#ExploitObserverAlert
CVE-2020-1045
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-1045. A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.
FIRST-EPSS: 0.002430000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-1045
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2020-1045. A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.
FIRST-EPSS: 0.002430000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-1996
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2022-1996. Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
FIRST-EPSS: 0.002450000
NVD-IS: 5.2
NVD-ES: 3.9
CVE-2022-1996
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2022-1996. Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0.
FIRST-EPSS: 0.002450000
NVD-IS: 5.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-40674
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2022-40674. libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
FIRST-EPSS: 0.004320000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2022-40674
DESCRIPTION: Exploit Observer has 28 entries related to CVE-2022-40674. libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.
FIRST-EPSS: 0.004320000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2022-44667
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-44667. Windows Media Remote Code Execution Vulnerability
FIRST-EPSS: 0.001250000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-44667
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-44667. Windows Media Remote Code Execution Vulnerability
FIRST-EPSS: 0.001250000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2023-1234
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-1234. Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)
FIRST-EPSS: 0.000590000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2023-1234
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2023-1234. Inappropriate implementation in Intents in Google Chrome on Android prior to 111.0.5563.64 allowed a remote attacker to perform domain spoofing via a crafted HTML page. (Chromium security severity: Low)
FIRST-EPSS: 0.000590000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-5714
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2015-5714. Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
FIRST-EPSS: 0.167530000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2015-5714
DESCRIPTION: Exploit Observer has 41 entries related to CVE-2015-5714. Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML by leveraging the mishandling of unclosed HTML elements during processing of shortcode tags.
FIRST-EPSS: 0.167530000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-1939
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-1939. The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
FIRST-EPSS: 0.000860000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2022-1939
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-1939. The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
FIRST-EPSS: 0.000860000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2017-6817
DESCRIPTION: Exploit Observer has 43 entries related to CVE-2017-6817. In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.
FIRST-EPSS: 0.000900000
NVD-IS: 2.7
NVD-ES: 2.3
CVE-2017-6817
DESCRIPTION: Exploit Observer has 43 entries related to CVE-2017-6817. In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.
FIRST-EPSS: 0.000900000
NVD-IS: 2.7
NVD-ES: 2.3
#ExploitObserverAlert
CVE-2022-41352
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2022-41352. An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
FIRST-EPSS: 0.957590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-41352
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2022-41352. An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload arbitrary files through amavis via a cpio loophole (extraction to /opt/zimbra/jetty/webapps/zimbra/public) that can lead to incorrect access to any other user accounts. Zimbra recommends pax over cpio. Also, pax is in the prerequisites of Zimbra on Ubuntu; however, pax is no longer part of a default Red Hat installation after RHEL 6 (or CentOS 6). Once pax is installed, amavis automatically prefers it over cpio.
FIRST-EPSS: 0.957590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2015-5623
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5623. WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.
FIRST-EPSS: 0.001330000
NVD-IS: 2.9
NVD-ES: 8.0
CVE-2015-5623
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5623. WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save action to wp-admin/post.php.
FIRST-EPSS: 0.001330000
NVD-IS: 2.9
NVD-ES: 8.0
#ExploitObserverAlert
CVE-2005-1513
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2005-1513. Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
FIRST-EPSS: 0.052070000
NVD-IS: 2.9
NVD-ES: 10.0
CVE-2005-1513
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2005-1513. Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
FIRST-EPSS: 0.052070000
NVD-IS: 2.9
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2016-5067
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5067. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
FIRST-EPSS: 0.001330000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-5067
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5067. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
FIRST-EPSS: 0.001330000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-5715
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5715. The mw_editPost function in wp-includes/class-wp-xmlrpc-server.php in the XMLRPC subsystem in WordPress before 4.3.1 allows remote authenticated users to bypass intended access restrictions, and arrange for a private post to be published and sticky, via unspecified vectors.
FIRST-EPSS: 0.001740000
NVD-IS: 1.4
NVD-ES: 2.8
CVE-2015-5715
DESCRIPTION: Exploit Observer has 26 entries related to CVE-2015-5715. The mw_editPost function in wp-includes/class-wp-xmlrpc-server.php in the XMLRPC subsystem in WordPress before 4.3.1 allows remote authenticated users to bypass intended access restrictions, and arrange for a private post to be published and sticky, via unspecified vectors.
FIRST-EPSS: 0.001740000
NVD-IS: 1.4
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-5071
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5071. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
FIRST-EPSS: 0.001440000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-5071
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5071. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
FIRST-EPSS: 0.001440000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-27898
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-27898. Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 2.8
CVE-2023-27898
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-27898. Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.
FIRST-EPSS: 0.000910000
NVD-IS: 6.0
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-6420
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2015-6420. Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.008800000
NVD-IS: 6.4
NVD-ES: 10.0
CVE-2015-6420
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2015-6420. Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.008800000
NVD-IS: 6.4
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2019-9053
DESCRIPTION: Exploit Observer has 50 entries related to CVE-2019-9053. An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
FIRST-EPSS: 0.016140000
NVD-IS: 5.9
NVD-ES: 2.2
CVE-2019-9053
DESCRIPTION: Exploit Observer has 50 entries related to CVE-2019-9053. An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
FIRST-EPSS: 0.016140000
NVD-IS: 5.9
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2016-3510
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2016-3510. Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, a different vulnerability than CVE-2016-3586.
FIRST-EPSS: 0.034040000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-3510
DESCRIPTION: Exploit Observer has 86 entries related to CVE-2016-3510. Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS Core Components, a different vulnerability than CVE-2016-3586.
FIRST-EPSS: 0.034040000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2011-2523
DESCRIPTION: Exploit Observer has 58 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
FIRST-EPSS: 0.883420000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2011-2523
DESCRIPTION: Exploit Observer has 58 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
FIRST-EPSS: 0.883420000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-1003002
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2019-1003002. A sandbox bypass vulnerability exists in Pipeline: Declarative Plugin 1.3.3 and earlier in pipeline-model-definition/src/main/groovy/org/jenkinsci/plugins/pipeline/modeldefinition/parser/Converter.groovy that allows attackers with Overall/Read permission to provide a pipeline script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.
FIRST-EPSS: 0.796510000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-1003002
DESCRIPTION: Exploit Observer has 15 entries related to CVE-2019-1003002. A sandbox bypass vulnerability exists in Pipeline: Declarative Plugin 1.3.3 and earlier in pipeline-model-definition/src/main/groovy/org/jenkinsci/plugins/pipeline/modeldefinition/parser/Converter.groovy that allows attackers with Overall/Read permission to provide a pipeline script to an HTTP endpoint that can result in arbitrary code execution on the Jenkins master JVM.
FIRST-EPSS: 0.796510000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2012-3414
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2012-3414. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers to inject arbitrary web script or HTML via the movieName parameter, related to the "ExternalInterface.call" function.
FIRST-EPSS: 0.034160000
NVD-IS: 2.9
NVD-ES: 8.6
CVE-2012-3414
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2012-3414. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers to inject arbitrary web script or HTML via the movieName parameter, related to the "ExternalInterface.call" function.
FIRST-EPSS: 0.034160000
NVD-IS: 2.9
NVD-ES: 8.6