VYPR

CVEs

100,472 total · page 661 of 2,010

  • CVE-2024-39487HigJul 9, 2024
    risk 0.39cvss 7.1epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() In function bond_option_arp_ip_targets_set(), if newval->string is an empty string, newval->string+1 will point to the byte after the string,…

  • CVE-2024-37268HigJul 9, 2024
    risk 0.55cvss 8.5epss 0.01

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in kaptinlin Striking allows Path Traversal.This issue affects Striking: from n/a through 2.3.4.

  • CVE-2024-37224HigJul 9, 2024
    risk 0.49cvss 7.5epss 0.01

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in smartypants SP Project & Document Manager.This issue affects SP Project & Document Manager: from n/a through 4.71.

  • CVE-2024-37090HigJul 9, 2024
    risk 0.55cvss 8.5epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2; Consulting…

  • CVE-2023-3285HigJul 9, 2024
    risk 0.50cvss 7.7epss 0.00

    A BOLA vulnerability in POST /appointments allows a low privileged user to create an appointment for any user in the system (including admin). This results in unauthorized data manipulation.

  • CVE-2024-6069HigJul 9, 2024
    risk 0.50cvss 8.8epss 0.01

    The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction plugin for WordPress is vulnerable to unauthorized arbitrary plugin installation due to a missing capability check on the…

  • CVE-2024-5479HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.00

    The Easy Pixels plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin settings in all versions up to, and including, 2.13 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary…

  • CVE-2024-5456HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    The Panda Video plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.0 via the 'selected_button' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute…

  • CVE-2024-37494HigJul 9, 2024
    risk 0.55cvss 8.5epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in KaineLabs Youzify.This issue affects Youzify: from n/a through 1.2.5.

  • CVE-2024-37486HigJul 9, 2024
    risk 0.49cvss 7.6epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paid Memberships Pro.This issue affects Paid Memberships Pro: from n/a through 3.0.5.

  • CVE-2024-37256HigJul 9, 2024
    risk 0.49cvss 7.6epss 0.01

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.1.

  • CVE-2024-37225HigJul 9, 2024
    risk 0.55cvss 8.5epss 0.00

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho Marketing Automation.This issue affects Zoho Marketing Automation: from n/a through 1.2.7.

  • CVE-2024-6321HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The ScrollTo Bottom plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.1.1. This is due to missing nonce validation and missing file type validation in the 'options_page' function. This makes it possible…

  • CVE-2024-6320HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The ScrollTo Top plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.2.2. This is due to missing nonce validation and missing file type validation in the 'options_page' function. This makes it possible for…

  • CVE-2024-6317HigJul 9, 2024
    risk 0.50cvss 8.8epss 0.01

    The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is due to missing nonce validation and the plugin not properly validating a file or its path prior to…

  • CVE-2024-6316HigJul 9, 2024
    risk 0.50cvss 8.8epss 0.01

    The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is due to missing nonce validation and missing file type validation in the…

  • CVE-2024-6310HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The Advanced AJAX Page Loader plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 2.7.7. This is due to missing nonce validation in the 'admin_init_AAPL' function and missing file type validation in the…

  • CVE-2024-6309HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The Attachment File Icons (AF Icons) plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 1.3. This is due to missing nonce validation in the 'afi_overview' function and missing file type validation in the…

  • CVE-2024-6180HigJul 9, 2024
    risk 0.40cvss 7.2epss 0.00

    The EventON plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'eventon_import_settings' ajax action in all versions up to, and including, 2.2.15. This makes it possible for unauthenticated attackers to update plugin…

  • CVE-2024-6161HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    The Default Thumbnail Plus plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'get_cache_image' function in all versions up to, and including, 1.0.2.3. This makes it possible for authenticated attackers, with contributor-level…

  • CVE-2024-6123HigJul 9, 2024
    risk 0.40cvss 7.2epss 0.01

    The Bit Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'iconUpload' function in all versions up to, and including, 2.13.3. This makes it possible for authenticated attackers, with administrator-level and above…

  • CVE-2024-28750HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.01

    A remote attacker with high privileges may use a deleting file function to inject OS commands.

  • CVE-2024-28749HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.01

    A remote attacker with high privileges may use a writing file function to inject OS commands.

  • CVE-2024-28748HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.01

    A remote attacker with high privileges may use a reading file function to inject OS commands.

  • CVE-2024-5441HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.01

    The Modern Events Calendar plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the set_featured_image function in all versions up to, and including, 7.11.0. This makes it possible for authenticated attackers, with subscriber access…

  • CVE-2024-6166HigJul 9, 2024
    risk 0.50cvss 8.8epss 0.01

    The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘addons_order’ parameter in all versions up to, and including, 1.5.112 due to insufficient escaping on the user supplied parameter…

  • CVE-2024-39597HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.00

    In SAP Commerce, a user can misuse the forgotten password functionality to gain access to a Composable Storefront B2B site for which early login and registration is activated, without requiring the merchant to approve the account beforehand. If the site is not configured as…

  • CVE-2024-39592HigJul 9, 2024
    risk 0.50cvss 7.7epss 0.00

    Elements of PDCE does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. This allows an attacker to read sensitive information causing high impact on the confidentiality of the application.

  • CVE-2024-5974HigJul 9, 2024
    risk 0.47cvss 7.2epss 0.01

    A buffer overflow in WatchGuard Fireware OS could may allow an authenticated remote attacker with privileged management access to execute arbitrary code with system privileges on the firewall. This issue affects Fireware OS: from 11.9.6 through 12.10.3.

  • CVE-2024-4944HigJul 9, 2024
    risk 0.51cvss 7.8epss 0.00

    A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows enables a local user to execute arbitrary commands with elevated privileged.

  • CVE-2024-5793HigJul 9, 2024
    risk 0.57cvss 8.8epss 0.00

    The Houzez Theme - Functionality plugin for WordPress is vulnerable to SQL Injection via the ‘currency_code’ parameter in all versions up to, and including, 3.2.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing…

  • CVE-2024-5549HigJul 9, 2024
    risk 0.00cvss 8.1epss 0.00

    A CORS misconfiguration in the stitionai/devika repository allows attackers to steal sensitive information such as logs, browser sessions, and settings containing private API keys from other services. This vulnerability also enables attackers to perform actions on behalf of the…

  • CVE-2024-5971HigJul 8, 2024
    risk 0.42cvss 7.5epss 0.03

    A vulnerability was found in Undertow, where the chunked response hangs after the body was flushed. The response headers and body were sent but the client would continue waiting as Undertow does not send the expected 0\r\n termination of the chunked response. This results in…

  • CVE-2024-6227HigJul 8, 2024
    risk 0.49cvss 7.5epss 0.01

    A vulnerability in aimhubio/aim version 3.19.3 allows an attacker to cause an infinite loop by configuring the remote tracking server to point at itself. This results in the server endlessly connecting to itself, rendering it unable to respond to other connections.

  • CVE-2024-6409HigJul 8, 2024
    risk 0.41cvss 7.0epss 0.28

    A race condition vulnerability was discovered in how signals are handled by OpenSSH's server (sshd). If a remote attacker does not authenticate within a set time period, then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions…

  • CVE-2024-39896HigJul 8, 2024
    risk 0.42cvss 7.5epss 0.01

    Directus is a real-time API and App dashboard for managing SQL database content. When relying on SSO providers in combination with local authentication it can be possible to enumerate existing SSO users in the instance. This is possible because if an email address exists in…

  • CVE-2024-6563HigJul 8, 2024
    risk 0.00cvss 7.5epss 0.00

    Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Renesas arm-trusted-firmware allows Local Execution of Code. This vulnerability is associated with program files https://github.Com/renesas-rcar/arm-trusted-firmware/blob/rcar_gen3_v2.5/drive…

  • CVE-2024-39202HigJul 8, 2024
    risk 0.57cvss 8.8epss 0.01

    D-Link DIR-823X firmware - 240126 was discovered to contain a remote command execution (RCE) vulnerability via the dhcpd_startip parameter at /goform/set_lan_settings.

  • CVE-2024-31504HigJul 8, 2024
    risk 0.49cvss 7.5epss 0.01

    Buffer Overflow vulnerability in SILA Embedded Solutions GmbH freemodbus v.2018-09-12 allows a remtoe attacker to cause a denial of service via the LINUXTCP server component.

  • CVE-2024-21778HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    A heap-based buffer overflow vulnerability exists in the configuration file mib_init_value_array functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted .dat file can lead to arbitrary code execution. An attacker can upload a malicious file to trigger this…

  • CVE-2023-50383HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.02

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these…

  • CVE-2023-50382HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.02

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these…

  • CVE-2023-50381HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.03

    Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary command execution. An attacker can send a series of HTTP requests to trigger these…

  • CVE-2023-50330HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

  • CVE-2023-50244HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these…

  • CVE-2023-50243HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    Two stack-based buffer overflow vulnerabilities exist in the boa formIpQoS functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger these…

  • CVE-2023-50240HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger…

  • CVE-2023-50239HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    Two stack-based buffer overflow vulnerabilities exist in the boa set_RadvdInterfaceParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger…

  • CVE-2023-49867HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa formWsc functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability.

  • CVE-2023-49595HigJul 8, 2024
    risk 0.47cvss 7.2epss 0.01

    A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger…