VYPR

CVEs

100,472 total · page 647 of 2,010

  • CVE-2024-42051HigJul 28, 2024
    risk 0.51cvss 7.8epss 0.00

    The MSI installer for Splashtop Streamer for Windows before 3.6.2.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM by replacing InstRegExp.reg.

  • CVE-2024-42050HigJul 28, 2024
    risk 0.46cvss 7.0epss 0.00

    The MSI installer for Splashtop Streamer for Windows before 3.7.0.0 uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges to SYSTEM via an oplock on CredProvider_Inst.reg.

  • CVE-2024-7152HigJul 27, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been rated as critical. This issue affects the function fromSafeSetMacFilter of the file /goform/setMacFilterList. The manipulation of the argument time leads to stack-based buffer overflow. The attack may be initiated…

  • CVE-2024-7151HigJul 27, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability was found in Tenda O3 1.0.0.10(2478). It has been declared as critical. This vulnerability affects the function fromMacFilterSet of the file /goform/setMacFilter. The manipulation of the argument remark leads to stack-based buffer overflow. The attack can be…

  • CVE-2024-6431HigJul 27, 2024
    risk 0.57cvss 8.8epss 0.01

    The Media.net Ads Manager plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation and missing capability check in the 'sendMail' function in all versions up to, and including, 2.10.13. This makes it possible for authenticated attackers,…

  • CVE-2024-6152HigJul 27, 2024
    risk 0.57cvss 8.8epss 0.01

    The Flipbox Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.5 via deserialization of untrusted input in the flipbox_builder_Flipbox_ShortCode function. This makes it possible for authenticated attackers, with…

  • CVE-2024-40433HigJul 26, 2024
    risk 0.57cvss 8.8epss 0.01

    Insecure Permissions vulnerability in Tencent wechat v.8.0.37 allows an attacker to escalate privileges via the web-view component.

  • CVE-2024-41815HigJul 26, 2024
    risk 0.41cvss 7.4epss 0.00

    Starship is a cross-shell prompt. Starting in version 1.0.0 and prior to version 1.20.0, undocumented and unpredictable shell expansion and/or quoting rules make it easily to accidentally cause shell injection when using custom commands with starship in bash. This issue only…

  • CVE-2024-41628HigJul 26, 2024
    risk 0.49cvss 7.5epss 0.06

    Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0 before 2.0.0-9779, and 2.1.0 before 2.1.0-9780 allows a remote attacker to include and display file content in an HTTP request via the CMON API.

  • CVE-2024-41118HigJul 26, 2024
    risk 0.42cvss 7.5epss 0.01

    streamlit-geospatial is a streamlit multipage app for geospatial applications. Prior to commit c4f81d9616d40c60584e36abb15300853a66e489, the `url` variable on line 47 of `pages/7_📦_Web_Map_Service.py` takes user input, which is passed to `get_layers` function, in which `url`…

  • CVE-2024-40116HigJul 26, 2024
    risk 0.53cvss 8.1epss 0.00

    An issue in Solar-Log 1000 before v2.8.2 and build 52-23.04.2013 was discovered to store plaintext passwords in the export.html, email.html, and sms.html files -- fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL…

  • CVE-2024-38512HigJul 26, 2024
    risk 0.47cvss 7.2epss 0.01

    A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.

  • CVE-2024-38511HigJul 26, 2024
    risk 0.47cvss 7.2epss 0.01

    A privilege escalation vulnerability was discovered in an upload processing functionality of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.

  • CVE-2024-38510HigJul 26, 2024
    risk 0.47cvss 7.2epss 0.01

    A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.

  • CVE-2024-38509HigJul 26, 2024
    risk 0.47cvss 7.2epss 0.01

    A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC user with elevated privileges to execute arbitrary code via a specially crafted IPMI command.

  • CVE-2024-38508HigJul 26, 2024
    risk 0.47cvss 7.2epss 0.01

    A privilege escalation vulnerability was discovered in the web interface or SSH captive command shell interface of XCC that could allow an authenticated XCC user with elevated privileges to perform command injection via a specially crafted request.

  • CVE-2024-39304HigJul 26, 2024
    risk 0.53cvss 8.8epss 0.03

    ChurchCRM is an open-source church management system. Versions of the application prior to 5.9.2 are vulnerable to an authenticated SQL injection due to an improper sanitization of user input. Authentication is required, but no elevated privileges are necessary. This allows…

  • CVE-2024-38872HigJul 26, 2024
    risk 0.54cvss 8.3epss 0.03

    Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module.

  • CVE-2024-38871HigJul 26, 2024
    risk 0.54cvss 8.3epss 0.03

    Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module.

  • CVE-2024-41813HigJul 26, 2024
    risk 0.00cvss 7.5epss 0.01

    txtdot is an HTTP proxy that parses only text, links, and pictures from pages, removing ads and heavy scripts. Starting in version 1.4.0 and prior to version 1.6.1, a Server-Side Request Forgery (SSRF) vulnerability in the `/proxy` route of txtdot allows remote attackers to use…

  • CVE-2024-41812HigJul 26, 2024
    risk 0.00cvss 7.5epss 0.01

    txtdot is an HTTP proxy that parses only text, links, and pictures from pages, removing ads and heavy scripts. Prior to version 1.7.0, a Server-Side Request Forgery (SSRF) vulnerability in the `/get` route of txtdot allows remote attackers to use the server as a proxy to send…

  • CVE-2024-41354HigJul 26, 2024
    risk 0.46cvss 7.1epss 0.00

    phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via /app/admin/widgets/edit.php

  • CVE-2024-41353HigJul 26, 2024
    risk 0.46cvss 7.1epss 0.00

    phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\groups\edit-group.php

  • CVE-2024-24257HigJul 26, 2024
    risk 0.49cvss 7.5epss 0.00

    An issue in skteco.com Central Control Attendance Machine web management platform v.3.0 allows an attacker to obtain sensitive information via a crafted script to the csl/user component.

  • CVE-2023-50700HigJul 26, 2024
    risk 0.51cvss 7.8epss 0.00

    Insecure Permissions vulnerability in Deepin dde-file-manager 6.0.54 and earlier allows privileged operations to be called by unprivileged users via the D-Bus method.

  • CVE-2024-7050HigJul 26, 2024
    risk 0.54cvss epss 0.01

    Improper Authentication vulnerability in OpenText OpenText Directory Services may allow Multi-factor Authentication Bypass in particular scenarios.This issue affects OpenText Directory Services: 24.2.

  • CVE-2024-41357HigJul 26, 2024
    risk 0.49cvss 7.1epss 0.01

    phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via /app/admin/powerDNS/record-edit.php.

  • CVE-2024-41670HigJul 26, 2024
    risk 0.42cvss 7.5epss 0.00

    In the module "PayPal Official" for PrestaShop 7+ releases prior to version 6.4.2 and for PrestaShop 1.6 releases prior to version 3.18.1, a malicious customer can confirm an order even if payment is finally declined by PayPal. A logical weakness during the capture of a payment…

  • CVE-2024-41692HigJul 26, 2024
    risk 0.56cvss epss 0.00

    This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to presence of root terminal access on a serial interface without proper access control. An attacker with physical access could exploit this by accessing the root shell on the vulnerable system. Successful…

  • CVE-2024-7062HigJul 26, 2024
    risk 0.57cvss 8.8epss 0.00

    Nimble Commander suffers from a privilege escalation vulnerability due to the server (info.filesmanager.Files.PrivilegedIOHelperV2) performing improper/insufficient validation of a client’s authorization before executing an operation. Consequently, it is possible to execute…

  • CVE-2024-41687HigJul 26, 2024
    risk 0.49cvss 7.5epss 0.00

    This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text. A remote attacker could exploit this vulnerability by intercepting transmission within an HTTP session on the vulnerable system. Successful exploitation of this…

  • CVE-2024-41685HigJul 26, 2024
    risk 0.49cvss 7.5epss 0.01

    This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to missing HTTPOnly flag for the session cookies associated with the router's web management interface. An attacker with remote access could exploit this by intercepting transmission within an HTTP session on…

  • CVE-2024-35296HigJul 26, 2024
    risk 0.46cvss 8.2epss 0.01

    Invalid Accept-Encoding header can cause Apache Traffic Server to fail cache lookup and force forwarding requests. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from 9.0.0 through 9.2.4. Users are recommended to upgrade to version 8.1.11 or 9.2.5, which…

  • CVE-2024-35161HigJul 26, 2024
    risk 0.42cvss 7.5epss 0.01

    Apache Traffic Server forwards malformed HTTP chunked trailer section to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache Traffic Server: from 8.0.0 through 8.1.10, from…

  • CVE-2023-38522HigJul 26, 2024
    risk 0.42cvss 7.5epss 0.01

    Apache Traffic Server accepts characters that are not allowed for HTTP field names and forwards malformed requests to origin servers. This can be utilized for request smuggling and may also lead cache poisoning if the origin servers are vulnerable. This issue affects Apache…

  • CVE-2024-24623HigJul 25, 2024
    risk 0.57cvss 8.8epss 0.02

    Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system.

  • CVE-2024-24622HigJul 25, 2024
    risk 0.57cvss 8.8epss 0.02

    Softaculous Webuzo contains a command injection in the password reset functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system.

  • CVE-2024-41809HigJul 25, 2024
    risk 0.00cvss 7.2epss 0.00

    OpenObserve is an open-source observability platform. Starting in version 0.4.4 and prior to version 0.10.0, OpenObserve contains a cross-site scripting vulnerability in line 32 of `openobserve/web/src/views/MemberSubscription.vue`. Version 0.10.0 sanitizes incoming html.

  • CVE-2024-41808HigJul 25, 2024
    risk 0.57cvss 8.8epss 0.01

    The OpenObserve open-source observability platform provides the ability to filter logs in a dashboard by the values uploaded in a given log. However, all versions of the platform through 0.9.1 do not sanitize user input in the filter selection menu, which may result in complete…

  • CVE-2024-38288HigJul 25, 2024
    risk 0.47cvss 7.2epss 0.03

    A command-injection issue in the Certificate Signing Request (CSR) functionality in R-HUB TurboMeeting through 8.x allows authenticated attackers with administrator privileges to execute arbitrary commands on the underlying server as root.

  • CVE-2024-40318HigJul 25, 2024
    risk 0.47cvss 7.2epss 0.01

    An arbitrary file upload vulnerability in Webkul Qloapps v1.6.0.0 allows attackers to execute arbitrary code via uploading a crafted file.

  • CVE-2024-40872HigJul 25, 2024
    risk 0.55cvss 8.4epss 0.00

    There is an elevation of privilege vulnerability in server and client components of Absolute Secure Access prior to version 13.07. Attackers with local access and valid desktop user credentials can elevate their privilege to system level by passing invalid address data to the…

  • CVE-2024-36542HigJul 25, 2024
    risk 0.57cvss 8.8epss 0.00

    Insecure permissions in kuma v2.7.0 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token.

  • CVE-2024-7101HigJul 25, 2024
    risk 0.47cvss 7.3epss 0.00

    A vulnerability, which was classified as critical, has been found in ForIP Tecnologia Administração PABX 1.x. This issue affects some unknown processing of the file /login of the component Authentication Form. The manipulation of the argument usuario leads to sql injection.…

  • CVE-2024-39672HigJul 25, 2024
    risk 0.55cvss 8.4epss 0.00

    Memory request logic vulnerability in the memory module. Impact: Successful exploitation of this vulnerability will affect integrity and availability.

  • CVE-2024-6589HigJul 25, 2024
    risk 0.50cvss 8.8epss 0.01

    The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 4.2.6.8.2 via the 'render_content_block_template' function. This makes it possible for authenticated attackers, with Contributor-level access…

  • CVE-2024-41706HigJul 25, 2024
    risk 0.47cvss 7.3epss 0.00

    A stored XSS issue was discovered in Archer Platform 6 before version 2024.06. A remote authenticated malicious Archer user could potentially exploit this to store malicious HTML or JavaScript code in a trusted application data store. When victim users access the data store…

  • CVE-2024-41705HigJul 25, 2024
    risk 0.46cvss 7.1epss 0.00

    A stored XSS issue was discovered in Archer Platform 6.8 before 2024.06. A remote authenticated malicious Archer user could potentially exploit this to store malicious HTML or JavaScript code in a trusted application data store. When victim users access the data store through…

  • CVE-2024-7047HigJul 25, 2024
    risk 0.50cvss 7.7epss 0.00

    A cross site scripting vulnerability exists in GitLab CE/EE affecting all versions from 16.6 prior to 17.0.5, 17.1 prior to 17.1.3, 17.2 prior to 17.2.1 allowing an attacker to execute arbitrary scripts under the context of the current logged in user.

  • CVE-2024-41466HigJul 24, 2024
    risk 0.49cvss 7.5epss 0.01

    Tenda FH1201 v1.2.0.14 was discovered to contain a stack-based buffer overflow vulnerability via the page parameter at ip/goform/NatStaticSetting.