#ExploitObserverAlert
CVE-2020-36774
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2020-36774. plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application crash).
FIRST-EPSS: 0.000430000
CVE-2020-36774
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2020-36774. plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application crash).
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PSS-177171
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177171. Gentoo Linux Security Advisory 202402-16. Gentoo Linux Security Advisory 202402-16 - Multiple vulnerabilities have been discovered in Apache Log4j, the worst of which can lead to remote code execution. Versions less than or equal to 1.2.17 are affected.
PSS-177171
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177171. Gentoo Linux Security Advisory 202402-16. Gentoo Linux Security Advisory 202402-16 - Multiple vulnerabilities have been discovered in Apache Log4j, the worst of which can lead to remote code execution. Versions less than or equal to 1.2.17 are affected.
#ExploitObserverAlert
PSS-177170
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177170. Gentoo Linux Security Advisory 202402-15. Gentoo Linux Security Advisory 202402-15 - A vulnerability has been discovered in e2fsprogs which can lead to arbitrary code execution. Versions greater than or equal to 1.46.6 are affected.
PSS-177170
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177170. Gentoo Linux Security Advisory 202402-15. Gentoo Linux Security Advisory 202402-15 - A vulnerability has been discovered in e2fsprogs which can lead to arbitrary code execution. Versions greater than or equal to 1.46.6 are affected.
#ExploitObserverAlert
CVE-2024-25710
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25710. Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.3 through 1.25.0. Users are recommended to upgrade to version 1.26.0 which fixes the issue.
CVE-2024-25710
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25710. Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.3 through 1.25.0. Users are recommended to upgrade to version 1.26.0 which fixes the issue.
#ExploitObserverAlert
PSS-177185
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177185. Gentoo Linux Security Advisory 202402-25. Gentoo Linux Security Advisory 202402-25 - Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. Versions greater than or equal to 115.7.0 are affected.
PSS-177185
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177185. Gentoo Linux Security Advisory 202402-25. Gentoo Linux Security Advisory 202402-25 - Multiple vulnerabilities have been discovered in Mozilla Thunderbird, the worst of which could lead to remote code execution. Versions greater than or equal to 115.7.0 are affected.
#ExploitObserverAlert
PSS-177168
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177168. User Registration And Login And User Management System 3.1 SQL Injection. User Registration and Login and User Management System version 3.1 suffers from a remote SQL injection vulnerability.
PSS-177168
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177168. User Registration And Login And User Management System 3.1 SQL Injection. User Registration and Login and User Management System version 3.1 suffers from a remote SQL injection vulnerability.
#ExploitObserverAlert
CVE-2024-26327
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26327. An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations.
FIRST-EPSS: 0.000430000
CVE-2024-26327
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26327. An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PSS-177177
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177177. Online Library Management System 3 Password Reset. Online Library Management System version 3 suffers from a password reset vulnerability due to a logic flaw of allowing the same email address to be set for multiple users.
PSS-177177
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177177. Online Library Management System 3 Password Reset. Online Library Management System version 3 suffers from a password reset vulnerability due to a logic flaw of allowing the same email address to be set for multiple users.
#ExploitObserverAlert
PSS-177182
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177182. Gentoo Linux Security Advisory 202402-24. Gentoo Linux Security Advisory 202402-24 - Multiple vulnerabilities have been discovered in Seamonkey, the worst of which can lead to remote code execution. Versions greater than or equal to 2.53.10.2 are affected.
PSS-177182
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177182. Gentoo Linux Security Advisory 202402-24. Gentoo Linux Security Advisory 202402-24 - Multiple vulnerabilities have been discovered in Seamonkey, the worst of which can lead to remote code execution. Versions greater than or equal to 2.53.10.2 are affected.
#ExploitObserverAlert
CVE-2024-26308
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26308. Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue.
CVE-2024-26308
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26308. Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons Compress: from 1.21 before 1.26. Users are recommended to upgrade to version 1.26, which fixes the issue.
#ExploitObserverAlert
PSS-177174
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177174. Gentoo Linux Security Advisory 202402-17. Gentoo Linux Security Advisory 202402-17 - Multiple vulnerabilities have been discovered in CUPS, the worst of which can lead to arbitrary code execution. Versions greater than or equal to 2.4.7 are affected.
PSS-177174
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177174. Gentoo Linux Security Advisory 202402-17. Gentoo Linux Security Advisory 202402-17 - Multiple vulnerabilities have been discovered in CUPS, the worst of which can lead to arbitrary code execution. Versions greater than or equal to 2.4.7 are affected.
#ExploitObserverAlert
PSS-177188
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177188. Gentoo Linux Security Advisory 202402-26. Gentoo Linux Security Advisory 202402-26 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution. Versions greater than or equal to 115.7.0:esr are affected.
PSS-177188
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177188. Gentoo Linux Security Advisory 202402-26. Gentoo Linux Security Advisory 202402-26 - Multiple vulnerabilities have been discovered in Mozilla Firefox, the worst of which could result in arbitrary code execution. Versions greater than or equal to 115.7.0:esr are affected.
#ExploitObserverAlert
PSS-177186
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177186. Microsoft Windows Defender / Trojan.Win32/Powessere.G VBScript Detection Bypass. This is additional research regarding a mitigation bypass in Windows Defender. Back in 2022, the researcher disclosed how it could be easily bypassed by passing an extra path traversal when referencing mshtml but that issue has since been mitigated. However, the researcher discovered using multiple commas can also be used to achieve the bypass. This issue was addressed. The fix was short lived as the researcher found yet another third trivial bypass. Previously, the researcher disclosed 3 bypasses using rundll32 javascript, but this example leverages the VBSCRIPT and ActiveX engines.
PSS-177186
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177186. Microsoft Windows Defender / Trojan.Win32/Powessere.G VBScript Detection Bypass. This is additional research regarding a mitigation bypass in Windows Defender. Back in 2022, the researcher disclosed how it could be easily bypassed by passing an extra path traversal when referencing mshtml but that issue has since been mitigated. However, the researcher discovered using multiple commas can also be used to achieve the bypass. This issue was addressed. The fix was short lived as the researcher found yet another third trivial bypass. Previously, the researcher disclosed 3 bypasses using rundll32 javascript, but this example leverages the VBSCRIPT and ActiveX engines.
#ExploitObserverAlert
CVE-2024-26318
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26318. Serenity before 6.8.0 allows XSS via an email link because LoginPage.tsx permits return URLs that do not begin with a / character.
FIRST-EPSS: 0.000430000
CVE-2024-26318
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-26318. Serenity before 6.8.0 allows XSS via an email link because LoginPage.tsx permits return URLs that do not begin with a / character.
FIRST-EPSS: 0.000430000
#ExploitObserverAlert
PSS-177176
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177176. Gentoo Linux Security Advisory 202402-19. Gentoo Linux Security Advisory 202402-19 - A vulnerability has been discovered in libcaca which can lead to arbitrary code execution. Versions greater than or equal to 0.99_beta19-r4 are affected.
PSS-177176
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177176. Gentoo Linux Security Advisory 202402-19. Gentoo Linux Security Advisory 202402-19 - A vulnerability has been discovered in libcaca which can lead to arbitrary code execution. Versions greater than or equal to 0.99_beta19-r4 are affected.
#ExploitObserverAlert
PSS-177169
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177169. WonderCMS 4.3.2 Cross Site Scripting / Remote Code Execution. WonderCMS version 4.3.2 remote exploit that leverages cross site scripting to achieve remote code execution.
PSS-177169
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177169. WonderCMS 4.3.2 Cross Site Scripting / Remote Code Execution. WonderCMS version 4.3.2 remote exploit that leverages cross site scripting to achieve remote code execution.
#ExploitObserverAlert
PSS-177180
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177180. Gentoo Linux Security Advisory 202402-22. Gentoo Linux Security Advisory 202402-22 - Multiple vulnerabilities have been discovered in intel-microcode, the worst of which can lead to privilege escalation. Versions greater than or equal to 20230214_p20230212 are affected.
PSS-177180
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177180. Gentoo Linux Security Advisory 202402-22. Gentoo Linux Security Advisory 202402-22 - Multiple vulnerabilities have been discovered in intel-microcode, the worst of which can lead to privilege escalation. Versions greater than or equal to 20230214_p20230212 are affected.
#ExploitObserverAlert
PSS-177192
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177192. Gentoo Linux Security Advisory 202402-28. Gentoo Linux Security Advisory 202402-28 - Multiple vulnerabilities have been discovered in Samba, the worst of which can lead to remote code execution. Versions greater than or equal to 4.18.9 are affected.
PSS-177192
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177192. Gentoo Linux Security Advisory 202402-28. Gentoo Linux Security Advisory 202402-28 - Multiple vulnerabilities have been discovered in Samba, the worst of which can lead to remote code execution. Versions greater than or equal to 4.18.9 are affected.
#ExploitObserverAlert
PSS-177184
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177184. Gentoo Linux Security Advisory 202402-21. Gentoo Linux Security Advisory 202402-21 - Multiple vulnerabilities have been discovered in QtNetwork, the worst of which could lead to execution of arbitrary code. Versions greater than or equal to 6.6.1-r2 are affected.
PSS-177184
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177184. Gentoo Linux Security Advisory 202402-21. Gentoo Linux Security Advisory 202402-21 - Multiple vulnerabilities have been discovered in QtNetwork, the worst of which could lead to execution of arbitrary code. Versions greater than or equal to 6.6.1-r2 are affected.
#ExploitObserverAlert
PSS-177191
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177191. Debian Security Advisory 5626-1. Debian Linux Security Advisory 5626-1 - It was discovered that malformed DNSSEC records within a DNS zone could result in denial of service against PDNS Recursor, a resolving name server.
PSS-177191
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to PSS-177191. Debian Security Advisory 5626-1. Debian Linux Security Advisory 5626-1 - It was discovered that malformed DNSSEC records within a DNS zone could result in denial of service against PDNS Recursor, a resolving name server.
#ExploitObserverAlert
CVE-2024-24722
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-24722. An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via the 12d Synergy Server and/or 12d Synergy File Replication Server executable service path. This is fixed in 4.3.10.192, 5.1.5.221, and 5.1.6.235.
FIRST-EPSS: 0.000450000
CVE-2024-24722
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-24722. An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via the 12d Synergy Server and/or 12d Synergy File Replication Server executable service path. This is fixed in 4.3.10.192, 5.1.5.221, and 5.1.6.235.
FIRST-EPSS: 0.000450000