Skip to main content

Common

5 CVEs product

Monthly

CVE-2024-39003 HIGH This Week

amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function setValue. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Prototype Pollution RCE Denial Of Service Common
NVD GitHub
CVSS 3.1
7.3
EPSS
0.5%
CVE-2024-38994 npm HIGH POC This Week

amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function extend. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution RCE Denial Of Service Common
NVD GitHub
CVSS 3.1
7.3
EPSS
0.5%
CVE-2021-32631 MEDIUM PATCH This Month

Common is a package of common modules that can be accessed by NIMBLE services. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Common
NVD GitHub
CVSS 3.1
6.5
EPSS
1.1%
CVE-2018-14065 PHP CRITICAL PATCH Act Now

XMLReader.php in PHPOffice Common before 0.2.9 allows XXE. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE PHP Common
NVD GitHub
CVSS 3.0
9.8
EPSS
2.2%
CVE-2015-5723 PHP HIGH PATCH This Week

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

PHP Privilege Escalation Zend Cache Debian Linux Object Relational Mapper +7
NVD
CVSS 3.0
7.8
EPSS
0.0%
EPSS 0% CVSS 7.3
HIGH This Week

amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function setValue. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Prototype Pollution RCE Denial Of Service +1
NVD GitHub
EPSS 1% CVSS 7.3
HIGH POC This Week

amoyjs amoy common v1.0.10 was discovered to contain a prototype pollution via the function extend. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Prototype Pollution RCE Denial Of Service +1
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Common is a package of common modules that can be accessed by NIMBLE services. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Common
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

XMLReader.php in PHPOffice Common before 0.2.9 allows XXE. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XXE PHP Common
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

PHP Privilege Escalation Zend Cache +9
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy