CVE-2025-24398 CVSS:8.8 EPSS:0.04%
Jenkins Bitbucket Server Integration Plugin 2.1.0 through 4.1.3 (both inclusive) allows attackers to craft URLs that would bypass the CSRF protection of any target URL in Jenkins. (Last Update:2025-01-23 16:15:41) (Publish Update:2025-01-22 17:15:14)
CVE-2024-31903 CVSS:8.8 EPSS:0.05%
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 allow an attacker on the local network to execute arbitrary code on the system, caused by the deserialization of untrusted data. (Last Update:2025-01-22 16:15:29) (Publish Update:2025-01-22 16:15:29)
CVE-2025-23949 CVSS:8.1 EPSS:0.04%
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Mihajlovic Nenad Improved Sale Badges – Free Version allows PHP Local File Inclusion. This issue affects Improved Sale Badges – Free Version: from n/a through 1.0.1. (Last Update:2025-01-22 15:15:27) (Publish Update:2025-01-22 15:15:27)
CVE-2025-23948 CVSS:8.1 EPSS:0.04%
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WebArea Background animation blocks allows PHP Local File Inclusion. This issue affects Background animation blocks: from n/a through 2.1.5. (Last Update:2025-01-22 15:15:26) (Publish Update:2025-01-22 15:15:26)
CVE-2025-23931 CVSS:9.3 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WordPress Local SEO allows Blind SQL Injection. This issue affects WordPress Local SEO: from n/a through 2.3. (Last Update:2025-01-22 15:15:26) (Publish Update:2025-01-22 15:15:26)
CVE-2025-23910 CVSS:8.5 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Menus Plus+ allows SQL Injection. This issue affects Menus Plus+: from n/a through 1.9.6. (Last Update:2025-01-22 15:15:25) (Publish Update:2025-01-22 15:15:25)
CVE-2024-13091 CVSS:9.8 EPSS:0.09%
The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'qcld_wpcfb_file_upload' function in all versions up to, and including, 13.5.4. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible. Note: The exploit requires thee ChatBot Conversational Forms plugin and the Conversational Form Builder Pro addon plugin. (Last Update:2025-01-22 00:15:16) (Publish Update:2025-01-21 23:20:51)
CVE-2024-49749 CVSS:8.8 EPSS:0.04%
In DGifSlurp of dgif_lib.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. (Last Update:2025-01-22 15:15:14) (Publish Update:2025-01-21 23:15:15)
CVE-2024-49748 CVSS:9.8 EPSS:0.04%
In gatts_process_primary_service_req of gatt_sr.cc, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. (Last Update:2025-01-22 15:15:14) (Publish Update:2025-01-21 23:15:15)
CVE-2024-49747 CVSS:9.8 EPSS:0.04%
In gatts_process_read_by_type_req of gatt_sr.cc, there is a possible out of bounds write due to a logic error in the code. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. (Last Update:2025-01-22 15:15:14) (Publish Update:2025-01-21 23:15:15)
CVE-2024-51941 CVSS:8.8 EPSS:0.04%
A remote code injection vulnerability exists in the Ambari Metrics and AMS Alerts feature, allowing authenticated users to inject and execute arbitrary code. The vulnerability occurs when processing alert definitions, where malicious input can be injected into the alert script execution path. An attacker with authenticated access can exploit this vulnerability to execute arbitrary commands on the server. The issue has been fixed in the latest versions of Ambari. (Last Update:2025-01-22 15:15:14) (Publish Update:2025-01-21 21:24:23)
CVE-2025-23196 CVSS:8.8 EPSS:0.04%
A code injection vulnerability exists in the Ambari Alert Definition feature, allowing authenticated users to inject and execute arbitrary shell commands. The vulnerability arises when defining alert scripts, where the script filename field is executed using `sh -c`. An attacker with authenticated access can exploit this vulnerability to inject malicious commands, leading to remote code execution on the server. The issue has been fixed in the latest versions of Ambari. (Last Update:2025-01-22 15:15:15) (Publish Update:2025-01-21 21:23:41)
CVE-2025-21564 CVSS:8.1 EPSS:0.05%
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Agile Integration Services). The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM Framework. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Agile PLM Framework accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Agile PLM Framework. CVSS 3.1 Base Score 8.1 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H). (Last Update:2025-01-21 21:15:23) (Publish Update:2025-01-21 20:53:22)
CVE-2025-21547 CVSS:9.1 EPSS:0.04%
Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications (component: Opera Servlet). Supported versions that are affected are 5.6.19.20, 5.6.25.8, 5.6.26.6 and 5.6.27.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality OPERA 5. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality OPERA 5 accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Hospitality OPERA 5. CVSS 3.1 Base Score 9.1 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H). (Last Update:2025-01-22 18:15:21) (Publish Update:2025-01-21 20:53:15)
CVE-2024-53829 CVSS:8.2 EPSS:0.04%
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy. Cross-site request forgery allows an unauthenticated attacker to hijack the authentication of a logged in user, and use the web API with the same permissions, including but not limited to adding, removing or editing products. The attacker needs to know the ID of the available products to modify or delete them. The attacker cannot directly exfiltrate data (view) from CodeChecker, due to being limited to form-based CSRF. This issue affects CodeChecker: through 6.24.4. (Last Update:2025-01-21 15:15:13) (Publish Update:2025-01-21 15:15:13)
CVE-2025-22716 CVSS:8.5 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Taskbuilder Team Taskbuilder allows SQL Injection. This issue affects Taskbuilder: from n/a through 3.0.6. (Last Update:2025-01-21 14:15:11) (Publish Update:2025-01-21 13:57:35)
CVE-2024-32555 CVSS:9.8 EPSS:0.04%
Incorrect Privilege Assignment vulnerability in NotFound Easy Real Estate allows Privilege Escalation. This issue affects Easy Real Estate: from n/a through 2.2.6. (Last Update:2025-01-21 14:15:07) (Publish Update:2025-01-21 13:57:34)
CVE-2025-22553 CVSS:9.3 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Multiple Carousel allows SQL Injection. This issue affects Multiple Carousel: from n/a through 2.0. (Last Update:2025-01-21 14:15:10) (Publish Update:2025-01-21 13:40:35)
CVE-2024-51888 CVSS:9.8 EPSS:0.04%
Incorrect Privilege Assignment vulnerability in NotFound Homey Login Register allows Privilege Escalation. This issue affects Homey Login Register: from n/a through 2.4.0. (Last Update:2025-01-21 14:15:09) (Publish Update:2025-01-21 13:40:34)
CVE-2024-51818 CVSS:9.3 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Fancy Product Designer. This issue affects Fancy Product Designer: from n/a through 6.4.3. (Last Update:2025-01-21 14:15:09) (Publish Update:2025-01-21 13:40:34)
CVE-2024-49666 CVSS:8.5 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound ARPrice allows SQL Injection. This issue affects ARPrice: from n/a through 4.0.3. (Last Update:2025-01-21 14:15:08) (Publish Update:2025-01-21 13:40:33)
CVE-2024-49655 CVSS:9.3 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound ARPrice allows SQL Injection. This issue affects ARPrice: from n/a through 4.0.3. (Last Update:2025-01-21 14:15:08) (Publish Update:2025-01-21 13:40:33)
CVE-2024-49333 CVSS:8.5 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affects Hero Mega Menu - Responsive WordPress Menu Plugin: from n/a through 1.16.5. (Last Update:2025-01-21 14:15:08) (Publish Update:2025-01-21 13:40:33)
CVE-2024-49303 CVSS:8.5 EPSS:0.04%
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affects Hero Mega Menu - Responsive WordPress Menu Plugin: from n/a through 1.16.5. (Last Update:2025-01-21 14:15:08) (Publish Update:2025-01-21 13:40:33)
CVE-2024-10936 CVSS:8.8 EPSS:0.06%
The String locator plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.6 via deserialization of untrusted input in the 'recursive_unserialize_replace' function. This makes it possible for unauthenticated attackers to inject a PHP Object. No known POP chain is present in the vulnerable software. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code. An administrator must perform a search and replace action to trigger the exploit. (Last Update:2025-01-21 09:15:07) (Publish Update:2025-01-21 08:21:51)
CVE-2024-42936 CVSS:9.8 EPSS:0.04%
The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message. (Last Update:2025-01-23 16:15:36) (Publish Update:2025-01-21 00:00:00)
CVE-2024-24421 CVSS:9.8 EPSS:0.04%
A type confusion in the nas_message_decode function of Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via a crafted NAS packet. (Last Update:2025-01-23 16:15:35) (Publish Update:2025-01-21 00:00:00)
CVE-2023-27113 CVSS:9.8 EPSS:0.04%
pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the organizationCode parameter at project.php. (Last Update:2025-01-23 16:15:28) (Publish Update:2025-01-21 00:00:00)
CVE-2023-27112 CVSS:9.8 EPSS:0.04%
pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the projectCode parameter at project.php. (Last Update:2025-01-23 16:15:27) (Publish Update:2025-01-21 00:00:00)
CVE-2025-23220 CVSS:10.0 EPSS:0.04%
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in the WeGIA application, specifically in the adicionar_raca.php endpoint. This vulnerability allows attackers to execute arbitrary SQL commands in the database, allowing unauthorized access to sensitive information. During the exploit, it was possible to perform a complete dump of the application's database, highlighting the severity of the flaw. This vulnerability is fixed in 3.2.10. (Last Update:2025-01-21 15:15:15) (Publish Update:2025-01-20 15:48:36)
This vulnerability list widget is provided by www.cvedetails.com. CVEdetails.com is updated! Visit www.cvedetails.com to see what's new in the new version!