Lucene search
+L

371 matches found

0day.today
0day.today
added 2019/09/27 12:0 a.m.54 views

thesystem App 1.0 - (server_name) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: thesystem 1.0 - 'servername' SQL Injection Author: Sadik Cetin Vendor Homepage: https://github.com/kostasmitroglou/thesystem Software Link: https://github.com/kostasmitroglou/thesystem Tested Version: 1.0 Tested on OS: Windows 1...

7.4AI score
Exploits0
OSV
OSV
added 2019/08/20 4:15 p.m.4 views

CVE-2017-18530

The rating-bws plugin before 0.2 for WordPress has multiple XSS issues...

6.1CVSS5.8AI score0.01384EPSS
Exploits1References1
OSV
OSV
added 2019/08/12 4:15 p.m.4 views

CVE-2017-18501

The social-login-bws plugin before 0.2 for WordPress has multiple XSS issues...

6.1CVSS5.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.14 views

Rockwell Automation PM3000 M8 w/EtherNetIP,Class 0.2 1404-M8xxx-ENT-02 B

Binary data 753893.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.19 views

Rockwell Automation PM3000 M8 w/ControlNet, Class 0.2 1404-M8xxx-CNT-02

Binary data 753895.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.9 views

Rockwell Automation PM3000 M5 w/ControlNet, Class 0.2 1404-M5xxx-CNT-02

Binary data 753887.prm...

7.3AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/04/22 4:5 p.m.6 views

OpenJDK: Incorrect skeleton selection in RMI registry server-side dispatch handling (RMI, 8218453)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: RMI. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.9CVSS7.2AI score0.37618EPSS
Exploits0References4
Prion
Prion
added 2019/03/21 4:1 p.m.21 views

Design/Logic Flaw

There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by for example sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service Segmentation...

6.8CVSS8AI score0.01202EPSS
Exploits1References2Affected Software2
CVE
CVE
added 2019/03/19 6:16 p.m.55 views

CVE-2019-9878

CVE-2019-9878 affects Xpdf 4.0.0 (as used in pdfalto 0.2). The vulnerability is an invalid memory access in GfxIndexedColorSpace::mapColorToBase() in GfxState.cc, which can be triggered by sending a crafted PDF to the pdftops binary, leading to Denial of Service via a segmentation fault or potent...

7.8CVSS8AI score0.01202EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2019/03/19 6:16 p.m.44 views

CVE-2019-9878

There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by for example sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service Segmentation...

7.8CVSS7.1AI score0.01202EPSS
Exploits1
Cvelist
Cvelist
added 2019/03/19 6:16 p.m.25 views

CVE-2019-9878

There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by for example sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service Segmentation...

8.1AI score0.01202EPSS
Exploits1References2
Prion
Prion
added 2019/01/21 6:29 a.m.20 views

Stack overflow

GattLib 0.2 has a stack-based buffer over-read in gattlibconnect in dbus/gattlib.c because strncpy is misused...

5.8CVSS8.7AI score0.04965EPSS
Exploits5References3Affected Software1
Prion
Prion
added 2018/10/12 10:15 p.m.16 views

Heap overflow

A issue was found in pdfalto 0.2. There is a heap-based buffer overflow in the TextPage::addAttributsNode function in XmlAltoOutputDev.cc...

6.8CVSS7.8AI score0.01246EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2018/09/05 10:29 p.m.14 views

CVE-2018-16552

MicroPyramid Django-CRM 0.2 allows CSRF for /users/create/, /users//edit/, and /accounts//delete/ URIs...

8.8CVSS8.8AI score0.00638EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2018/07/23 7:51 p.m.3 views

many-versioned-wheel (>=0.1.0 <=0.2.0) potentially affected by CVE-2011-1158 via feedparser (=5.0.0)

feedparser PYPI version =5.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on feedparser and may be impacted: - many-versioned-wheel =0.1.0, =0.2.0 Source cves: CVE-2011-1158 Source advisory: OSV:GHSA-4M72-RMM9-2QJR...

4.3CVSS5.8AI score0.02326EPSS
Exploits0
CNVD
CNVD
added 2018/03/27 12:0 a.m.4 views

Anymail django-anymail Information Disclosure Vulnerability

Anymail django-anymail is a set of multiple transactional e-mail service provider integrated into Django open source e-mail system . A security vulnerability exists in the WEBHOOKAUTHORIZATION setting value in Anymail django-anymail versions 0.2 through 1.3. An attacker can exploit this...

7.4CVSS6.7AI score0.01243EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/09/27 12:0 a.m.28 views

Kallithea < 0.2 CSRF Vulnerability

A vulnerability has been found in Kallithea, allowing attackers to gain unauthorised access to the account of a logged in user. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

8.8CVSS8.9AI score0.00725EPSS
Exploits0References3
Prion
Prion
added 2017/07/26 2:29 p.m.18 views

Memory corruption

A memory leak was found in the way SIPcrack 0.2 handled processing of SIP traffic, because a lines array was mismanaged. A remote attacker could potentially use this flaw to crash long-running sipdump network sniffing sessions...

5CVSS7.4AI score0.02549EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2017/07/26 2:29 p.m.19 views

CVE-2017-11654

An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 processed SIP traffic, because 0x00 termination of a payload array was mishandled. A remote attacker could potentially use this flaw to crash the sipdump process by generating specially crafted SIP traffic...

5.9CVSS5.6AI score0.02014EPSS
Exploits1References2
Prion
Prion
added 2017/07/26 2:29 p.m.11 views

Cross site scripting

An out-of-bounds read and write flaw was found in the way SIPcrack 0.2 processed SIP traffic, because 0x00 termination of a payload array was mishandled. A remote attacker could potentially use this flaw to crash the sipdump process by generating specially crafted SIP traffic...

4.3CVSS5.6AI score0.02014EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder