CVSS
7.8AI Score
0.0005EPSS
A vulnerability was found in Ariadne Component Library up to 2.x. It has been classified as critical. Affected is an unknown function of the file src/url/Url.php. The manipulation leads to server-side request forgery. Upgrading to version 3.0 is able to address this issue. It is recommended to...
9.8CVSS
9.6AI Score
0.002EPSS
The Web Stories for WordPress plugin supports the WordPress built-in functionality of protecting content with a password. The content is then only accessible to website visitors after entering the password. In WordPress, users with the "Author" role can create stories, but don't have the ability...
6.5CVSS
7.1AI Score
0.001EPSS
Malicious code in integration-web-core--socle (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (4bee6dc4af217ab7789d50b0fed6b7d01749bf9ef8c725c1dfee59c068f9af3b) The OpenSSF Package Analysis project identified 'integration-web-core--socle' @ 1.4.2 (npm) as malicious. It is considered malicious because: The...
7.3AI Score
9.8CVSS
7.4AI Score
0.002EPSS
A vulnerability was found in Graphite Web and classified as problematic. This issue affects some unknown processing of the component Template Name Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be.....
5.4CVSS
5.1AI Score
0.001EPSS
A vulnerability was found in Graphite Web. It has been classified as problematic. Affected is an unknown function of the component Absolute Time Range Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public....
5.4CVSS
5.1AI Score
0.001EPSS
A vulnerability has been found in Graphite Web and classified as problematic. This vulnerability affects unknown code of the component Cookie Handler. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.....
5.4CVSS
5.2AI Score
0.001EPSS
joaquimserafim/json-web-token is a javascript library use to interact with JSON Web Tokens (JWT) which are a compact URL-safe means of representing claims to be transferred between two parties. Affected versions of the json-web-token library are vulnerable to a JWT algorithm confusion attack. On...
7.5CVSS
6.7AI Score
0.0005EPSS
ecnepsnai/web vulnerable to Uncontrolled Resource Consumption
Web Sockets do not execute any AuthenticateMethod methods which may be set, leading to a nil pointer dereference if the returned UserData pointer is assumed to be non-nil, or authentication bypass. This issue only affects WebSockets with an AuthenticateMethod hook. Request handlers that do not...
9.8CVSS
9.3AI Score
0.002EPSS
9.5AI Score
0.002EPSS
7.3AI Score
Apache Axis is vulnerable to Improper Input Validation. The vulnerability is caused due to improper input validation in the getService method within ServiceFactory.java. This can potentially lead to Denial of Service, Server Side request forgery, or Remote Code Execution...
9.8CVSS
7.2AI Score
0.002EPSS
Server Side Request Forgery (SSRF)
org.apache.axis: axis is vulnerable to Server Side Request Forgery (SSRF). The vulnerability is due to the getService function within ServiceFactory.java because there is no validation for the jndiName. This allows users with access to the admin service to perform possible...
7.2CVSS
7.1AI Score
0.001EPSS
reportico-web/reportico is vulnerable to Improper Session Management. The vulnerability is due to improper handling of session tokens, which allows an attacker to reuse a token after a user has logged...
7AI Score
EPSS
Malicious code in cst-web-chat (npm)
-= Per source details. Do not edit below this line.=- Source: ossf-package-analysis (d63325ebdbf1c74d7cc5b1900804d59ba11882efb8796b209b0c5b572d4844a2) The OpenSSF Package Analysis project identified 'cst-web-chat' @ 3.3.7 (npm) as malicious. It is considered malicious because: The package...
7.1AI Score
OMERO.web must check that the JSONP callback is a valid function
Background There is currently no escaping or validation of the callback parameter that can be passed to various OMERO.web endpoints that have JSONP enabled. One such endpoint is /webclient/imgData/.... As we only really use these endpoints with jQuery's own callback name generation ^1 it is quite.....
6.1CVSS
6.9AI Score
0.0004EPSS
GHSA-HRFV-MQP8-Q5RW vulnerabilities
Vulnerabilities for packages: py3-werkzeug, kubeflow-volumes-web-app, kubeflow-jupyter-web-app,...
7.3AI Score
CVE-2023-43804 vulnerabilities
Vulnerabilities for packages: dask-gateway, kubeflow-volumes-web-app, py3-urllib3, kubeflow-jupyter-web-app, k8s-sidecar,...
7.7AI Score
0.001EPSS
Amazon Web Services EC2 SSM enumeration
Provided AWS credentials, this module will call the authenticated API of Amazon Web Services to list all SSM-enabled EC2 instances accessible to the account. Once enumerated as SSM-enabled, the instances can be controlled using out-of-band WebSocket sessions provided by the AWS API (nominally,...
7.1AI Score
CVE-2023-46136 vulnerabilities
Vulnerabilities for packages: py3-werkzeug, kubeflow-volumes-web-app, kubeflow-jupyter-web-app,...
7.5AI Score
0.001EPSS
CVE-2023-45803 vulnerabilities
Vulnerabilities for packages: jwt-tool, kubeflow-volumes-web-app, py3-urllib3, kubeflow-jupyter-web-app, k8s-sidecar,...
5AI Score
0.0004EPSS
GHSA-V845-JXX5-VC9F vulnerabilities
Vulnerabilities for packages: dask-gateway, kubeflow-volumes-web-app, py3-urllib3, kubeflow-jupyter-web-app, k8s-sidecar,...
7.3AI Score
GHSA-G4MX-Q9VG-27P4 vulnerabilities
Vulnerabilities for packages: jwt-tool, kubeflow-volumes-web-app, py3-urllib3, kubeflow-jupyter-web-app, k8s-sidecar,...
7.3AI Score
RHEL 7 : icedtea-web (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. icedtea-web: SOP checks based on codebase and not applet origin (CVE-2015-5236) Note that Nessus has not tested for...
7.5CVSS
7.7AI Score
0.002EPSS
RHEL 6 : vertx-web (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. vertx-web: StaticHandler disclosure of classpath resources on Windows when mounted on a wildcard route ...
5.3CVSS
6.9AI Score
0.001EPSS
Genie Path Traversal vulnerability via File Uploads
Overview Path Traversal Vulnerability via File Uploads in Genie Impact Any Genie OSS users running their own instance and relying on the filesystem to store file attachments submitted to the Genie application may be impacted. Using this technique, it is possible to write a file with any...
9.9CVSS
7.5AI Score
0.0004EPSS
RHEL 6 : icedtea-web (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. icedtea-web: SOP checks based on codebase and not applet origin (CVE-2015-5236) Note that Nessus has not tested for...
7.5CVSS
7.7AI Score
0.002EPSS
Apache Zeppelin CSRF vulnerability in the Credentials page
Cross-Site Request Forgery (CSRF) vulnerability in Credential page of Apache Zeppelin allows an attacker to submit malicious request. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior...
6.9AI Score
0.0004EPSS
RESTful Web Services - Critical - Access bypass - SA-CONTRIB-2024-019
This module exposes Drupal resources (e.g. entities) as RESTful web services. The module doesn't sufficiently restrict access for user...
7.2AI Score
Reportico Web fails to invalidate cookies upon logout
An issue in Reportico Web before v.8.1.0. This vulnerability arises from the failure of the web application to properly invalidate session cookies upon logout. When a user logs out of the application, the session cookie should be invalidated to prevent unauthorized access. However, due to the...
6.8AI Score
EPSS
Exploit for Command Injection in Sophos Web Appliance
Dork fofa `(title="Sophos Web Appliance" ||...
9.8CVSS
9.3AI Score
0.969EPSS
9.1CVSS
9.3AI Score
0.0005EPSS
ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests to web_shell_cmd.gch, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified...
6.6AI Score
0.956EPSS
MicroStrategy Web 10.4 - Information Disclosure
MicroStrategy Web 10.4 is susceptible to information disclosure. The JVM configuration, CPU architecture, installation folder, and other information are exposed through /MicroStrategyWS/happyaxis.jsp. An attacker can use this vulnerability to learn more about the application environment and...
7.5CVSS
7.4AI Score
0.666EPSS
Web Directory Free < 1.7.0 - Unauthenticated SQL Injection
Description The plugin does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection with different techniques like UNION, Time-Based and...
9.9AI Score
0.0004EPSS
Juniper J-Web - Remote Code Execution
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to control certain environments variables to execute remote...
9.8CVSS
7.7AI Score
0.967EPSS