Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Ide Security Vulnerabilities

cve
cve

CVE-2023-4218

In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. The user just needs to open any evil project or update an open project with a vulnerable file (for example for review a foreign repository or...

5CVSS

4.8AI Score

0.0005EPSS

2023-11-09 09:15 AM
28
cve
cve

CVE-2008-7271

Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE, possibly 3.3.2, allow remote attackers to inject arbitrary web script or HTML via (1) the searchWord parameter to help/advanced/searchView.jsp or (2) the workingSet...

5.6AI Score

0.521EPSS

2022-10-03 04:13 PM
25
cve
cve

CVE-2017-8315

Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on...

7.5CVSS

7.5AI Score

0.002EPSS

2018-04-20 07:29 PM
19
cve
cve

CVE-2016-4519

Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.30 allows remote attackers to execute arbitrary code via a crafted filename field in a ZIP archive in a vlp...

9.8CVSS

9.7AI Score

0.06EPSS

2016-06-25 01:59 AM
19
cve
cve

CVE-2015-7939

Heap-based buffer overflow in Unitronics VisiLogic OPLC IDE before 9.8.09 allows remote attackers to execute arbitrary code via a long vlp...

9.6CVSS

9.7AI Score

0.276EPSS

2016-01-09 02:59 AM
21
cve
cve

CVE-2015-7905

Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to execute unspecified code via unknown...

7.2AI Score

0.342EPSS

2015-11-13 03:59 AM
26
cve
cve

CVE-2015-6478

Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allows remote attackers to have an unspecified impact via a crafted web...

6.6AI Score

0.183EPSS

2015-11-13 03:59 AM
22
cve
cve

CVE-2010-4647

Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2)...

5.5AI Score

0.521EPSS

2011-01-13 07:00 PM
38
cve
cve

CVE-2009-1674

Stack-based buffer overflow in Microchip MPLAB IDE 8.30 allows user-assisted remote attackers to execute arbitrary code via a long .cof pathname in a [TOOL_SETTINGS] section in a .mcp file, possibly a related issue to...

8.4AI Score

0.061EPSS

2009-05-18 06:30 PM
21
cve
cve

CVE-2009-1608

Multiple buffer overflows in Microchip MPLAB IDE 8.30 and possibly earlier versions allow user-assisted remote attackers to execute arbitrary code via a .MCP project file with long (1) FILE_INFO, (2) CAT_FILTERS, and possibly other...

8AI Score

0.061EPSS

2009-05-11 08:00 PM
26
cve
cve

CVE-2004-0813

Unknown vulnerability in the SG_IO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase...

5.9AI Score

0.0004EPSS

2004-12-31 05:00 AM
22