#ExploitObserverAlert
ZDI-24-111
DESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to ZDI-24-111. Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2023-22360.
ZDI-24-111
DESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to ZDI-24-111. Allegra Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2023-22360.
#ExploitObserverAlert
PSS-177048
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177048. Red Hat Security Advisory 2024-0728-03. Red Hat Security Advisory 2024-0728-03 - Logging Subsystem 5.8.3 - Red Hat OpenShift. Issues addressed include a denial of service vulnerability.
PSS-177048
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177048. Red Hat Security Advisory 2024-0728-03. Red Hat Security Advisory 2024-0728-03 - Logging Subsystem 5.8.3 - Red Hat OpenShift. Issues addressed include a denial of service vulnerability.
#ExploitObserverAlert
ZDI-24-100
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-100. Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-22532.
ZDI-24-100
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-100. Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-22532.
#ExploitObserverAlert
ZDI-24-110
DESCRIPTION: Exploit Observer has 8 entries in 2 file formats related to ZDI-24-110. Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2023-22361.
ZDI-24-110
DESCRIPTION: Exploit Observer has 8 entries in 2 file formats related to ZDI-24-110. Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2023-22361.
#ExploitObserverAlert
PSS-177067
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177067. Red Hat Security Advisory 2024-0764-03. Red Hat Security Advisory 2024-0764-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
PSS-177067
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177067. Red Hat Security Advisory 2024-0764-03. Red Hat Security Advisory 2024-0764-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
#ExploitObserverAlert
PSS-177056
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177056. Red Hat Security Advisory 2024-0752-03. Red Hat Security Advisory 2024-0752-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.
PSS-177056
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177056. Red Hat Security Advisory 2024-0752-03. Red Hat Security Advisory 2024-0752-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.
#ExploitObserverAlert
PSS-177066
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177066. Red Hat Security Advisory 2024-0760-03. Red Hat Security Advisory 2024-0760-03 - An update for the container-tools:3.0 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.
PSS-177066
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177066. Red Hat Security Advisory 2024-0760-03. Red Hat Security Advisory 2024-0760-03 - An update for the container-tools:3.0 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.
#ExploitObserverAlert
CVE-2024-25109
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-25109. ManageWiki is a MediaWiki extension allowing users to manage wikis. Special:ManageWiki does not escape escape interface messages on the `columns` and `help` keys on the form descriptor. An attacker may exploit this and would have a cross site scripting attack vector. Exploiting this on-wiki requires the `(editinterface)` right. Users should apply the code changes in commits `886cc6b94`, `2ef0f50880`, and `6942e8b2c` to resolve this vulnerability. There are no known workarounds for this vulnerability.
FIRST-EPSS: 0.000450000
CVE-2024-25109
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-25109. ManageWiki is a MediaWiki extension allowing users to manage wikis. Special:ManageWiki does not escape escape interface messages on the `columns` and `help` keys on the form descriptor. An attacker may exploit this and would have a cross site scripting attack vector. Exploiting this on-wiki requires the `(editinterface)` right. Users should apply the code changes in commits `886cc6b94`, `2ef0f50880`, and `6942e8b2c` to resolve this vulnerability. There are no known workarounds for this vulnerability.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
ZDI-24-099
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to ZDI-24-099. Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the product implements a registration mechanism that can be used to create a new user with a sufficient privilege level. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-22530.
ZDI-24-099
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to ZDI-24-099. Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the product implements a registration mechanism that can be used to create a new user with a sufficient privilege level. The ZDI has assigned a CVSS rating of 7.5. The following CVEs are assigned: CVE-2024-22530.
#ExploitObserverAlert
PSS-177071
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177071. Debian Security Advisory 5618-1. Debian Linux Security Advisory 5618-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. An anonymous researcher discovered that a maliciously crafted webpage may be able to fingerprint the user. Wangtaiyu discovered that processing web content may lead to arbitrary code execution. Apple discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited.
PSS-177071
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177071. Debian Security Advisory 5618-1. Debian Linux Security Advisory 5618-1 - Vulnerabilities have been discovered in the WebKitGTK web engine. An anonymous researcher discovered that a maliciously crafted webpage may be able to fingerprint the user. Wangtaiyu discovered that processing web content may lead to arbitrary code execution. Apple discovered that processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited.
#ExploitObserverAlert
CVE-2024-24820
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2024-24820. Icinga Director is a tool designed to make Icinga 2 configuration handling easy. Not any of Icinga Director's configuration forms used to manipulate the monitoring environment are protected against cross site request forgery (CSRF). It enables attackers to perform changes in the monitoring environment managed by Icinga Director without the awareness of the victim. Users of the map module in version 1.x, should immediately upgrade to v2.0. The mentioned XSS vulnerabilities in Icinga Web are already fixed as well and upgrades to the most recent release of the 2.9, 2.10 or 2.11 branch must be performed if not done yet. Any later major release is also suitable. Icinga Director will receive minor updates to the 1.8, 1.9, 1.10 and 1.11 branches to remedy this issue. Upgrade immediately to a patched release. If that is not feasible, disable the director module for the time being.
FIRST-EPSS: 0.000440000
CVE-2024-24820
DESCRIPTION: Exploit Observer has 6 entries in 2 file formats related to CVE-2024-24820. Icinga Director is a tool designed to make Icinga 2 configuration handling easy. Not any of Icinga Director's configuration forms used to manipulate the monitoring environment are protected against cross site request forgery (CSRF). It enables attackers to perform changes in the monitoring environment managed by Icinga Director without the awareness of the victim. Users of the map module in version 1.x, should immediately upgrade to v2.0. The mentioned XSS vulnerabilities in Icinga Web are already fixed as well and upgrades to the most recent release of the 2.9, 2.10 or 2.11 branch must be performed if not done yet. Any later major release is also suitable. Icinga Director will receive minor updates to the 1.8, 1.9, 1.10 and 1.11 branches to remedy this issue. Upgrade immediately to a patched release. If that is not feasible, disable the director module for the time being.
FIRST-EPSS: 0.000440000
#ExploitObserverAlert
CVE-2024-22836
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-22836. An OS command injection vulnerability exists in Akaunting v3.1.3 and earlier. An attacker can manipulate the company locale when installing an app to execute system commands on the hosting server.
FIRST-EPSS: 0.000450000
CVE-2024-22836
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-22836. An OS command injection vulnerability exists in Akaunting v3.1.3 and earlier. An attacker can manipulate the company locale when installing an app to execute system commands on the hosting server.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
CVE-2024-23639
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-23639. Micronaut Framework is a modern, JVM-based, full stack Java framework designed for building modular, easily testable JVM applications with support for Java, Kotlin and the Groovy language. Enabled but unsecured management endpoints are susceptible to drive-by localhost attacks. While not typical of a production application, these attacks may have more impact on a development environment where such endpoints may be flipped on without much thought. A malicious/compromised website can make HTTP requests to `localhost`. Normally, such requests would trigger a CORS preflight check which would prevent the request; however, some requests are "simple" and do not require a preflight check. These endpoints, if enabled and not secured, are vulnerable to being triggered. Production environments typically disable unused endpoints and secure/restrict access to needed endpoints. A more likely victim is the developer in their local development host, who has enabled endpoints without security for the sake of easing development. This issue has been addressed in version 3.8.3. Users are advised to upgrade.
FIRST-EPSS: 0.000430000
CVE-2024-23639
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-23639. Micronaut Framework is a modern, JVM-based, full stack Java framework designed for building modular, easily testable JVM applications with support for Java, Kotlin and the Groovy language. Enabled but unsecured management endpoints are susceptible to drive-by localhost attacks. While not typical of a production application, these attacks may have more impact on a development environment where such endpoints may be flipped on without much thought. A malicious/compromised website can make HTTP requests to `localhost`. Normally, such requests would trigger a CORS preflight check which would prevent the request; however, some requests are "simple" and do not require a preflight check. These endpoints, if enabled and not secured, are vulnerable to being triggered. Production environments typically disable unused endpoints and secure/restrict access to needed endpoints. A more likely victim is the developer in their local development host, who has enabled endpoints without security for the sake of easing development. This issue has been addressed in version 3.8.3. Users are advised to upgrade.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PD/http/cves/2023/CVE-2023-52085
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to PD/http/cves/2023/CVE-2023-52085. Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local File Inclusion vulnerability. This issue has been patched in v1.2.4.
PD/http/cves/2023/CVE-2023-52085
DESCRIPTION: Exploit Observer has 4 entries in 4 file formats related to PD/http/cves/2023/CVE-2023-52085. Winter is a free, open-source content management system. Users with access to backend forms that include a ColorPicker FormWidget can provide a value that would then be included without further processing in the compilation of custom stylesheets via LESS. This had the potential to lead to a Local File Inclusion vulnerability. This issue has been patched in v1.2.4.
#ExploitObserverAlert
CVE-2024-24215
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-24215. An issue in the component /cgi-bin/GetJsonValue.cgi of Cellinx NVT Web Server 5.0.0.014 allows attackers to leak configuration information via a crafted POST request.
FIRST-EPSS: 0.000450000
CVE-2024-24215
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2024-24215. An issue in the component /cgi-bin/GetJsonValue.cgi of Cellinx NVT Web Server 5.0.0.014 allows attackers to leak configuration information via a crafted POST request.
FIRST-EPSS: 0.000450000
#ExploitObserverAlert
ZDI-24-118
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-118. Centreon updateDirectory SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-0637.
ZDI-24-118
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-118. Centreon updateDirectory SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-0637.
#ExploitObserverAlert
ZDI-24-114
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-114. Centreon updateContactHostCommands SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.2. The following CVEs are assigned: CVE-2024-23118.
ZDI-24-114
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-114. Centreon updateContactHostCommands SQL Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Centreon. Authentication is required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.2. The following CVEs are assigned: CVE-2024-23118.
#ExploitObserverAlert
ZDI-24-102
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-102. Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2024-22512.
ZDI-24-102
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to ZDI-24-102. Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 9.8. The following CVEs are assigned: CVE-2024-22512.
#ExploitObserverAlert
CVE-2024-25447
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-25447. An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image.
FIRST-EPSS: 0.000430000
CVE-2024-25447
DESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2024-25447. An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
CVE-2023-48974
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-48974. Cross Site Scripting vulnerability in Axigen WebMail v.10.5.7 and before allows a remote attacker to escalate privileges via a crafted script to the serverName_input parameter.
FIRST-EPSS: 0.000430000
CVE-2023-48974
DESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to CVE-2023-48974. Cross Site Scripting vulnerability in Axigen WebMail v.10.5.7 and before allows a remote attacker to escalate privileges via a crafted script to the serverName_input parameter.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
WLB-2024020036
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024020036. GYM MS 1.0 Cross Site Scripting.
WLB-2024020036
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024020036. GYM MS 1.0 Cross Site Scripting.