CVE Database

9306+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2024-51789
10.0 CRITICAL

Unrestricted Upload of File with Dangerous Type vulnerability in UjW0L Image Classify image-classify allows Upload a Web Shell to a Web Server.This issue affects Image …

Nov 11, 2024
CVE-2024-51788
10.0 CRITICAL

Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Wolfe The Novel Design Store Directory noveldesign-store-directory allows Upload a Web Shell to a Web …

Nov 11, 2024
CVE-2021-35473
9.1 CRITICAL

An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token …

Nov 10, 2024
CVE-2024-46613
9.8 CRITICAL

WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This …

Nov 10, 2024
CVE-2024-10871
9.8 CRITICAL

The Category Ajax Filter plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.8.2 via the 'params[caf-post-layout]' parameter. …

Nov 9, 2024
CVE-2024-10801
9.8 CRITICAL

The WordPress User Extra Fields plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in …

Nov 9, 2024
CVE-2024-10589
9.8 CRITICAL

The Leopard - WordPress Offload Media plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a …

Nov 9, 2024
CVE-2024-10547
9.8 CRITICAL

The WP Membership plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the user_profile_image_upload() function in all versions …

Nov 9, 2024
CVE-2024-10508
9.8 CRITICAL

The RegistrationMagic – User Registration Plugin with Custom Registration Forms plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up …

Nov 9, 2024
CVE-2024-10470
9.8 CRITICAL

The WPLMS Learning Management System for WordPress, WordPress LMS theme for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path …

Nov 9, 2024
CVE-2024-10627
9.8 CRITICAL

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_manage_file_chunk_upload() function in …

Nov 9, 2024
CVE-2024-10625
9.8 CRITICAL

The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_tmp_uploaded_file() function in …

Nov 9, 2024
CVE-2024-10586
9.8 CRITICAL

The Debug Tool plugin for WordPress is vulnerable to arbitrary file creation due to a missing capability check on the dbt_pull_image() function and missing file …

Nov 9, 2024
CVE-2024-10285
9.8 CRITICAL

The CE21 Suite plugin for WordPress is vulnerable to sensitive information disclosure via the plugin-log.txt in versions up to, and including, 2.2.0. This makes it …

Nov 9, 2024
CVE-2024-10284
9.8 CRITICAL

The CE21 Suite plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.2.0. This is due to hardcoded encryption key …

Nov 9, 2024
CVE-2024-52009
9.8 CRITICAL

Atlantis is a self-hosted golang application that listens for Terraform pull request events via webhooks. Atlantis logs contains GitHub credentials (tokens `ghs_...`) when they are …

Nov 8, 2024
CVE-2024-35426
9.8 CRITICAL

vmir e8117 was discovered to contain a stack overflow via the init_local_vars function at /src/vmir_wasm_parser.c.

Nov 8, 2024
CVE-2024-48073
9.8 CRITICAL

sunniwell HT3300 before 1.0.0.B022.2 is vulnerable to Insecure Permissions. The /usr/local/bin/update program, which is responsible for updating the software in the HT3300 device, is given …

Nov 8, 2024
CVE-2024-51211
9.8 CRITICAL

SQL injection vulnerability exists in OS4ED openSIS-Classic Version 9.1, specifically in the resetuserinfo.php file. The vulnerability is due to improper input validation of the $username_stn_id …

Nov 8, 2024
CVE-2024-50811
9.1 CRITICAL

hopetree izone lts c011b48 contains a server-side request forgery (SSRF) vulnerability in the active push function as \\apps\\tool\\apis\\bd_push.py does not securely filter user input through …

Nov 8, 2024
CVE-2024-45763
9.1 CRITICAL

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high …

Nov 8, 2024
CVE-2024-50966
9.3 CRITICAL

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/doAdminAction.php?act=addAdmin.

Nov 8, 2024
CVE-2024-45765
9.1 CRITICAL

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A high …

Nov 8, 2024
CVE-2024-45764
9.0 CRITICAL

Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) a Missing Critical Step in Authentication vulnerability. An unauthenticated attacker with remote access could potentially exploit this …

Nov 8, 2024
CVE-2024-50588
9.8 CRITICAL

An unauthenticated attacker with access to the local network of the medical office can use known default credentials to gain remote DBA access to the …

Nov 8, 2024
CVE-2024-7982
9.6 CRITICAL

The Registrations for the Events Calendar WordPress plugin before 2.12.4 does not sanitise and escape some parameters when accepting event registrations, which could allow unauthenticated …

Nov 8, 2024
CVE-2023-27195
9.8 CRITICAL

Trimble TM4Web 22.2.0 allows unauthenticated attackers to access /inc/tm_ajax.msw?func=UserfromUUID&uuid= to retrieve the last registration access code and use this access code to register a valid …

Nov 8, 2024
CVE-2020-8007
9.8 CRITICAL

The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2) is vulnerable to OS command injection via three fields of …

Nov 8, 2024
CVE-2024-50766
9.8 CRITICAL

SourceCodester Survey Application System 1.0 is vulnerable to SQL Injection in takeSurvey.php via the id parameter.

Nov 7, 2024
CVE-2024-10007
9.1 CRITICAL

A path collision and arbitrary code execution vulnerability was identified in GitHub Enterprise Server that allowed container escape to escalate to root via ghe-firejail path. …

Nov 7, 2024
CVE-2019-20461
9.8 CRITICAL

An issue was discovered on Alecto IVM-100 2019-11-12 devices. The device uses a custom UDP protocol to start and control video and audio services. The …

Nov 7, 2024
CVE-2024-47073
9.1 CRITICAL

DataEase is an open source data visualization analysis tool that helps users quickly analyze data and gain insights into business trends. In affected versions a …

Nov 7, 2024
CVE-2019-20457
9.1 CRITICAL

An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-interface password hash can be retrieved without authentication, because the response header of any …

Nov 7, 2024
CVE-2024-51504
9.1 CRITICAL

When using IPAuthenticationProvider in ZooKeeper Admin Server there is a possibility of Authentication Bypass by Spoofing -- this only impacts IP based authentication implemented in …

Nov 7, 2024
CVE-2024-20418
10.0 CRITICAL

A vulnerability in the web-based management interface of Cisco Unified Industrial Wireless Software for Cisco Ultra-Reliable Wireless Backhaul (URWB) Access Points could allow an unauthenticated, …

Nov 6, 2024
CVE-2024-10081
10.0 CRITICAL

CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Authentication bypass occurs when the API URL …

Nov 6, 2024
CVE-2024-8615
10.0 CRITICAL

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_location_load_excel_file_callback() function in …

Nov 6, 2024
CVE-2024-8614
9.9 CRITICAL

The JobSearch WP Job Board plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the jobsearch_wp_handle_upload() function in …

Nov 6, 2024
CVE-2024-9307
9.9 CRITICAL

The mFolio Lite plugin for WordPress is vulnerable to file uploads due to a missing capability check in all versions up to, and including, 1.2.1. …

Nov 6, 2024
CVE-2024-51358
9.8 CRITICAL

An issue in Linux Server Heimdall v.2.6.1 allows a remote attacker to execute arbitrary code via a crafted script to the Add new application.

Nov 5, 2024
CVE-2024-51115
9.8 CRITICAL

DCME-320 v7.4.12.90 was discovered to contain a command injection vulnerability.

Nov 5, 2024
CVE-2024-48746
9.8 CRITICAL

An issue in Lens Visual integration with Power BI v.4.0.0.3 allows a remote attacker to execute arbitrary code via the Natural language processing component

Nov 5, 2024
CVE-2024-48176
9.8 CRITICAL

Lylme Spage v1.9.5 is vulnerable to Incorrect Access Control. There is no limit on the number of login attempts, and the verification code will not …

Nov 5, 2024
CVE-2024-47460
9.0 CRITICAL

Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's …

Nov 5, 2024
CVE-2024-42509
9.8 CRITICAL

Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's …

Nov 5, 2024
CVE-2024-51745
10.0 CRITICAL

Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", …

Nov 5, 2024
CVE-2024-51132
9.8 CRITICAL

An XML External Entity (XXE) vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted …

Nov 5, 2024
CVE-2023-29125
9.0 CRITICAL

A heap buffer overflow could be triggered by sending a specific packet to TCP port 7700.

Nov 5, 2024
CVE-2023-29121
9.6 CRITICAL

Waybox Enel TCF Agent service could be used to get administrator’s privileges over the Waybox system.

Nov 5, 2024
CVE-2023-29120
9.6 CRITICAL

Waybox Enel X web management application could be used to execute arbitrary OS commands and provide administrator’s privileges over the Waybox system.

Nov 5, 2024

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.