Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.1

    MEDIUM
    CVE-2008-10002

    A vulnerability has been found in cfire24 ajaxlife up to 0.3.2 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.3.3 is able... Read more

    Affected Products : ajaxlife
    • EPSS Score: %0.06
    • Published: Mar. 05, 2023
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2008-10001

    A vulnerability, which was classified as problematic, has been found in Pro2col Stingray FTS. The manipulation of the argument Username leads to cross site scripting. The attack may be initiated remotely. It is recommended to upgrade the affected componen... Read more

    Affected Products : stingray_fts
    • EPSS Score: %0.21
    • Published: Mar. 28, 2022
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2007-6763

    SAS Drug Development (SDD) before 32DRG02 mishandles logout actions, which allows a user (who was previously logged in) to access resources by pressing a back or forward button in a web browser.... Read more

    Affected Products : sas_drug_development
    • EPSS Score: %0.51
    • Published: Jul. 31, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-6762

    In the Linux kernel before 2.6.20, there is an off-by-one bug in net/netlabel/netlabel_cipso_v4.c where it is possible to overflow the doi_def->tags[] array.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.80
    • Published: Jul. 27, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2007-6758

    Server-side request forgery (SSRF) vulnerability in feed-proxy.php in extjs 5.0.0.... Read more

    Affected Products : ext_js
    • EPSS Score: %0.29
    • Published: Jan. 23, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-6745

    clamav 0.91.2 suffers from a floating point exception when using ScanOLE2.... Read more

    Affected Products : debian_linux clamav
    • EPSS Score: %0.65
    • Published: Nov. 07, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2007-5967

    A flaw in Mozilla's embedded certificate code might allow web sites to install root certificates on devices without user approval.... Read more

    Affected Products : firefox
    • EPSS Score: %0.11
    • Published: May. 17, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2007-5743

    viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option.... Read more

    Affected Products : debian_linux viewvc
    • EPSS Score: %0.35
    • Published: Nov. 07, 2019
    • Modified: Nov. 21, 2024

  • 5.9

    MEDIUM
    CVE-2007-4774

    The Linux kernel before 2.4.36-rc1 has a race condition. It was possible to bypass systrace policies by flooding the ptraced process with SIGCONT signals, which can can wake up a PTRACED process.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.18
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-4773

    Systrace before 1.6.0 has insufficient escape policy enforcement.... Read more

    Affected Products : systrace
    • EPSS Score: %0.63
    • Published: Jan. 15, 2020
    • Modified: Nov. 21, 2024

  • 9.1

    CRITICAL
    CVE-2007-3915

    Mondo 2.24 has insecure handling of temporary files.... Read more

    Affected Products : mondo
    • EPSS Score: %0.36
    • Published: Nov. 07, 2019
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2007-3732

    In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling interrupts, so that "curr... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.16
    • Published: Nov. 07, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2007-20001

    A flaw was found in StarWind iSCSI target. An attacker could script standard iSCSI Initiator operation(s) to exhaust the StarWind service socket, which could lead to denial of service. This affects iSCSI SAN (Windows Native) Version 3.2.2 build 2007-02-20... Read more

    Affected Products : iscsi_san
    • EPSS Score: %0.39
    • Published: Feb. 06, 2022
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2007-10003

    A vulnerability, which was classified as critical, has been found in The Hackers Diet Plugin up to 0.9.6b on WordPress. This issue affects some unknown processing of the file ajax_blurb.php of the component HTTP POST Request Handler. The manipulation of t... Read more

    Affected Products : the_hackers_diet
    • EPSS Score: %0.13
    • Published: Oct. 29, 2023
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-10002

    A vulnerability, which was classified as critical, has been found in web-cyradm. Affected by this issue is some unknown functionality of the file auth.inc.php. The manipulation of the argument login/login_password/LANG leads to sql injection. The attack m... Read more

    Affected Products : web-cyradm
    • EPSS Score: %0.06
    • Published: Jan. 08, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2007-10001

    A vulnerability classified as problematic has been found in web-cyradm. This affects an unknown part of the file search.php. The manipulation of the argument searchstring leads to sql injection. It is recommended to apply a patch to fix this issue. The id... Read more

    Affected Products : web-cyradm
    • EPSS Score: %0.06
    • Published: Jan. 05, 2023
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-0899

    There is a possible heap overflow in libclamav/fsg.c before 0.100.0.... Read more

    Affected Products : debian_linux clamav
    • EPSS Score: %0.45
    • Published: Nov. 06, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2007-0158

    thttpd 2007 has buffer underflow.... Read more

    Affected Products : thttpd
    • EPSS Score: %0.42
    • Published: Dec. 27, 2019
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2006-7254

    The nscd daemon in the GNU C Library (glibc) before version 2.5 does not close incoming client sockets if they cannot be handled by the daemon, allowing local users to carry out a denial of service attack on the daemon.... Read more

    Affected Products : glibc
    • EPSS Score: %0.04
    • Published: Apr. 10, 2019
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2006-7246

    NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used.... Read more

    • EPSS Score: %0.06
    • Published: Jan. 27, 2020
    • Modified: Nov. 21, 2024
Showing 20 of 291562 Results