Search Results | AttackerKB

Show filters

Topics 157 Users 9,709

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

157 Total Results

Displaying 11-20 of 157

Attacker Value

Unknown

CVE-2022-4974

Disclosure Date: October 16, 2024 (last updated October 16, 2024)

The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2024-38194

Disclosure Date: September 10, 2024 (last updated September 18, 2024)

An authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2022-41061

Disclosure Date: November 09, 2022 (last updated January 11, 2025)

Microsoft Word Remote Code Execution Vulnerability

Attack Vector: Local Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-41060

Disclosure Date: November 09, 2022 (last updated January 11, 2025)

Microsoft Word Information Disclosure Vulnerability

Attack Vector: Local Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-41106

Disclosure Date: November 09, 2022 (last updated January 11, 2025)

Microsoft Excel Remote Code Execution Vulnerability

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2022-41063

Disclosure Date: November 09, 2022 (last updated January 11, 2025)

Microsoft Excel Remote Code Execution Vulnerability

Attack Vector: Local Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-41103

Disclosure Date: November 09, 2022 (last updated January 11, 2025)

Microsoft Word Information Disclosure Vulnerability

Attack Vector: Local Privileges: None User Interaction: Required

0

Attacker Value

Unknown

CVE-2022-30173

Disclosure Date: June 15, 2022 (last updated November 29, 2024)

Microsoft Excel Remote Code Execution Vulnerability

0

Attacker Value

Unknown

CVE-2022-30172

Disclosure Date: June 15, 2022 (last updated November 29, 2024)

Microsoft Office Information Disclosure Vulnerability

0

Attacker Value

Unknown

CVE-2022-30171

Disclosure Date: June 15, 2022 (last updated November 29, 2024)

Microsoft Office Information Disclosure Vulnerability

0