Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

7.5

HIGH

CVE-2015-2183

Multiple SQL injection vulnerabilities in the administrative backend in ZeusCart 4 allow remote administrators to execute arbitrary SQL commands via the id parameter in a (1) disporders detail or (2) subadminmgt edit action or (3) cid parameter in an edit...

Affected Products : zeuscart
EPSS Score: %3.98

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2015-0271

The log-viewing function in the Red Hat redhat-access-plugin before 6.0.3 for OpenStack Dashboard (horizon) allows remote attackers to read arbitrary files via a crafted path....

Affected Products : openstack
EPSS Score: %0.20

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
5.0

MEDIUM

CVE-2015-0201

The Java SockJS client in Pivotal Spring Framework 4.1.x before 4.1.5 generates predictable session ids, which allows remote attackers to send messages to other sessions via unspecified vectors....

Affected Products : spring_framework spring_framework
EPSS Score: %0.29

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
7.5

HIGH

CVE-2014-9566

Multiple SQL injection vulnerabilities in the Manage Accounts page in the AccountManagement.asmx service in the Solarwinds Orion Platform 2015.1, as used in Network Performance Monitor (NPM) before 11.5, NetFlow Traffic Analyzer (NTA) before 4.1, Network ...

Affected Products : orion_ip_address_manager orion_netflow_traffic_analyzer orion_network_configuration_manager orion_network_performance_monitor orion_server_and_application_manager orion_user_device_tracker orion_voip_\&_network_quality_manager orion_web_performance_monitor
EPSS Score: %78.93

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
4.0

MEDIUM

CVE-2014-8112

389 Directory Server 1.3.1.x, 1.3.2.x before 1.3.2.27, and 1.3.3.x before 1.3.3.9 stores "unhashed" passwords even when the nsslapd-unhashed-pw-switch option is set to off, which allows remote authenticated users to obtain sensitive information by reading...

Affected Products : fedora 389_directory_server
EPSS Score: %0.27

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
5.0

MEDIUM

CVE-2014-8105

389 Directory Server before 1.3.2.27 and 1.3.3.x before 1.3.3.9 does not properly restrict access to the "cn=changelog" LDAP sub-tree, which allows remote attackers to obtain sensitive information from the changelog via unspecified vectors....

Affected Products : fedora 389_directory_server
EPSS Score: %0.44

Published: Mar. 10, 2015

Modified: Apr. 12, 2025
4.3

MEDIUM

CVE-2015-2244

Multiple cross-site scripting (XSS) vulnerabilities in Webshop hun 1.062S allow remote attackers to inject arbitrary web script or HTML via the (1) param, (2) center, (3) lap, (4) termid, or (5) nyelv_id parameter to index.php....

Affected Products : webshop_hun
EPSS Score: %0.25

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
7.5

HIGH

CVE-2015-2243

Directory traversal vulnerability in Webshop hun 1.062S allows remote attackers to have unspecified impact via directory traversal sequences in the mappa parameter to index.php....

Affected Products : webshop_hun
EPSS Score: %0.57

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
7.5

HIGH

CVE-2015-2242

Multiple SQL injection vulnerabilities in Webshop hun 1.062S allow remote attackers to execute arbitrary SQL commands via the (1) termid or (2) nyelv_id parameter to index.php....

Affected Products : webshop_hun
EPSS Score: %0.33

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
5.0

MEDIUM

CVE-2015-2206

libraries/select_lang.lib.php in phpMyAdmin 4.0.x before 4.0.10.9, 4.2.x before 4.2.13.2, and 4.3.x before 4.3.11.1 includes invalid language values in unknown-language error responses that contain a CSRF token and may be sent with HTTP compression, which...

Affected Products : fedora phpmyadmin
EPSS Score: %0.92

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7898

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via unspecified vectors....

Affected Products : windows ole_point_of_sale_driver
EPSS Score: %28.81

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7897

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSScanner.ocx for Imaging Barcode scanners, Linear Barcode scanners, Presentation Barcode scanner...

Affected Products : ole_point_of_sale_driver 2d_value_wireless_scanner_k3l28aa imaging_barcode_scanner_bw868aa linear_barcode_scanner_qy405aa presentation_barcode_scanner_qy439aa retail_integrated_barcode_scanner_e1l07aa wireless_barcode_scanner_e6p34aa
EPSS Score: %28.81

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7895

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCashDrawer.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid PO...

Affected Products : ole_point_of_sale_driver hybrid_pos_printer_with_micr_us_fk184aa pusb_thermal_receipt_printer_f7m67aa pusb_thermal_receipt_printer_fk224aa serialusb_thermal_receipt_printer_bm476aa value_serial\/usb_receipt_printer_f7m66aa usb_standard_duty_cash_drawer_e8e45aa
EPSS Score: %28.81

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7894

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSPOSPrinter.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid PO...

Affected Products : ole_point_of_sale_driver hybrid_pos_printer_with_micr_us_fk184aa pusb_thermal_receipt_printer_f7m67aa pusb_thermal_receipt_printer_fk224aa serialusb_thermal_receipt_printer_bm476aa value_serial\/usb_receipt_printer_f7m66aa
EPSS Score: %30.08

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7893

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCheckScanner.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid ...

Affected Products : ole_point_of_sale_driver hybrid_pos_printer_with_micr_us_fk184aa pusb_thermal_receipt_printer_f7m67aa pusb_thermal_receipt_printer_fk224aa serialusb_thermal_receipt_printer_bm476aa value_serial\/usb_receipt_printer_f7m66aa
EPSS Score: %30.08

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7892

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSMSR.ocx for Mini MSR magnetic stripe readers, Retail Integrated Dual-Head MSR magnetic stripe r...

Affected Products : ole_point_of_sale_driver pos_keyboard_fk221aa pos_keyboard_with_msr_fk218aa integrated_single_head_msr_w\/o_sred_j1a33aa integrated_single_head_w\/o_msr_sred_j1a34aa mini_msr_fk186aa retail_integrated_dual-head_msr_qz673aa rp7_single_head_msr_w\/o_sred_k1k15aa
EPSS Score: %28.81

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7891

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSPOSKeyboard.ocx for POS keyboards and POS keyboards with MSR, aka ZDI-CAN-2509....

Affected Products : ole_point_of_sale_driver pos_keyboard_fk221aa pos_keyboard_with_msr_fk218aa
EPSS Score: %30.08

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7890

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSToneIndicator.ocx for POS keyboards and POS keyboards with MSR, aka ZDI-CAN-2510....

Affected Products : ole_point_of_sale_driver pos_keyboard_fk221aa pos_keyboard_with_msr_fk218aa
EPSS Score: %30.08

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7889

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSLineDisplay.ocx for Retail RP7 VFD Customer Display monitors, Retail Integrated 2x20 Display mo...

Affected Products : ole_point_of_sale_driver graphical_pos_pole_display_qz704aa lcd_pole_display_f7a93aa pos_pole_display_fk225aa retail_integrated_2x20_complex_g7g29aa retail_integrated_2x20_display_g6u79aa retail_rp7_vfd_customer_display_qz701aa
EPSS Score: %28.81

Published: Mar. 09, 2015

Modified: Apr. 12, 2025
10.0

HIGH

CVE-2014-7888

The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSMICR.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid POS prin...

Affected Products : ole_point_of_sale_driver hybrid_pos_printer_with_micr_us_fk184aa pusb_thermal_receipt_printer_f7m67aa pusb_thermal_receipt_printer_fk224aa serialusb_thermal_receipt_printer_bm476aa value_serial\/usb_receipt_printer_f7m66aa
EPSS Score: %30.08

Published: Mar. 09, 2015

Modified: Apr. 12, 2025

Showing 20 of 291368 Results

Latest CVE Feed

7.5

4.0

5.0

7.5

4.0

5.0

4.3

7.5

7.5

5.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

10.0

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable