#ExploitObserverAlert
GHSA-xgpm-q3mq-46rq
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-XGPM-Q3MQ-46RQ. Some event attributes are not detected by the isCleanHTML method
GHSS: 8.1
GHSA-xgpm-q3mq-46rq
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-XGPM-Q3MQ-46RQ. Some event attributes are not detected by the isCleanHTML method
GHSS: 8.1
#ExploitObserverAlert
CVE-2023-38675
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-38675. FPE in paddle.linalg.matrix_rank in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
CVE-2023-38675
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-38675. FPE in paddle.linalg.matrix_rank in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
#ExploitObserverAlert
CVE-2023-52322
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-52322. ecrire/public/assembler.php in SPIP before 4.1.3 and 4.2.x before 4.2.7 allows XSS because input from _request() is not restricted to safe characters such as alphanumerics.
CVE-2023-52322
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-52322. ecrire/public/assembler.php in SPIP before 4.1.3 and 4.2.x before 4.2.7 allows XSS because input from _request() is not restricted to safe characters such as alphanumerics.
#ExploitObserverAlert
CVE-2023-6733
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-6733. The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmem_field shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data including user emails, password hashes, usernames, and more.
CVE-2023-6733
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-6733. The WP-Members Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.4.8 via the wpmem_field shortcode. This makes it possible for authenticated attackers, with contributor access and above, to extract sensitive data including user emails, password hashes, usernames, and more.
#ExploitObserverAlert
CVE-2023-46740
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-46740. CubeFS is an open-source cloud-native file storage system. Prior to version 3.3.1, CubeFS used an insecure random string generator to generate user-specific, sensitive keys used to authenticate users in a CubeFS deployment. This could allow an attacker to predict and/or guess the generated string and impersonate a user thereby obtaining higher privileges. When CubeFS creates new users, it creates a piece of sensitive information for the user called the “accessKey”. To create the "accesKey", CubeFS uses an insecure string generator which makes it easy to guess and thereby impersonate the created user. An attacker could leverage the predictable random string generator and guess a users access key and impersonate the user to obtain higher privileges. The issue has been fixed in v3.3.1. There is no other mitigation than to upgrade.
CVE-2023-46740
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-46740. CubeFS is an open-source cloud-native file storage system. Prior to version 3.3.1, CubeFS used an insecure random string generator to generate user-specific, sensitive keys used to authenticate users in a CubeFS deployment. This could allow an attacker to predict and/or guess the generated string and impersonate a user thereby obtaining higher privileges. When CubeFS creates new users, it creates a piece of sensitive information for the user called the “accessKey”. To create the "accesKey", CubeFS uses an insecure string generator which makes it easy to guess and thereby impersonate the created user. An attacker could leverage the predictable random string generator and guess a users access key and impersonate the user to obtain higher privileges. The issue has been fixed in v3.3.1. There is no other mitigation than to upgrade.
#ExploitObserverAlert
GHSA-8x6f-956f-q43w
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-8X6F-956F-Q43W. There is a potential for a mutation XSS (mXSS) vulnerability in AntiSamy caused by flawed parsing of the HTML being sanitized. To be subject to this vulnerability the preserveComments directive must be enabled in your policy file and also allow for certain tags at the same time. As a result, certain crafty inputs can result in elements in comment tags being interpreted as executable when using AntiSamy's sanitized output.
GHSS: 6.1
GHSA-8x6f-956f-q43w
DESCRIPTION: Exploit Observer has 3 entries related to GHSA-8X6F-956F-Q43W. There is a potential for a mutation XSS (mXSS) vulnerability in AntiSamy caused by flawed parsing of the HTML being sanitized. To be subject to this vulnerability the preserveComments directive must be enabled in your policy file and also allow for certain tags at the same time. As a result, certain crafty inputs can result in elements in comment tags being interpreted as executable when using AntiSamy's sanitized output.
GHSS: 6.1
#ExploitObserverAlert
CVE-2023-6004
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-6004. A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter.
CVE-2023-6004
DESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-6004. A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter.
#ExploitObserverAlert
CVE-2023-50092
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50092. APIIDA API Gateway Manager for Broadcom Layer7 v2023.2 is vulnerable to Cross Site Scripting (XSS).
CVE-2023-50092
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-50092. APIIDA API Gateway Manager for Broadcom Layer7 v2023.2 is vulnerable to Cross Site Scripting (XSS).
#ExploitObserverAlert
CVE-2016-4385
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-4385. The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) and Commons BeanUtils libraries.
FIRST-EPSS: 0.070670000
NVD-IS: 3.4
NVD-ES: 3.9
CVE-2016-4385
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2016-4385. The RMI service in HP Network Automation Software 9.1x, 9.2x, 10.0x before 10.00.02.01, and 10.1x before 10.11.00.01 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) and Commons BeanUtils libraries.
FIRST-EPSS: 0.070670000
NVD-IS: 3.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-49639
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49639. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customer_details' parameter of the buyer_invoice_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-49639
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49639. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'customer_details' parameter of the buyer_invoice_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-17240
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2018-17240. There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).
FIRST-EPSS: 0.002190000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2018-17240
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2018-17240. There is a memory dump vulnerability on Netwave IP camera devices at //proc/kcore that allows an unauthenticated attacker to exfiltrate sensitive information from the network configuration (e.g., username and password).
FIRST-EPSS: 0.002190000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-3287
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-3287. Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization class.
FIRST-EPSS: 0.373730000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2021-3287
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2021-3287. Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization class.
FIRST-EPSS: 0.373730000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2023-51154
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51154. Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php.
CVE-2023-51154
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-51154. Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php.
#ExploitObserverAlert
CVE-2023-49633
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49633. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'buyer_address' parameter of the buyer_detail_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-49633
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-49633. Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'buyer_address' parameter of the buyer_detail_submit.php resource does not validate the characters received and they are sent unfiltered to the database.
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-4589
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4589. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 184585.
FIRST-EPSS: 0.004210000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-4589
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4589. IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects from untrusted sources. IBM X-Force ID: 184585.
FIRST-EPSS: 0.004210000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-5pq7-52mg-hr42
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-5PQ7-52MG-HR42. I found "multipart/form-data request tampering vulnerability" caused by Content-Disposition "filename" lack of escaping in httparty.
GHSS: 6.5
GHSA-5pq7-52mg-hr42
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-5PQ7-52MG-HR42. I found "multipart/form-data request tampering vulnerability" caused by Content-Disposition "filename" lack of escaping in httparty.
GHSS: 6.5
#ExploitObserverAlert
CVE-2021-36369
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-36369. An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2 tokens or SSH-Askpass. Thus, it allows an attacker to abuse a forwarded agent for logging on to another server unnoticed.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2021-36369
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2021-36369. An issue was discovered in Dropbear through 2020.81. Due to a non-RFC-compliant check of the available authentication methods in the client-side SSH code, it is possible for an SSH server to change the login process in its favor. This attack can bypass additional security measures such as FIDO2 tokens or SSH-Askpass. Thus, it allows an attacker to abuse a forwarded agent for logging on to another server unnoticed.
FIRST-EPSS: 0.000870000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-4521
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4521. IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.
FIRST-EPSS: 0.009200000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-4521
DESCRIPTION: Exploit Observer has 5 entries related to CVE-2020-4521. IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in Java. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 182396.
FIRST-EPSS: 0.009200000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2015-8765
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-8765. Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006040000
NVD-IS: 3.7
NVD-ES: 3.9
CVE-2015-8765
DESCRIPTION: Exploit Observer has 7 entries related to CVE-2015-8765. Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.
FIRST-EPSS: 0.006040000
NVD-IS: 3.7
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2017-5878
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2017-5878. The AMF unmarshallers in Red5 Media Server before 1.0.8 do not restrict the classes for which it performs deserialization, which allows remote attackers to execute arbitrary code via crafted serialized Java data.
FIRST-EPSS: 0.008450000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2017-5878
DESCRIPTION: Exploit Observer has 9 entries related to CVE-2017-5878. The AMF unmarshallers in Red5 Media Server before 1.0.8 do not restrict the classes for which it performs deserialization, which allows remote attackers to execute arbitrary code via crafted serialized Java data.
FIRST-EPSS: 0.008450000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-w7jx-j77m-wp65
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-W7JX-J77M-WP65. A cross-site scripting (XSS) vulnerability was discovered in the URL sanitization logic of the core parser. The vulnerability allowed arbitrary JavaScript execution when inserting a specially crafted piece of content into the editor using the clipboard or APIs. This impacts all users who are using TinyMCE 5.5.1 or lower.
GHSA-w7jx-j77m-wp65
DESCRIPTION: Exploit Observer has 4 entries related to GHSA-W7JX-J77M-WP65. A cross-site scripting (XSS) vulnerability was discovered in the URL sanitization logic of the core parser. The vulnerability allowed arbitrary JavaScript execution when inserting a specially crafted piece of content into the editor using the clipboard or APIs. This impacts all users who are using TinyMCE 5.5.1 or lower.