CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Gitee•added 2018/07/31 11:21 a.m.•2 views

shadowbroker

This repository, jasonhan233/shadowbroker, is an offensive tool collection containing exploits and payloads. The repository was initially reported for containing sensitive data, and several files were deleted as a result. The remaining files include a mix of exploit code, payloads, and...

7.2AI score

Exploits0

Prion•added 2018/07/23 8:29 a.m.•10 views

Cross site scripting

An XSS vulnerability was discovered in WUZHI CMS 4.1.0. There is persistent XSS that allows remote attackers to inject arbitrary web script or HTML via the formnickname parameter to the index.php?m=core&f=set&v=sendmail URI. When the administrator accesses the "system settings - mail server"...

4.3CVSS6AI score0.01085EPSS

Exploits1References1Affected Software1

CNVD•added 2018/07/23 12:0 a.m.•3 views

WUZHI CMS Cross-Site Scripting Vulnerability (CNVD-2018-14090)

WUZHI CMS is China's five fingers WUZHI Internet technology company based on PHP and MySQL open source content management system CMS. A cross-site scripting vulnerability exists in WUZHI CMS version 4.1.0. A remote attacker can inject arbitrary Web script or HTML by sending the 'formnickname'...

6.1CVSS6AI score0.01085EPSS

Exploits1References1

Positive Technologies•added 2018/07/23 12:0 a.m.•4 views

PT-2018-12556 · Wuzhi · Wuzhi Cms

Name of the Vulnerable Software and Affected Versions: WUZHI CMS version 4.1.0 Description: A persistent XSS issue allows remote attackers to inject arbitrary web script or HTML via the formnickname parameter to the "index.php?m=core&f=set&v=sendmail" API endpoint. The XSS payload is triggered wh...

6.1CVSS5.9AI score0.01085EPSS

Exploits1References4

CNVD•added 2018/04/13 12:0 a.m.•2 views

Schneider Electric U.motion Builder sendmail email_attachment parameter information disclosure vulnerability

U.motion Builder is a builder product from Schneider Electric France. An information disclosure vulnerability exists in the handling of the Schneider Electric U.motion Builder sendmail emailattachment parameter in sendmail.php, which can be exploited by an attacker to select arbitrary files to be...

6.5CVSS6.5AI score0.01297EPSS

Tenable Nessus•added 2018/04/10 12:0 a.m.•66 views

AIX 5.3 TL 12 : sendmail (IJ03273)

https://vulners.com/cve/CVE-2014-3956 https://vulners.com/cve/CVE-2014-3956 The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended high-numbered file...

Tenable Nessus•added 2018/04/10 12:0 a.m.•44 views

AIX 7.2 TL 0 : sendmail (IJ02918)

Tenable Nessus•added 2018/04/10 12:0 a.m.•70 views

AIX 7.1 TL 5 : sendmail (IJ03121)

Tenable Nessus•added 2018/04/10 12:0 a.m.•46 views

AIX 7.1 TL 4 : sendmail (IJ02917)

Tenable Nessus•added 2018/04/10 12:0 a.m.•33 views

AIX 6.1 TL 9 : sendmail (IJ02915)

Tenable Nessus•added 2018/04/10 12:0 a.m.•43 views

AIX 7.2 TL 2 : sendmail (IJ02920)

Tenable Nessus•added 2018/04/10 12:0 a.m.•60 views

AIX 7.2 TL 1 : sendmail (IJ02919)

IBM AIX•added 2018/04/06 11:18 a.m.•833 views

Vulnerability in sendmail impacts AIX (CVE-2014-3956),Vulnerability in sendmail impacts VIOS (CVE-2014-3956)

IBM SECURITY ADVISORY First Issued: Fri Apr 6 11:18:40 CDT 2018 |Updated: Mon Sep 17 09:18:47 CDT 2018 |Update: Clarified that AIX 7.2 TL0 SP6 and bos.net.tcp.sendmail fileset level | 7.2.0.3 are impacted. An iFix for AIX 7.2 TL0 SP6 is now available. The most recent version of this document is...

1.9CVSS5.8AI score0.0063EPSS

Exploits0

Tenable Nessus•added 2018/03/12 12:0 a.m.•18 views

Solaris 10 (x86) : 125012-01

SunOS 5.10x86: sendmail patch. Date this patch was last updated by Sun : Jan/29/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS6.6AI score0.04328EPSS

Tenable Nessus•added 2018/03/12 12:0 a.m.•15 views

Solaris 10 (sparc) : 151074-02

SunOS 5.10: sendmail patch. Date this patch was last updated by Sun : Dec/13/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score

Tenable Nessus•added 2018/03/12 12:0 a.m.•18 views

Solaris 10 (sparc) : 125011-01

SunOS 5.10: sendmail patch. Date this patch was last updated by Sun : Jan/29/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS6.6AI score0.04328EPSS

Tenable Nessus•added 2018/03/12 12:0 a.m.•7 views

Solaris 10 (x86) : 151075-02

SunOS 5.10x86: sendmail patch. Date this patch was last updated by Sun : Dec/13/14 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score

Tenable Nessus•added 2018/03/12 12:0 a.m.•17 views

Solaris 10 (sparc) : 151074-03

SunOS 5.10: sendmail patch. Date this patch was last updated by Sun : Jul/13/15 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7AI score