Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

836 matches found

Veracode
Veracodeadded 2019/05/02 4:44 a.m.48 views

Improper Access Control

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update...

6.5CVSS5.9AI score0.13175EPSS
Exploits2References11Affected Software1
Veracode
Veracodeadded 2019/05/02 4:44 a.m.25 views

Improper Access Control

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. This update fixes several vulnerabilities in the MySQL database server. Information about these flaws can be found on the Oracle Critical Patch Update...

6.5CVSS5.9AI score0.13175EPSS
Exploits2References11Affected Software1
Veracode
Veracodeadded 2019/04/25 7:39 a.m.19 views

Symlink Attack

github.com/snapcore/snapd is vulnerable to symlink attack. A malicious current working directory can be used to bypass permission checks on a multi-user system. The vulnerability can be exploited when snap-confine changes the current working directory and attempts to restore the original working...

7.5CVSS7.2AI score0.02418EPSS
Exploits1References5Affected Software1
0day.today
0day.todayadded 2019/03/19 12:0 a.m.46 views

Netartmedia Event Portal 2.0 - Email SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Netartmedia Event Portal 2.0 - 'Email' SQL Injection Date: 19.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.netartmedia.net/eventportal/ Demo Site: https://www.phpscriptdemos.com/events/ Version: 2.0...

0.1AI score
Exploits0
Fedora
Fedoraadded 2019/03/01 11:11 p.m.54 views

[SECURITY] Fedora 28 Update: community-mysql-5.7.25-1.fc28

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

7.7CVSS2.7AI score0.04445EPSS
Exploits0
Fedora
Fedoraadded 2019/02/28 8:28 p.m.62 views

[SECURITY] Fedora 29 Update: community-mysql-8.0.15-1.fc29

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

7.7CVSS2.7AI score0.04445EPSS
Exploits0
Kitploit
Kitploitadded 2019/01/05 12:59 p.m.177 views

JSShell - An Interactive Multi-User Web JS Shell

An interactive multi-user web based javascript shell. It was initially created in order to debug remote esoteric browsers during experiments and research. This tool can be easily attached to XSS Cross Site Scripting payload to achieve browser remote code execution similar to the BeeF framework...

7.6AI score
Exploits0References3
CNVD
CNVDadded 2018/12/11 12:0 a.m.1 views

DSMall open source multi-user mall system front-end command execution vulnerability

DSMall is an open source B2B2C e-commerce system created by Deshaun Networks. DSMall open source multi-user mall system in the foreground there is a command injection vulnerability . Attackers can use the vulnerability to obtain server privileges...

7.6AI score
Exploits0
Fedora
Fedoraadded 2018/11/27 5:13 p.m.37 views

[SECURITY] Fedora 28 Update: community-mysql-5.7.24-1.fc28

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

7.7CVSS2.7AI score0.04445EPSS
Exploits0
Fedora
Fedoraadded 2018/11/27 3:13 a.m.55 views

[SECURITY] Fedora 27 Update: mariadb-10.2.19-1.fc27

MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client...

9.8CVSS3.5AI score0.05999EPSS
Exploits0
Fedora
Fedoraadded 2018/11/27 3:13 a.m.53 views

[SECURITY] Fedora 27 Update: community-mysql-5.7.24-1.fc27

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

7.7CVSS2.7AI score0.04445EPSS
Exploits0
Fedora
Fedoraadded 2018/11/10 3:21 a.m.35 views

[SECURITY] Fedora 29 Update: community-mysql-8.0.13-1.fc29

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

7.7CVSS2.7AI score0.04445EPSS
Exploits0
Fedora
Fedoraadded 2018/08/31 9:17 p.m.39 views

[SECURITY] Fedora 28 Update: mariadb-10.2.17-1.fc28

MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client...

7.7CVSS3.5AI score0.04061EPSS
Exploits0
Fedora
Fedoraadded 2018/08/31 8:4 p.m.60 views

[SECURITY] Fedora 27 Update: mariadb-10.2.17-1.fc27

MariaDB is a community developed branch of MySQL. MariaDB is a multi-user, multi-threaded SQL database server. It is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client...

7.7CVSS3.5AI score0.04061EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2018/08/16 2:24 p.m.206 views

Moderate: Red Hat Security Advisory: mariadb security and bug fix update

An update for mariadb is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.7CVSS6.7AI score0.04061EPSS
Exploits0References25
UbuntuCve
UbuntuCveadded 2018/07/27 6:29 p.m.23 views

CVE-2017-2625

It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS6.7AI score0.00538EPSS
Exploits3References4
Prion
Prionadded 2018/07/27 6:29 p.m.21 views

Design/Logic Flaw

It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

2.1CVSS5.2AI score0.00538EPSS
Exploits3References8Affected Software7
NVD
NVDadded 2018/07/27 6:29 p.m.17 views

CVE-2017-2625

It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS5.8AI score0.00538EPSS
Exploits3References8
OSV
OSVadded 2018/07/27 6:29 p.m.0 views

UBUNTU-CVE-2017-2625

It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS6.6AI score0.00538EPSS
Exploits3References5
OSV
OSVadded 2018/07/27 6:29 p.m.0 views

DEBIAN-CVE-2017-2625

It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

5.5CVSS9.1AI score0.00538EPSS
Exploits3References1
Rows per page
Query Builder