Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2023-42056 2024-05-03 MEDIUM 5.5 PDF-XChange Editor U3D File Parsing Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42057 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-4731 2025-05-16 HIGH 8.8 A vulnerability classified as critical has been found in TOTOLINK A3002R and A3002RU 3.0.0-B20230809.1615. This affects an unknown part of…
CVE-2025-40907 2025-05-16 MEDIUM 5.3 FCGI versions 0.44 through 0.82, for Perl, include a vulnerable version of the FastCGI fcgi2 (aka fcgi) library. The included…
CVE-2023-42058 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2024-40120 2025-05-16 MEDIUM 6.5 seaweedfs v3.68 was discovered to contain a SQL injection vulnerability via the component /abstract_sql/abstract_sql_store.go.
CVE-2024-8009 2025-05-15 HIGH 7.5 The Sensei LMS WordPress plugin before 4.20.0 disclose all users of the blog including their email address to teachers on…
CVE-2024-4091 2025-05-15 MEDIUM 6.1 The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow…
CVE-2024-4004 2025-05-15 MEDIUM 6.1 The Advanced Cron Manager WordPress plugin before 2.5.7 does not sanitise and escape some of its settings, which could allow…
CVE-2023-6845 2024-01-08 HIGH 8.8 The CommentTweets WordPress plugin through 0.6 does not have CSRF checks in some places, which could allow attackers to make…
CVE-2023-51784 2024-01-03 CRITICAL 9.8 Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0,…
CVE-2023-42059 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
CVE-2023-42060 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42061 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42062 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42063 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42064 2024-05-03 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42065 2024-05-03 MEDIUM 5.5 PDF-XChange Editor JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42066 2024-05-03 MEDIUM 5.5 PDF-XChange Editor J2K File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42067 2024-05-03 MEDIUM 5.5 PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42068 2024-05-03 MEDIUM 5.5 PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42069 2024-05-03 HIGH 7.8 PDF-XChange Editor PDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary…
CVE-2023-42070 2024-05-03 MEDIUM 5.5 PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected…
CVE-2023-42071 2024-05-03 HIGH 7.8 PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2023-42072 2024-05-03 MEDIUM 5.5 PDF-XChange Editor JPC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2023-42073 2024-05-03 MEDIUM 5.5 PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected…
CVE-2023-42074 2024-05-03 HIGH 7.8 PDF-XChange Editor addScript Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected…
CVE-2023-42075 2024-05-03 HIGH 7.8 PDF-XChange Editor JPG File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
CVE-2023-42076 2024-05-03 HIGH 7.8 PDF-XChange Editor PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary…
CVE-2023-42077 2024-05-03 HIGH 7.8 PDF-XChange Editor EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary…
CVE-2023-42078 2024-05-03 HIGH 7.8 PDF-XChange Editor JP2 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-3599 2025-04-30 MEDIUM 6.5 Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be susceptible to an Elevation of Privilege…
CVE-2023-42079 2024-05-03 MEDIUM 5.5 PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-39413 2025-04-30 MEDIUM 4.3 Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap.This issue affects Simple Sitemap – Create…
CVE-2024-6531 2024-07-11 MEDIUM 6.4 A vulnerability has been identified in Bootstrap that exposes users to Cross-Site Scripting (XSS) attacks. The issue is present in…
CVE-2025-3215 2025-04-04 MEDIUM 6.3 A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as critical. Affected by this issue is…
CVE-2025-3229 2025-04-04 MEDIUM 4.7 A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been declared as critical. This vulnerability affects…
CVE-2025-3231 2025-04-04 HIGH 7.3 A vulnerability was found in PHPGurukul Zoo Management System 2.1. It has been rated as critical. This issue affects some…
CVE-2025-3235 2025-04-04 MEDIUM 6.3 A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been classified as critical. This affects…
CVE-2025-3238 2025-04-04 HIGH 7.3 A vulnerability classified as critical has been found in PHPGurukul Online Fire Reporting System 1.2. Affected is an unknown function…
CVE-2025-45841 2025-05-08 CRITICAL 9.8 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the text parameter in the setSmsCfg function.
CVE-2025-45842 2025-05-08 HIGH 8.8 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyCfg function.
CVE-2025-45843 2025-05-08 HIGH 8.8 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiGuestCfg function.
CVE-2025-45844 2025-05-08 HIGH 8.8 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiBasicCfg function.
CVE-2025-45845 2025-05-08 HIGH 8.8 TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyGuestCfg function.
CVE-2025-26845 2025-05-08 CRITICAL 9.8 An Eval Injection issue was discovered in Znuny through 7.1.3. A user with write access to the configuration file can…
CVE-2025-3239 2025-04-04 HIGH 7.3 A vulnerability classified as critical was found in PHPGurukul Online Fire Reporting System 1.2. Affected by this vulnerability is an…
CVE-2025-26847 2025-05-08 HIGH 7.5 An issue was discovered in Znuny before 7.1.5. When generating a support bundle, not all passwords are masked.
CVE-2025-30101 2025-05-08 MEDIUM 4.4 Dell PowerScale OneFS, versions 9.8.0.0 through 9.10.1.0, contain a time-of-check time-of-use (TOCTOU) race condition vulnerability. An unauthenticated attacker with local…
CVE-2025-30102 2025-05-08 MEDIUM 5.5 Dell PowerScale OneFS, versions 9.4.0.0 through 9.10.1.0, contains an out-of-bounds write vulnerability. A local low privileged attacker could potentially exploit…
« Anterior Página 428 de 3527 Siguiente »