#ExploitObserverAlert
CVE-2023-38507
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-38507. Strapi is the an open-source headless content management system. Prior to version 4.12.1, there is a rate limit on the login function of Strapi's admin screen, but it is possible to circumvent it. Therefore, the possibility of unauthorized login by login brute force attack increases. Version 4.12.1 has a fix for this issue.
FIRST-EPSS: 0.000630000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-38507
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-38507. Strapi is the an open-source headless content management system. Prior to version 4.12.1, there is a rate limit on the login function of Strapi's admin screen, but it is possible to circumvent it. Therefore, the possibility of unauthorized login by login brute force attack increases. Version 4.12.1 has a fix for this issue.
FIRST-EPSS: 0.000630000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-mf6c-8r47-23j5
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-MF6C-8R47-23J5. Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
GHSS: 4.0
GHSA-mf6c-8r47-23j5
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-MF6C-8R47-23J5. Stack-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
GHSS: 4.0
#ExploitObserverAlert
CVE-2020-15719
DESCRIPTION: Exploit Observer has 11 entries in 2 file formats related to CVE-2020-15719. libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName (SAN). This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux.
FIRST-EPSS: 0.001550000
NVD-IS: 2.5
NVD-ES: 1.6
CVE-2020-15719
DESCRIPTION: Exploit Observer has 11 entries in 2 file formats related to CVE-2020-15719. libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName (SAN). This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux.
FIRST-EPSS: 0.001550000
NVD-IS: 2.5
NVD-ES: 1.6
#ExploitObserverAlert
CVE-2022-32230
DESCRIPTION: Exploit Observer has 8 entries in 3 file formats related to CVE-2022-32230. Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.
FIRST-EPSS: 0.001220000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2022-32230
DESCRIPTION: Exploit Observer has 8 entries in 3 file formats related to CVE-2022-32230. Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to the April, 2022 patch set. By sending a malformed FileNormalizedNameInformation SMBv3 request over a named pipe, an attacker can cause a Blue Screen of Death (BSOD) crash of the Windows kernel. For most systems, this attack requires authentication, except in the special case of Windows Domain Controllers, where unauthenticated users can always open named pipes as long as they can establish an SMB session. Typically, after the BSOD, the victim SMBv3 server will reboot.
FIRST-EPSS: 0.001220000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2020-26625
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2020-26625. A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the 'user_id' parameter after the login portal.
FIRST-EPSS: 0.001110000
NVD-IS: 2.5
NVD-ES: 1.2
CVE-2020-26625
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2020-26625. A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the 'user_id' parameter after the login portal.
FIRST-EPSS: 0.001110000
NVD-IS: 2.5
NVD-ES: 1.2
#ExploitObserverAlert
GHSA-4g3h-v9fp-pgm4
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-4G3H-V9FP-PGM4. A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
GHSS: 6.2
GHSA-4g3h-v9fp-pgm4
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-4G3H-V9FP-PGM4. A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
GHSS: 6.2
#ExploitObserverAlert
GHSA-8h2x-gr2c-c275
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-8H2X-GR2C-C275. A vulnerability was found in CubeFS that could allow users to read sensitive data from the logs which could allow them escalate privileges.
GHSS: 4.8
GHSA-8h2x-gr2c-c275
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-8H2X-GR2C-C275. A vulnerability was found in CubeFS that could allow users to read sensitive data from the logs which could allow them escalate privileges.
GHSS: 4.8
#ExploitObserverAlert
CVE-2023-46805
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-46805. An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.
NVD-IS: 4.2
NVD-ES: 3.9
CVE-2023-46805
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-46805. An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.
NVD-IS: 4.2
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2022-22942
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2022-22942. The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
FIRST-EPSS: 0.000720000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-22942
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2022-22942. The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
FIRST-EPSS: 0.000720000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2023-30145
DESCRIPTION: Exploit Observer has 11 entries in 3 file formats related to CVE-2023-30145. Camaleon CMS v2.7.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the formats parameter.
FIRST-EPSS: 0.015460000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2023-30145
DESCRIPTION: Exploit Observer has 11 entries in 3 file formats related to CVE-2023-30145. Camaleon CMS v2.7.0 was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the formats parameter.
FIRST-EPSS: 0.015460000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
GHSA-cx99-25hr-5jxf
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-CX99-25HR-5JXF. An authenticated and unauthorized user can access the back-office orders list and be able to query over the information returned.
GHSS: 4.3
GHSA-cx99-25hr-5jxf
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to GHSA-CX99-25HR-5JXF. An authenticated and unauthorized user can access the back-office orders list and be able to query over the information returned.
GHSS: 4.3
#ExploitObserverAlert
CVE-2022-30076
DESCRIPTION: Exploit Observer has 30 entries in 2 file formats related to CVE-2022-30076. ENTAB ERP 1.0 allows attackers to discover users' full names via a brute force attack with a series of student usernames such as s10000 through s20000. There is no rate limiting.
FIRST-EPSS: 0.000540000
NVD-IS: 1.4
NVD-ES: 3.9
CVE-2022-30076
DESCRIPTION: Exploit Observer has 30 entries in 2 file formats related to CVE-2022-30076. ENTAB ERP 1.0 allows attackers to discover users' full names via a brute force attack with a series of student usernames such as s10000 through s20000. There is no rate limiting.
FIRST-EPSS: 0.000540000
NVD-IS: 1.4
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2024-21887
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2024-21887. A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.
NVD-IS: 6.0
NVD-ES: 2.3
CVE-2024-21887
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2024-21887. A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.
NVD-IS: 6.0
NVD-ES: 2.3
#ExploitObserverAlert
PD/http/cves/2023/CVE-2023-6063
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to PD/HTTP/CVES/2023/CVE-2023-6063. The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.
PD/http/cves/2023/CVE-2023-6063
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to PD/HTTP/CVES/2023/CVE-2023-6063. The WP Fastest Cache WordPress plugin before 1.2.2 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users.
#ExploitObserverAlert
CVE-2024-21910
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2024-21910. TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser.
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2024-21910
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2024-21910. TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser.
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-24039
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-24039. A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on Solaris 10 systems. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-24039
DESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to CVE-2023-24039. A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on Solaris 10 systems. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2021-36580
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2021-36580. Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter.
FIRST-EPSS: 0.001620000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2021-36580
DESCRIPTION: Exploit Observer has 7 entries in 3 file formats related to CVE-2021-36580. Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter.
FIRST-EPSS: 0.001620000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2023-1326
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-1326. A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privilege. It is extremely unlikely that a system administrator would configure sudo to allow unprivileged users to perform this class of exploit.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2023-1326
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2023-1326. A privilege escalation attack was found in apport-cli 2.26.0 and earlier which is similar to CVE-2023-26604. If a system is specially configured to allow unprivileged users to run sudo apport-cli, less is configured as the pager, and the terminal size can be set: a local attacker can escalate privilege. It is extremely unlikely that a system administrator would configure sudo to allow unprivileged users to perform this class of exploit.
FIRST-EPSS: 0.000420000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
GHSA-m2pj-mjhw-x9fm
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to GHSA-M2PJ-MJHW-X9FM. An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.
GHSS: 8.2
GHSA-m2pj-mjhw-x9fm
DESCRIPTION: Exploit Observer has 7 entries in 2 file formats related to GHSA-M2PJ-MJHW-X9FM. An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote attacker to access restricted resources by bypassing control checks.
GHSS: 8.2
#ExploitObserverAlert
CVE-2023-20273
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2023-20273. A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges.
FIRST-EPSS: 0.060170000
NVD-IS: 5.9
NVD-ES: 1.2
CVE-2023-20273
DESCRIPTION: Exploit Observer has 10 entries in 3 file formats related to CVE-2023-20273. A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges of root. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted input to the web UI. A successful exploit could allow the attacker to inject commands to the underlying operating system with root privileges.
FIRST-EPSS: 0.060170000
NVD-IS: 5.9
NVD-ES: 1.2
#ExploitObserverAlert
CVE-2022-2294
DESCRIPTION: Exploit Observer has 27 entries in 3 file formats related to CVE-2022-2294. Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.006130000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2022-2294
DESCRIPTION: Exploit Observer has 27 entries in 3 file formats related to CVE-2022-2294. Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
FIRST-EPSS: 0.006130000
NVD-IS: 5.9
NVD-ES: 2.8