#ExploitObserverAlert
CVE-2023-4917
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4917. The Leyka plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 3.30.3 via the 'leyka_ajax_get_env_and_options' function. This can allow authenticated attackers with subscriber-level permissions or above to extract sensitive data including Sberbank API key and password, PayPal Client Secret, and more keys and passwords.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2023-4917
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4917. The Leyka plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 3.30.3 via the 'leyka_ajax_get_env_and_options' function. This can allow authenticated attackers with subscriber-level permissions or above to extract sensitive data including Sberbank API key and password, PayPal Client Secret, and more keys and passwords.
FIRST-EPSS: 0.000490000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-26352
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-26352. An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous content creation is enabled, this allows an unauthenticated attacker to upload an executable file, such as a .jsp file, that can lead to remote code execution.
FIRST-EPSS: 0.974840000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-26352
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-26352. An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can craft a multipart form request to post a file whose filename is not initially sanitized. This allows directory traversal, in which the file is saved outside of the intended storage location. If anonymous content creation is enabled, this allows an unauthenticated attacker to upload an executable file, such as a .jsp file, that can lead to remote code execution.
FIRST-EPSS: 0.974840000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-39345
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-39345. The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/wp-hal.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 2.1.1. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.
FIRST-EPSS: 0.000620000
NVD-IS: 2.7
NVD-ES: 1.7
CVE-2021-39345
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2021-39345. The HAL WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/wp-hal.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 2.1.1. This affects multi-site installations where unfiltered_html is disabled for administrators, and sites where unfiltered_html is disabled.
FIRST-EPSS: 0.000620000
NVD-IS: 2.7
NVD-ES: 1.7
#ExploitObserverAlert
CVE-2020-1045
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-1045. A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.
FIRST-EPSS: 0.002430000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-1045
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-1045. A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.
FIRST-EPSS: 0.002430000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-1996
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2022-1996. Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
FIRST-EPSS: 0.002450000
NVD-IS: 5.2
NVD-ES: 3.9
CVE-2022-1996
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2022-1996. Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
FIRST-EPSS: 0.002450000
NVD-IS: 5.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-40674
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2022-40674. libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
FIRST-EPSS: 0.004320000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2022-40674
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2022-40674. libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
FIRST-EPSS: 0.004320000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2022-44667
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-44667. Windows Media Remote Code Execution Vulnerability
FIRST-EPSS: 0.001250000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-44667
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-44667. Windows Media Remote Code Execution Vulnerability
FIRST-EPSS: 0.001250000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2023-1234
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-1234. Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)
FIRST-EPSS: 0.000590000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2023-1234
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-1234. Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)
FIRST-EPSS: 0.000590000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-5714
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2015-5714. Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
FIRST-EPSS: 0.167530000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2015-5714
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2015-5714. Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
FIRST-EPSS: 0.167530000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-1939
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-1939. The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
FIRST-EPSS: 0.000860000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2022-1939
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-1939. The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
FIRST-EPSS: 0.000860000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2017-6817
DESCRIPTION: Exploit Observer has 43 entries related to CVE-2017-6817. In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.
FIRST-EPSS: 0.000900000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2017-6817
DESCRIPTION: Exploit Observer has 43 entries related to CVE-2017-6817. In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.
FIRST-EPSS: 0.000900000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2022-41352
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2022-41352. An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
FIRST-EPSS: 0.957590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-41352
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2022-41352. An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
FIRST-EPSS: 0.957590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-5623
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5623. WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.
FIRST-EPSS: 0.001330000
NVD-IS: 2.9
NVD-ES: 8.0
CVE-2015-5623
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5623. WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.
FIRST-EPSS: 0.001330000
NVD-IS: 2.9
NVD-ES: 8.0
#ExploitObserverAlert
CVE-2005-1513
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2005-1513. Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
FIRST-EPSS: 0.052070000
NVD-IS: 2.9
NVD-ES: 10.0
CVE-2005-1513
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2005-1513. Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
FIRST-EPSS: 0.052070000
NVD-IS: 2.9
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2016-5067
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5067. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
FIRST-EPSS: 0.001330000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-5067
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5067. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
FIRST-EPSS: 0.001330000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-5715
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5715. The mw_editPost function in wp-includes/class-wp-xmlrpc-server.php in the XMLRPC subsystem in WordPress before 4.3.1 allows remote authenticated users to bypass intended access restrictions, and arrange for a private post to be published and sticky, via unspecified vectors.
FIRST-EPSS: 0.001740000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2015-5715
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5715. The mw_editPost function in wp-includes/class-wp-xmlrpc-server.php in the XMLRPC subsystem in WordPress before 4.3.1 allows remote authenticated users to bypass intended access restrictions, and arrange for a private post to be published and sticky, via unspecified vectors.
FIRST-EPSS: 0.001740000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-5071
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5071. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
FIRST-EPSS: 0.001440000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-5071
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5071. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
FIRST-EPSS: 0.001440000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-27898
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-27898. Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 2.8
CVE-2023-27898
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-27898. Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-6420
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2015-6420. Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.008800000
NVD-IS: 6.4
NVD-ES: 10.0
CVE-2015-6420
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2015-6420. Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.008800000
NVD-IS: 6.4
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2019-9053
DESCRIPTION: Exploit Observer has 50 entries related to CVE-2019-9053. An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
FIRST-EPSS: 0.016140000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2019-9053
DESCRIPTION: Exploit Observer has 50 entries related to CVE-2019-9053. An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
FIRST-EPSS: 0.016140000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2016-3510
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2016-3510. Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, a different vulnerability than CVE-2016-3586.
FIRST-EPSS: 0.034040000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-3510
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2016-3510. Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, a different vulnerability than CVE-2016-3586.
FIRST-EPSS: 0.034040000
NVD-IS: 5.9
NVD-ES: 3.9