With CVE Find, explore the world's largest database of vulnerabilities.
255 912 CVE
Last update : 2024-07-05 13:34 +00:00
Common Vulnerabilities and Exposures, is a list of publicly disclosed computer security flaws.
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago
Distribution of CVSS scores
CVE created per quarter since 1999
The last 15 High CVE Total 255 912 CVE in Datadase
| CVE ID | Published | Description | Score | Severity | |
|---|---|---|---|---|---|
| CVE-2024-6209 | 2024-07-05 11:10 +00:00 | Unauthorized file access in WEB Server in ABB ASPECT - Enterprise v <=3.08.01; NEXUS Series v <=3.... |
9.4 |
CRITICAL |
|
| CVE-2024-6298 | 2024-07-05 11:06 +00:00 | Improper Input Validation vulnerability in ABB ASPECT-Enterprise on Linux, ABB NEXUS Series on Linux... |
9.4 |
CRITICAL |
|
| CVE-2024-39943 | 2024-07-03 22:00 +00:00 | rejetto HFS (aka HTTP File Server) 3 before 0.52.10 on Linux, UNIX, and macOS allows OS command exec... |
9.9 |
CRITICAL |
|
| CVE-2024-39937 | 2024-07-03 22:00 +00:00 | supOS 5.0 allows api/image/download?fileName=../ directory traversal for reading files.... |
8.6 |
HIGH |
|
| CVE-2024-39936 | 2024-07-03 22:00 +00:00 | An issue was discovered in HTTP2 in Qt before 5.15.18, 6.x before 6.2.13, 6.3.x through 6.5.x before... |
8.6 |
HIGH |
|
| CVE-2024-39930 | 2024-07-03 22:00 +00:00 | The built-in SSH server of Gogs through 0.13.0 allows argument injection in internal/ssh/ssh.go, lea... |
9.9 |
CRITICAL |
|
| CVE-2024-39931 | 2024-07-03 22:00 +00:00 | Gogs through 0.13.0 allows deletion of internal files.... |
9.9 |
CRITICAL |
|
| CVE-2024-39932 | 2024-07-03 22:00 +00:00 | Gogs through 0.13.0 allows argument injection during the previewing of changes.... |
9.9 |
CRITICAL |
|
| CVE-2024-6506 | 2024-07-04 12:52 +00:00 | Information exposure vulnerability in the MRW plugin, in its 5.4.3 version, affecting the "mrw_log... |
8.2 |
HIGH |
|
| CVE-2024-5943 | 2024-07-04 11:34 +00:00 | The Nested Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up... |
8.8 |
HIGH |
|
| CVE-2024-3904 | 2024-07-04 09:11 +00:00 | Incorrect Default Permissions vulnerability in Smart Device Communication Gateway preinstalled on ME... |
8.8 |
HIGH |
|
| CVE-2024-6318 | 2024-07-04 08:32 +00:00 | The IMGspider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type ... |
8.8 |
HIGH |
|
| CVE-2024-6319 | 2024-07-04 08:32 +00:00 | The IMGspider plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type ... |
8.8 |
HIGH |
|
| CVE-2024-2385 | 2024-07-04 03:32 +00:00 | The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Local File Inclusion in all v... |
8.8 |
HIGH |
|
| CVE-2024-5887 | 2024-07-03 17:45 +00:00 | Cross-Site Request Forgery (CSRF) in stitionai/devika... Cross-Site Request Forgery - CSRF |
8.8 |
HIGH |
2024©
tesweb SA
