VYPR

CVEs

100,082 total · page 672 of 2,002

  • CVE-2024-5091HigJun 8, 2024
    risk 0.41cvss 7.4epss 0.00

    The SKT Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Age Gate and Creative Slider widgets in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping on user supplied attributes.…

  • CVE-2024-3668HigJun 8, 2024
    risk 0.57cvss 8.8epss 0.00

    The PowerPack Pro for Elementor plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.10.17. This is due to the plugin not restricting low privileged users from setting a default role for a registration form. This makes it possible…

  • CVE-2024-0444HigJun 7, 2024
    risk 0.00cvss 8.8epss 0.02

    GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but…

  • CVE-2024-1694HigJun 7, 2024
    risk 0.51cvss 7.8epss 0.00

    Inappropriate implementation in Google Updator prior to 1.3.36.351 in Google Chrome allowed a local attacker to bypass discretionary access control via a malicious file. (Chromium security severity: High)

  • CVE-2023-7261HigJun 7, 2024
    risk 0.51cvss 7.8epss 0.00

    Inappropriate implementation in Google Updator prior to 1.3.36.351 in Google Chrome allowed a local attacker to perform privilege escalation via a malicious file. (Chromium security severity: High)

  • CVE-2023-49224HigJun 7, 2024
    risk 0.52cvss 8.0epss 0.00

    Precor touchscreen console P62, P80, and P82 contains a default SSH public key in the authorized_keys file. A remote attacker could use this key to gain root privileges.

  • CVE-2023-49223HigJun 7, 2024
    risk 0.57cvss 8.8epss 0.00

    Precor touchscreen console P62, P80, and P82 could allow a remote attacker to obtain sensitive information because the root password is stored in /etc/passwd. An attacker could exploit this to extract files and obtain sensitive information.

  • CVE-2023-49222HigJun 7, 2024
    risk 0.57cvss 8.8epss 0.00

    Precor touchscreen console P82 contains a private SSH key that corresponds to a default public key. A remote attacker could exploit this to gain root privileges.

  • CVE-2023-49221HigJun 7, 2024
    risk 0.51cvss 7.8epss 0.00

    Precor touchscreen console P62, P80, and P82 could allow a remote attacker (within the local network) to bypass security restrictions, and access the service menu, because there is a hard-coded service code.

  • CVE-2024-36827HigJun 7, 2024
    risk 0.49cvss 7.5epss 0.01

    An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of ebookmeta before v1.2.8 allows attackers to access sensitive information or cause a Denial of Service (DoS) via crafted XML input.

  • CVE-2024-5745HigJun 7, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability was found in itsourcecode Bakery Online Ordering System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/modules/product/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It…

  • CVE-2024-32502HigJun 7, 2024
    risk 0.55cvss 8.4epss 0.00

    An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper reference count checking, which can result in a UAF…

  • CVE-2024-31959HigJun 7, 2024
    risk 0.55cvss 8.4epss 0.00

    An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It lacks a check for the validation of native handles, which can result in code execution.

  • CVE-2024-30162HigJun 7, 2024
    risk 0.47cvss 7.2epss 0.01

    Invision Community through 4.7.16 allows remote code execution via the applications/core/modules/admin/editor/toolbar.php IPS\core\modules\admin\editor\_toolbar::addPlugin() method. This method handles uploaded ZIP files that are extracted into the…

  • CVE-2024-32503HigJun 7, 2024
    risk 0.55cvss 8.4epss 0.00

    An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper memory deallocation checking, which can result in a UAF…

  • CVE-2024-36792HigJun 7, 2024
    risk 0.53cvss 8.2epss 0.00

    An issue in the implementation of the WPS in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to gain access to the router's pin.

  • CVE-2024-36790HigJun 7, 2024
    risk 0.57cvss 8.8epss 0.00

    Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 was discovered to store credentials in plaintext.

  • CVE-2024-36789HigJun 7, 2024
    risk 0.53cvss 8.1epss 0.00

    An issue in Netgear WNR614 JNR1010V2/N300-V1.1.0.54_1.0.1 allows attackers to create passwords that do not conform to defined security standards.

  • CVE-2024-36787HigJun 7, 2024
    risk 0.57cvss 8.8epss 0.01

    An issue in Netgear WNR614 JNR1010V2 N300-V1.1.0.54_1.0.1 allows attackers to bypass authentication and access the administrative interface via unspecified vectors.

  • CVE-2024-5599HigJun 7, 2024
    risk 0.42cvss 7.5epss 0.01

    The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.7 via the 'fileorganizer_ajax_handler' function. This makes it possible for unauthenticated attackers to…

  • CVE-2024-5542HigJun 7, 2024
    risk 0.40cvss 7.2epss 0.00

    The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Navigation Menu widget of the plugin's Mega Menu extension in all versions up to, and including, 2.0.6.1 due…

  • CVE-2024-5733HigJun 7, 2024
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was found in itsourcecode Online Discussion Forum 1.0. It has been rated as critical. This issue affects some unknown processing of the file register_me.php. The manipulation of the argument eaddress leads to sql injection. The attack may be initiated remotely.…

  • CVE-2024-4610HigKEVJun 7, 2024
    risk 0.63cvss 7.8epss 0.01

    Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from…

  • CVE-2024-5637HigJun 7, 2024
    risk 0.42cvss 7.5epss 0.01

    The Market Exporter plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'remove_files' function in all versions up to, and including, 2.0.19. This makes it possible for authenticated attackers, with Subscriber-level access and…

  • CVE-2024-5732HigJun 7, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability was found in Clash up to 0.20.1 on Windows. It has been declared as critical. This vulnerability affects unknown code of the component Proxy Port. The manipulation leads to improper authentication. The attack can be initiated remotely. The exploit has been…

  • CVE-2024-4902HigJun 7, 2024
    risk 0.47cvss 7.2epss 0.01

    The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to time-based SQL Injection via the ‘course_id’ parameter in all versions up to, and including, 2.7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient…

  • CVE-2024-4887HigJun 7, 2024
    risk 0.42cvss 7.5epss 0.01

    The Qi Addons For Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.7.2 via the 'behavior' attributes found in the qi_addons_for_elementor_blog_list shortcode. This makes it possible for authenticated attackers, with…

  • CVE-2023-32475HigJun 7, 2024
    risk 0.49cvss 7.6epss 0.00

    Dell BIOS contains a missing support for integrity check vulnerability. An attacker with physical access to the system could potentially bypass security mechanisms to run arbitrary code on the system.

  • CVE-2023-37539HigJun 6, 2024
    risk 0.55cvss 8.4epss 0.00

    The Domino Catalog template is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. An attacker with the ability to edit documents in the catalog application/database created from this template can embed a cross site scripting attack. The attack would be activated…

  • CVE-2024-36823HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.01

    The encrypt() function of Ninja Core v7.0.0 was discovered to use a weak cryptographic algorithm, leading to a possible leakage of sensitive information.

  • CVE-2024-36774HigJun 6, 2024
    risk 0.47cvss 7.2epss 0.01

    An arbitrary file upload vulnerability in Monstra CMS v3.0.4 allows attackers to execute arbitrary code via uploading a crafted PHP file.

  • CVE-2024-24199HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.00

    smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/dns.c.

  • CVE-2024-24198HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.00

    smartdns commit 54b4dc was discovered to contain a misaligned address at smartdns/src/util.c.

  • CVE-2024-24195HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.00

    robdns commit d76d2e6 was discovered to contain a misaligned address at /src/zonefile-insertion.c.

  • CVE-2024-24194HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.00

    robdns commit d76d2e6 was discovered to contain a NULL pointer dereference via the item->tokens component at /src/conf-parse.c.

  • CVE-2023-51847HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.01

    An issue in obgm and Libcoap v.a3ed466 allows a remote attacker to cause a denial of service via thecoap_context_t function in the src/coap_threadsafe.c:297:3 component.

  • CVE-2023-49441HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.01

    dnsmasq 2.9 is vulnerable to Integer Overflow via forward_query.

  • CVE-2024-5552HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.01

    kubeflow/kubeflow is vulnerable to a Regular Expression Denial of Service (ReDoS) attack due to inefficient regular expression complexity in its email validation mechanism. An attacker can remotely exploit this vulnerability without authentication by providing specially crafted…

  • CVE-2024-5306HigJun 6, 2024
    risk 0.51cvss 7.8epss 0.00

    Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the…

  • CVE-2024-5305HigJun 6, 2024
    risk 0.51cvss 7.8epss 0.00

    Kofax Power PDF PDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that…

  • CVE-2024-5304HigJun 6, 2024
    risk 0.51cvss 7.8epss 0.00

    Kofax Power PDF TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the…

  • CVE-2024-5225HigJun 6, 2024
    risk 0.40cvss 7.2epss 0.00

    An SQL Injection vulnerability exists in the berriai/litellm repository, specifically within the `/global/spend/logs` endpoint. The vulnerability arises due to improper neutralization of special elements used in an SQL command. The affected code constructs an SQL query by…

  • CVE-2024-5187HigJun 6, 2024
    risk 0.50cvss 8.8epss 0.01

    A vulnerability in the `download_model_with_test_data` function of the onnx/onnx framework, version 1.16.0, allows for arbitrary file overwrite due to inadequate prevention of path traversal attacks in malicious tar files. This vulnerability enables attackers to overwrite any…

  • CVE-2024-5186HigJun 6, 2024
    risk 0.47cvss 7.2epss 0.00

    A Server-Side Request Forgery (SSRF) vulnerability exists in the file upload section of imartinez/privategpt version 0.5.0. This vulnerability allows attackers to send crafted requests that could result in unauthorized access to the local network and potentially sensitive…

  • CVE-2024-5133HigJun 6, 2024
    risk 0.53cvss 8.1epss 0.01

    In lunary-ai/lunary version 1.2.4, an account takeover vulnerability exists due to the exposure of password recovery tokens in API responses. Specifically, when a user initiates the password reset process, the recovery token is included in the response of the `GET…

  • CVE-2024-5130HigJun 6, 2024
    risk 0.49cvss 7.5epss 0.00

    An Incorrect Authorization vulnerability exists in lunary-ai/lunary versions up to and including 1.2.2, which allows unauthenticated users to delete any dataset. The vulnerability is due to the lack of proper authorization checks in the dataset deletion endpoint. Specifically,…

  • CVE-2024-5129HigJun 6, 2024
    risk 0.53cvss 8.2epss 0.00

    A Privilege Escalation Vulnerability exists in lunary-ai/lunary version 1.2.2, where any user can delete any datasets due to missing authorization checks. The vulnerability is present in the dataset deletion functionality, where the application fails to verify if the user…

  • CVE-2024-5128HigJun 6, 2024
    risk 0.57cvss 8.8epss 0.01

    An Insecure Direct Object Reference (IDOR) vulnerability was identified in lunary-ai/lunary, affecting versions up to and including 1.2.2. This vulnerability allows unauthorized users to view, update, or delete any dataset_prompt or dataset_prompt_variation within any dataset or…

  • CVE-2024-5124HigJun 6, 2024
    risk 0.00cvss 7.5epss 0.01

    A timing attack vulnerability exists in the gaizhenbiao/chuanhuchatgpt repository, specifically within the password comparison logic. The vulnerability is present in version 20240310 of the software, where passwords are compared using the '=' operator in Python. This method of…

  • CVE-2024-4888HigJun 6, 2024
    risk 0.46cvss 8.1epss 0.01

    BerriAI's litellm, in its latest version, is vulnerable to arbitrary file deletion due to improper input validation on the `/audio/transcriptions` endpoint. An attacker can exploit this vulnerability by sending a specially crafted request that includes a file path to the server,…