18 matches found
CVE-2026-40097
Step CA is an online certificate authority for secure, automated certificate management for DevOps. From 0.24.0 to before 0.30.0-rc3, an attacker can trigger an index out-of-bounds panic in Step CA by sending a crafted attestation key AK certificate with an empty Extended Key Usage EKU extension...
Linux Distros Unpatched Vulnerability : CVE-2016-4021
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The readbinary function in buffer.c in pgpdump before 0.30 allows context-dependent attackers to cause a denial of service infinite loop and CPU consumption via...
UBUNTU-CVE-2023-21917
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...
UBUNTU-CVE-2020-19824
An issue in MPV v.0.29.1 fixed in v0.30 allows attackers to execute arbitrary code and crash program via the aoc parameter...
Buffer overflow
Buffer overflow in Yz1 0.30 and 0.32, as used in IZArc 4.4, ZipGenius 6.3.2.3116, and Explzh extension 8.14, allows attackers to execute arbitrary code via a crafted archive file, related to filename handling...
IZArc Yz1 Buffer Error Vulnerability
IZArc Yz1 is an application for the Chinese IZArc community. It provides compression and decompression functionality. A buffer error vulnerability exists in Yz1 0.30 and 0.32, which can be exploited by an attacker to execute arbitrary code via a crafted archive file related to filename handling...
PT-2023-11537 · Mpv +1 · Mpv +1
Name of the Vulnerable Software and Affected Versions: MPV version 0.29.1 Description: The issue allows attackers to execute arbitrary code and crash the program via the ao c parameter. Recommendations: For MPV version 0.29.1, update to version 0.30 to resolve the issue. As a temporary workaround...
Denial Of Service (DoS0
qpid-cpp-mrg is vulnerable to denial of service DoS attacks. The vulnerability exists as the qpidd broker in Apache Qpid 0.30 and earlier allows remote authenticated users to cause a denial of service daemon crash via an AMQP message with 1 an invalid range in a sequence set, 2 content-bearing...
PT-2018-18924 · Music Player Daemon +2 · Ncmpc +2
Name of the Vulnerable Software and Affected Versions: ncmpc versions prior to 0.30 Description: The issue is related to a NULL pointer dereference flaw. If a user is using the chat screen and another client sends a long chat message, it could cause a crash and denial of service. Recommendations:...
CVE-2015-0203
CVE-2015-0203 affects the qpidd broker in Apache Qpid 0.30 and earlier. Root cause: mishandling of AMQP messages allows remote authenticated users to cause a denial of service (daemon crash) via (1) an invalid range in a sequence set, (2) content-bearing methods other than message-transfer, or (3...
CVE-2017-7183
The TFTP server in ExtraPuTTY 0.30 and earlier allows remote attackers to cause a denial of service crash via a large 1 read or 2 write TFTP protocol message...
Xxe
XML external entity XXE vulnerability in the XML Exchange module in Apache Qpid 0.30 allows remote attackers to cause outgoing HTTP connections via a crafted message...
PHPDirector 0.30 <= Insecure Cookie Handling Exploit
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
ConnectPlatform <= Remote (blog.cgi) Based SQL Injection
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...
class.upload.php 0.30 - Arbitrary File Upload
class.upload.php 0.30 - Arbitrary File Upload Exploit Title: class.upload.php v 0.30 Remote File Upload Vulnerability Author: DIES3L Email: [email protected] Date: 26-1-2011 Software Link: http://www.verot.net GooGle Dork : No Dork For Kids : Version: 0.30 Tested on: LiNuX ====================== --...
Directory traversal
Multiple directory traversal vulnerabilities in iXon CMS 0.30 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the themeurl parameter to 1 index.php, 2 page.php, 3 search.php, 4 single.php, and 5 archives.php...
CVE-2007-2104
Multiple directory traversal vulnerabilities in iXon CMS 0.30 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the themeurl parameter to 1 index.php, 2 page.php, 3 search.php, 4 single.php, and 5 archives.php...
iXon_CMS 0.30 Remote File Include Vulnerabilities
""""""""""""""""""""""""""""""""""""""""""""""" """ :: :: ::::: :::: """ """ :: :: :: : :: """ """ :::: :: :: ::::: ::::: :::: """ """ :: :: ::: ::: :: :: :: :: :: """ """ :: :: :: : : ::::: :: :: :::: """ """ """ """"""""""""""""""""""""""""""""""""""""""""""" Xmor$ Security Vulnerability Resear...