#ExploitObserverAlert
CVE-2023-4521
DESCRIPTION: Exploit Observer has 8 entries in 3 file formats related to CVE-2023-4521. The Import XML and RSS Feeds WordPress plugin before 2.1.5 contains a web shell, allowing unauthenticated attackers to perform RCE. The plugin/vendor was not compromised and the files are the result of running a PoC for a previously reported issue (https://wpscan.com/vulnerability/d4220025-2272-4d5f-9703-4b2ac4a51c42) and not deleting the created files when releasing the new version.
FIRST-EPSS: 0.029120000
NVD-IS: 5.9
NVD-ES: 3.9
ARPS-PRIORITY: 0.9506504
CVE-2023-4521
DESCRIPTION: Exploit Observer has 8 entries in 3 file formats related to CVE-2023-4521. The Import XML and RSS Feeds WordPress plugin before 2.1.5 contains a web shell, allowing unauthenticated attackers to perform RCE. The plugin/vendor was not compromised and the files are the result of running a PoC for a previously reported issue (https://wpscan.com/vulnerability/d4220025-2272-4d5f-9703-4b2ac4a51c42) and not deleting the created files when releasing the new version.
FIRST-EPSS: 0.029120000
NVD-IS: 5.9
NVD-ES: 3.9
ARPS-PRIORITY: 0.9506504
#ExploitObserverAlert
CVE-2024-2625
DESCRIPTION: Exploit Observer has 20 entries in 5 file formats related to CVE-2024-2625. Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
FIRST-EPSS: 0.000560000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.7803987
CVE-2024-2625
DESCRIPTION: Exploit Observer has 20 entries in 5 file formats related to CVE-2024-2625. Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. (Chromium security severity: High)
FIRST-EPSS: 0.000560000
NVD-IS: 5.9
NVD-ES: 2.8
ARPS-PRIORITY: 0.7803987
#ExploitObserverAlert
GHSA-2gq2-m628-33xp
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-2gq2-m628-33xp. gregwar/rst Local File Inclusion Vulnerability
ARPS-PRIORITY: 0.759637
GHSA-2gq2-m628-33xp
DESCRIPTION: Exploit Observer has 5 entries in 3 file formats related to GHSA-2gq2-m628-33xp. gregwar/rst Local File Inclusion Vulnerability
ARPS-PRIORITY: 0.759637
#ExploitObserverAlert
CVE-2018-5478
DESCRIPTION: Exploit Observer has 10 entries in 4 file formats related to CVE-2018-5478. Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
ARPS-PRIORITY: 0.7613018
CVE-2018-5478
DESCRIPTION: Exploit Observer has 10 entries in 4 file formats related to CVE-2018-5478. Contao 3.x before 3.5.32 allows XSS via the unsubscribe module in the frontend newsletter extension.
FIRST-EPSS: 0.000460000
NVD-IS: 2.7
NVD-ES: 2.8
ARPS-PRIORITY: 0.7613018
#ExploitObserverAlert
GHSA-pqjm-xcp8-wgmm
DESCRIPTION: Exploit Observer has 8 entries in 6 file formats related to GHSA-pqjm-xcp8-wgmm. Ez Platform and Legacy are prone to an insecure interpretation of PHP/PHAR uploads
ARPS-PRIORITY: 0.7050617
GHSA-pqjm-xcp8-wgmm
DESCRIPTION: Exploit Observer has 8 entries in 6 file formats related to GHSA-pqjm-xcp8-wgmm. Ez Platform and Legacy are prone to an insecure interpretation of PHP/PHAR uploads
ARPS-PRIORITY: 0.7050617
#ExploitObserverAlert
CVE-2022-23793
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
FIRST-EPSS: 0.002000000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.8713574
CVE-2022-23793
DESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.
FIRST-EPSS: 0.002000000
NVD-IS: 3.6
NVD-ES: 3.9
ARPS-PRIORITY: 0.8713574
❤1
#ARPSArticleAlert
Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.
https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526
Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia didn’t.
https://blog.arpsyndicate.io/over-a-1000-vulnerabilities-that-mitre-nist-might-have-missed-but-china-or-russia-did-not-871b2364a526
Medium
Over a 1000 vulnerabilities that MITRE & NIST ‘might’ have missed but China or Russia did not.
Exploit Observer is The World’s Largest Exploit & Vulnerability Intelligence Database that collects global exploits & vulnerabilities.
#ExploitObserverAlert
CVE-2023-52722
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2023-52722. An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.7563918
CVE-2023-52722
DESCRIPTION: Exploit Observer has 8 entries in 4 file formats related to CVE-2023-52722. An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.7563918
#ExploitObserverAlert
CVE-2024-25642
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2024-25642. Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8582365
CVE-2024-25642
DESCRIPTION: Exploit Observer has 9 entries in 3 file formats related to CVE-2024-25642. Due to improper validation of certificate in SAP Cloud Connector - version 2.0, attacker can impersonate the genuine servers to interact with SCC breaking the mutual authentication. Hence, the attacker can intercept the request to view/modify sensitive information. There is no impact on the availability of the system.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8582365
#ExploitObserverAlert
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
CVE-2024-28180
DESCRIPTION: Exploit Observer has 34 entries in 5 file formats related to CVE-2024-28180. Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.
FIRST-EPSS: 0.000450000
ARPS-PRIORITY: 0.7524723
#ExploitObserverAlert
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
WLB-2024050045
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050045. VSP Softtech - Blind Sql Injection.
ARPS-PRIORITY: 0.8512449
#ExploitObserverAlert
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
CVE-2023-52486
DESCRIPTION: Exploit Observer has 1193 entries in 22 file formats related to CVE-2023-52486. In the Linux kernel, the following vulnerability has been resolved: drm: Don't unref the same fb many times by mistake due to deadlock handling If we get a deadlock after the fb lookup in drm_mode_page_flip_ioctl() we proceed to unref the fb and then retry the whole thing from the top. But we forget to reset the fb pointer back to NULL, and so if we then get another error during the retry, before the fb lookup, we proceed the unref the same fb again without having gotten another reference. The end result is that the fb will (eventually) end up being freed while it's still in use. Reset fb to NULL once we've unreffed it to avoid doing it again until we've done another fb lookup. This turned out to be pretty easy to hit on a DG2 when doing async flips (and CONFIG_DEBUG_WW_MUTEX_SLOWPATH=y). The first symptom I saw that drm_closefb() simply got stuck in a busy loop while walking the framebuffer list. Fortunately I was able to convince it to oops instead, and from there it was easier to track down the culprit.
FIRST-EPSS: 0.000440000
ARPS-PRIORITY: 0.9685313
#ExploitObserverAlert
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
WLB-2024050046
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050046. Zope 5.9 Command Injection.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
CVE-2022-0001
DESCRIPTION: Exploit Observer has 1120 entries in 30 file formats related to CVE-2022-0001. Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
FIRST-EPSS: 0.000480000
NVD-IS: 4.0
NVD-ES: 2.0
ARPS-PRIORITY: 0.9542576
#ExploitObserverAlert
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
WLB-2024050049
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050049. CrushFTP Directory Traversal.
ARPS-PRIORITY: 0.8512426
#ExploitObserverAlert
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25832
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25832. F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
WLB-2024050050
DESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to WLB-2024050050. TrojanSpy.Win64.EMOTET.A MVID-2024-0684 Code Execution.
ARPS-PRIORITY: 0.8512175
#ExploitObserverAlert
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
CVE-2024-25830
DESCRIPTION: Exploit Observer has 27 entries in 5 file formats related to CVE-2024-25830. F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the root and admin password.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.8632316
#ExploitObserverAlert
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
CVE-2024-31819
DESCRIPTION: Exploit Observer has 11 entries in 7 file formats related to CVE-2024-31819. An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.
FIRST-EPSS: 0.002530000
ARPS-PRIORITY: 0.7528162
#ExploitObserverAlert
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
CVE-2024-31839
DESCRIPTION: Exploit Observer has 17 entries in 6 file formats related to CVE-2024-31839. Cross Site Scripting vulnerability in tiagorlampert CHAOS v.5.0.1 allows a remote attacker to escalate privileges via the sendCommandHandler function in the handler.go component.
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.87189
#ExploitObserverAlert
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415
CVE-2024-30850
DESCRIPTION: Exploit Observer has 20 entries in 8 file formats related to CVE-2024-30850. An issue in tiagorlampert CHAOS v5.0.1 allows a remote attacker to execute arbitrary code via the BuildClient function within client_service.go
FIRST-EPSS: 0.000430000
ARPS-PRIORITY: 0.876415