VYPR

CVEs

100,472 total · page 656 of 2,010

  • CVE-2024-40334HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/serverFile_deal.php?mudi=upFileDel&dataID=3

  • CVE-2024-40333HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.01

    idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=del&dataID=2

  • CVE-2024-40329HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/softBak_deal.php?mudi=backup

  • CVE-2024-28828HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    Cross-Site request forgery in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) could lead to 1-click compromize of the site.

  • CVE-2024-28827HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    Incorrect permissions on the Checkmk Windows Agent's data directory in Checkmk < 2.3.0p8, < 2.2.0p29, < 2.1.0p45, and <= 2.0.0p39 (EOL) allows a local attacker to gain SYSTEM privileges.

  • CVE-2024-3799HigJul 10, 2024
    risk 0.58cvss epss 0.15

    Insecure handling of POST header parameter body included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to multiple hosts on the local…

  • CVE-2024-3798HigJul 10, 2024
    risk 0.57cvss epss 0.00

    Insecure handling of GET header parameter file included in requests being sent to an instance of the open-source project Phoniebox allows an attacker to create a website, which – when visited by a user – will send malicious requests to multiple hosts on the local…

  • CVE-2024-6421HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    An unauthenticated remote attacker can read out sensitive device information through a incorrectly configured FTP service.

  • CVE-2024-39492HigJul 10, 2024
    risk 0.39cvss 7.0epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: Fix pm_runtime_get_sync() warning in mbox shutdown The return value of pm_runtime_get_sync() in cmdq_mbox_shutdown() will return 1 when pm runtime state is active, and we don't want to get…

  • CVE-2024-39927HigJul 10, 2024
    risk 0.53cvss 8.2epss 0.01

    Out-of-bounds write vulnerability exists in Ricoh MFPs and printers. If a remote attacker sends a specially crafted request to the affected products, the products may be able to cause a denial-of-service (DoS) condition and/or user's data may be destroyed.

  • CVE-2024-36451HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.01

    Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. If this vulnerability is exploited, a console session may be hijacked by an unauthorized user. As a result, data within a system may be referred, a…

  • CVE-2024-6411HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.01

    The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.8.9. This is due to a lack of validation on user-supplied data in the 'pm_upload_image' AJAX action. This makes it…

  • CVE-2024-39614HigJul 10, 2024
    risk 0.44cvss 7.5epss 0.29

    An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_language_variant() was subject to a potential denial-of-service attack when used with very long strings containing specific characters.

  • CVE-2024-38875HigJul 10, 2024
    risk 0.42cvss 7.5epss 0.01

    An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urlizetrunc were subject to a potential denial of service attack via certain inputs with a very large number of brackets.

  • CVE-2024-21526HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    All versions of the package speaker are vulnerable to Denial of Service (DoS) when providing unexpected input types to the channels property of the Speaker object makes it possible to reach an assert macro. Exploiting this vulnerability can lead to a process crash.

  • CVE-2024-21525HigJul 10, 2024
    risk 0.54cvss 8.3epss 0.01

    All versions of the package node-twain are vulnerable to Improper Check or Handling of Exceptional Conditions due to the length of the source data not being checked. Creating a new twain.TwainSDK with a productName or productFamily, manufacturer, version.info property of length…

  • CVE-2024-21524HigJul 10, 2024
    risk 0.53cvss 8.2epss 0.01

    All versions of the package node-stringbuilder are vulnerable to Out-of-bounds Read due to incorrect memory length calculation, by calling ToBuffer, ToString, or CharAt on a StringBuilder object with a non-empty string value input. It's possible to return previously allocated…

  • CVE-2024-21523HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input types to several different functions. This makes it possible to reach an assert macro, leading to a process crash. **Note:** By providing some specific integer values…

  • CVE-2024-21522HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    All versions of the package audify are vulnerable to Improper Validation of Array Index when frameSize is provided to the new OpusDecoder().decode or new OpusDecoder().decodeFloat functions it is not checked for negative values. This can lead to a process crash.

  • CVE-2024-21521HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    All versions of the package @discordjs/opus are vulnerable to Denial of Service (DoS) due to providing an input object with a property toString to several different functions. Exploiting this vulnerability could lead to a system crash.

  • CVE-2024-5792HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    The Houzez CRM plugin for WordPress is vulnerable to time-based SQL Injection via the notes ‘belong_to’ parameter in all versions up to, and including, 1.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL…

  • CVE-2023-7062HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.01

    The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4. This makes it possible for attackers with contributor access or higher to read the contents of arbitrary files on the server, which can…

  • CVE-2023-7061HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.01

    The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3. This makes it possible for authenticated attackers with contributor access or above to upload arbitrary files on the affected site's…

  • CVE-2024-6433HigJul 10, 2024
    risk 0.49cvss 7.5epss 0.01

    The application zips all the files in the folder specified by the user, which allows an attacker to read arbitrary files on the system by providing a crafted path. This vulnerability can be exploited by sending a request to the application with a malicious snapshot_path…

  • CVE-2024-32670HigJul 10, 2024
    risk 0.46cvss epss 0.00

    Exposure of Sensitive Information to an Unauthorized Actor in Samsung Galaxy SmartTag2 prior to 0.20.04 allows attackes to potentially identify the tag's location by scanning the BLE adversting.

  • CVE-2024-21417HigJul 10, 2024
    risk 0.57cvss 8.8epss 0.00

    Windows Text Services Framework Elevation of Privilege Vulnerability

  • CVE-2024-39883HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the…

  • CVE-2024-39882HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of…

  • CVE-2024-39881HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can result in a memory corruption condition. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the context of the current…

  • CVE-2024-39880HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.01

    Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. If a target visits a malicious page or opens a malicious file an attacker can leverage this vulnerability to execute code in the…

  • CVE-2024-39069HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.01

    An issue in ifood Order Manager v3.35.5 'Gestor de Peddios.exe' allows attackers to execute arbitrary code via a DLL hijacking attack.

  • CVE-2024-36676HigJul 9, 2024
    risk 0.42cvss 7.5epss 0.01

    Incorrect access control in BookStack before v24.05.1 allows attackers to confirm existing system users and perform targeted notification email DoS via public facing forms.

  • CVE-2024-35154HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.01

    IBM WebSphere Application Server 8.5 and 9.0 could allow a remote authenticated attacker, who has authorized access to the administrative console, to execute arbitrary code. Using specially crafted input, the attacker could exploit this vulnerability to execute arbitrary code…

  • CVE-2024-37829HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    An issue in Outline <= v0.76.1 allows attackers to execute a session hijacking attack via user interaction with a crafted magic sign-in link.

  • CVE-2024-34726HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In PVRSRV_MMap of pvr_bridge_k.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34725HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In DevmemIntUnexportCtx of devicemem_server.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34724HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In _UnrefAndMaybeDestroy of pmr.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-34723HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In onTransact of ParcelableListBinder.java , there is a possible way to steal mAllowlistToken to launch an app from background due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is…

  • CVE-2024-34722HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    In smp_proc_rand of smp_act.cc, there is a possible authentication bypass during legacy BLE pairing due to incorrect implementation of a protocol. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2024-34720HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In com_android_internal_os_ZygoteCommandBuffer_nativeForkRepeatedly of com_android_internal_os_ZygoteCommandBuffer.cpp, there is a possible method to perform arbitrary code execution in any app zygote processes due to a logic error in the code. This could lead to local…

  • CVE-2024-31339HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In multiple functions of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-31335HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In DevmemIntChangeSparse2 of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2024-31334HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In DevmemIntFreeDefBackingPage of devicemem_server.c, there is a possible arbitrary code execution due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2024-31332HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In multiple locations, there is a possible way to bypass a restriction on adding new Wi-Fi connections due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2024-31331HigJul 9, 2024
    risk 0.47cvss 7.3epss 0.00

    In setMimeGroup of PackageManagerService.java, there is a possible way to hide the service from Settings due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.

  • CVE-2024-31327HigJul 9, 2024
    risk 0.46cvss 7.0epss 0.00

    In multiple functions of MessageQueueBase.h, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-31326HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In multiple locations, there is a possible way in which policy migration code will never be executed due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-31325HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In multiple locations, there is a possible way to reveal images across users data due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2024-31324HigJul 9, 2024
    risk 0.47cvss 7.3epss 0.00

    In hide of WindowState.java, there is a possible way to bypass tapjacking/overlay protection by launching the activity in portrait mode first and then rotating it to landscape mode. This could lead to local escalation of privilege with User execution privileges needed. User…

  • CVE-2024-31323HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    In onCreate of multiple files, there is a possible way to trick the user into granting health permissions due to tapjacking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.