#ExploitObserverAlert
CVE-2022-2554
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-2554. The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example
FIRST-EPSS: 0.000580000
NVD-IS: 3.6
NVD-ES: 1.2
CVE-2022-2554
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-2554. The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example
FIRST-EPSS: 0.000580000
NVD-IS: 3.6
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2015-6032
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2015-6032. Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic keys, which allows remote attackers to create digital signatures for code by leveraging knowledge of a key from a different installation.
FIRST-EPSS: 0.004480000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2015-6032
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2015-6032. Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic keys, which allows remote attackers to create digital signatures for code by leveraging knowledge of a key from a different installation.
FIRST-EPSS: 0.004480000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2015-7501
DESCRIPTION: Exploit Observer has 98 entries related to CVE-2015-7501. Red Hat JBoss A-MQ 6.x; BPM Suite (BPMS) 6.x; BRMS 6.x and 5.x; Data Grid (JDG) 6.x; Data Virtualization (JDV) 6.x and 5.x; Enterprise Application Platform 6.x, 5.x, and 4.3.x; Fuse 6.x; Fuse Service Works (FSW) 6.x; Operations Network (JBoss ON) 3.x; Portal 6.x; SOA Platform (SOA-P) 5.x; Web Server (JWS) 3.x; Red Hat OpenShift/xPAAS 3.x; and Red Hat Subscription Asset Manager 1.3 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.010230000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2015-7501
DESCRIPTION: Exploit Observer has 98 entries related to CVE-2015-7501. Red Hat JBoss A-MQ 6.x; BPM Suite (BPMS) 6.x; BRMS 6.x and 5.x; Data Grid (JDG) 6.x; Data Virtualization (JDV) 6.x and 5.x; Enterprise Application Platform 6.x, 5.x, and 4.3.x; Fuse 6.x; Fuse Service Works (FSW) 6.x; Operations Network (JBoss ON) 3.x; Portal 6.x; SOA Platform (SOA-P) 5.x; Web Server (JWS) 3.x; Red Hat OpenShift/xPAAS 3.x; and Red Hat Subscription Asset Manager 1.3 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.010230000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-2260
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-2260. The GiveWP WordPress plugin before 2.21.3 does not have CSRF in place when exporting data, and does not validate the exporting parameters such as dates, which could allow attackers to make a logged in admin DoS the web server via a CSRF attack as the plugin will try to retrieve data from the database many times which leads to overwhelm the target's CPU.
FIRST-EPSS: 0.000530000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2022-2260
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-2260. The GiveWP WordPress plugin before 2.21.3 does not have CSRF in place when exporting data, and does not validate the exporting parameters such as dates, which could allow attackers to make a logged in admin DoS the web server via a CSRF attack as the plugin will try to retrieve data from the database many times which leads to overwhelm the target's CPU.
FIRST-EPSS: 0.000530000
NVD-IS: 3.6
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-5622
DESCRIPTION: Exploit Observer has 54 entries related to CVE-2015-5622. Cross-site scripting (XSS) vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the Author or Contributor role to place a crafted shortcode inside an HTML element, related to wp-includes/kses.php and wp-includes/shortcodes.php.
FIRST-EPSS: 0.004230000
NVD-IS: 2.9
NVD-ES: 6.8
CVE-2015-5622
DESCRIPTION: Exploit Observer has 54 entries related to CVE-2015-5622. Cross-site scripting (XSS) vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the Author or Contributor role to place a crafted shortcode inside an HTML element, related to wp-includes/kses.php and wp-includes/shortcodes.php.
FIRST-EPSS: 0.004230000
NVD-IS: 2.9
NVD-ES: 6.8
#ExploitObserverAlert
CVE-2023-4911
DESCRIPTION: Exploit Observer has 237 entries related to CVE-2023-4911. A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.
FIRST-EPSS: 0.018070000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-4911
DESCRIPTION: Exploit Observer has 237 entries related to CVE-2023-4911. A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.
FIRST-EPSS: 0.018070000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2018-14847
DESCRIPTION: Exploit Observer has 73 entries related to CVE-2018-14847. MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
FIRST-EPSS: 0.974830000
NVD-IS: 5.2
NVD-ES: 3.9
CVE-2018-14847
DESCRIPTION: Exploit Observer has 73 entries related to CVE-2018-14847. MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
FIRST-EPSS: 0.974830000
NVD-IS: 5.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-1003029
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1003029. A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
FIRST-EPSS: 0.011400000
NVD-IS: 6.0
NVD-ES: 3.1
CVE-2019-1003029
DESCRIPTION: Exploit Observer has 20 entries related to CVE-2019-1003029. A sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.53 and earlier in src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/GroovySandbox.java, src/main/java/org/jenkinsci/plugins/scriptsecurity/sandbox/groovy/SecureGroovyScript.java that allows attackers with Overall/Read permission to execute arbitrary code on the Jenkins master JVM.
FIRST-EPSS: 0.011400000
NVD-IS: 6.0
NVD-ES: 3.1
#ExploitObserverAlert
CVE-2023-38646
DESCRIPTION: Exploit Observer has 78 entries related to CVE-2023-38646. Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary commands on the server, at the server's privilege level. Authentication is not required for exploitation. The other fixed versions are 0.45.4.1, 1.45.4.1, 0.44.7.1, 1.44.7.1, 0.43.7.2, and 1.43.7.2.
FIRST-EPSS: 0.604450000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-38646
DESCRIPTION: Exploit Observer has 78 entries related to CVE-2023-38646. Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary commands on the server, at the server's privilege level. Authentication is not required for exploitation. The other fixed versions are 0.45.4.1, 1.45.4.1, 0.44.7.1, 1.44.7.1, 0.43.7.2, and 1.43.7.2.
FIRST-EPSS: 0.604450000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-1000861
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2018-1000861. A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java objects by accessing crafted URLs that were not intended to be invoked this way.
FIRST-EPSS: 0.971120000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2018-1000861
DESCRIPTION: Exploit Observer has 66 entries related to CVE-2018-1000861. A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier, LTS 2.138.3 and earlier in stapler/core/src/main/java/org/kohsuke/stapler/MetaClass.java that allows attackers to invoke some methods on Java objects by accessing crafted URLs that were not intended to be invoked this way.
FIRST-EPSS: 0.971120000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-5069
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5069. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5069
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5069. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-2399
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2012-2399. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.
FIRST-EPSS: 0.014630000
NVD-IS: 10.0
NVD-ES: 10.0
CVE-2012-2399
DESCRIPTION: Exploit Observer has 17 entries related to CVE-2012-2399. Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, TinyMCE Image Manager 1.1 and earlier, and other products allows remote attackers to inject arbitrary web script or HTML via the buttonText parameter, a different vulnerability than CVE-2012-3414.
FIRST-EPSS: 0.014630000
NVD-IS: 10.0
NVD-ES: 10.0
#ExploitObserverAlert
CVE-2016-2331
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2331. The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors.
FIRST-EPSS: 0.004230000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-2331
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2331. The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 has a default password, which makes it easier for remote attackers to obtain access via unspecified vectors.
FIRST-EPSS: 0.004230000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-2333
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2333. SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 use the same hardcoded encryption key across different customers' installations, which allows attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2016-2333
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2333. SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 use the same hardcoded encryption key across different customers' installations, which allows attackers to defeat cryptographic protection mechanisms by leveraging knowledge of this key from another installation.
FIRST-EPSS: 0.000860000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-0674
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-0674. A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
FIRST-EPSS: 0.974230000
NVD-IS: 5.9
NVD-ES: 1.6
CVE-2020-0674
DESCRIPTION: Exploit Observer has 35 entries related to CVE-2020-0674. A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
FIRST-EPSS: 0.974230000
NVD-IS: 5.9
NVD-ES: 1.6
#ExploitObserverAlert
CVE-2013-2205
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2013-2205. The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.
FIRST-EPSS: 0.002420000
NVD-IS: 2.9
NVD-ES: 8.6
CVE-2013-2205
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2013-2205. The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site.
FIRST-EPSS: 0.002420000
NVD-IS: 2.9
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2016-5070
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5070. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5070
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5070. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-5066
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5066. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2016-5066
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-5066. Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
FIRST-EPSS: 0.006590000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2016-2332
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2332. flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 allows remote authenticated users to execute arbitrary commands via the 5066 (aka dnsmasq) parameter.
FIRST-EPSS: 0.003040000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2016-2332
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2016-2332. flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 allows remote authenticated users to execute arbitrary commands via the 5066 (aka dnsmasq) parameter.
FIRST-EPSS: 0.003040000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-9284
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2015-9284. The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vulnerable to Cross-Site Request Forgery when used as part of the Ruby on Rails framework, allowing accounts to be connected without user intent, user interaction, or feedback to the user. This permits a secondary account to be able to sign into the web application as the primary account.
FIRST-EPSS: 0.001380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2015-9284
DESCRIPTION: Exploit Observer has 19 entries related to CVE-2015-9284. The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vulnerable to Cross-Site Request Forgery when used as part of the Ruby on Rails framework, allowing accounts to be connected without user intent, user interaction, or feedback to the user. This permits a secondary account to be able to sign into the web application as the primary account.
FIRST-EPSS: 0.001380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2019-10392
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2019-10392. Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection.
FIRST-EPSS: 0.947360000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2019-10392
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2019-10392. Jenkins Git Client Plugin 2.8.4 and earlier and 3.0.0-rc did not properly restrict values passed as URL argument to an invocation of 'git ls-remote', resulting in OS command injection.
FIRST-EPSS: 0.947360000
NVD-IS: 5.9
NVD-ES: 2.8