248 matches found
Exploit for Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Openssl
🔐 SSH Exploit Tool Educational Use Only 📌 Description Th...
CVE-2022-0166
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary cod...
EUVD-2026-0166
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
EUVD-2008-2282
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2011-0166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The HTML5 drag and drop functionality in WebKit in Apple Safari before 5.0.4 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain...
CVE-2023-0166
The Product Slider for WooCommerce by PickPlugins WordPress plugin before 1.13.42 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
CVE-2020-0166
In multiple functions of URI.java, there is a possible escalation of privilege due to missing validation in the parceling of URI information. This could lead to a local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...
CVE-2019-0166
Insufficient input validation in the subsystem for IntelR AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access...
Linux Distros Unpatched Vulnerability : CVE-2013-0166
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for OCSP responses, which allows remote OCS...
Photon OS 4.0: Squashfs PHSA-2022-4.0-0166
An update of the squashfs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-4.0-0166. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 4.0: Httpd PHSA-2022-4.0-0166
An update of the httpd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-4.0-0166. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CVE-2019-0166
creationtimestamp| type| source ---|---|--- 2024-03-15 12:41:28+00:00| seen| https://t.me/ctinow/208704...
CVE-2024-0166
creationtimestamp| type| source ---|---|--- 2024-02-12 20:26:48+00:00| seen| https://t.me/ctinow/183372 2025-05-06 21:21:36+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15226...
CVE-2024-0166
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svctcpdump utility. An authenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands with elevated privileges...
CVE-2024-0166
Dell Unity contains an OS Command Injection in the svc_tcpdump utility for versions prior to 5.4. An authenticated, local attacker can exploit this to execute arbitrary OS commands with elevated privileges. The underlying issue is command parsing/input handling in svc_tcpdump, enabling command ex...
K14261: OpenSSL OCSP vulnerability CVE-2013-0166
Security Advisory Description OpenSSL before 0.9.8y, 1.0.0 before 1.0.0k, and 1.0.1 before 1.0.1d does not properly perform signature verification for Online Certificate Status Protocol OCSP responses, which allow remote attackers to cause a denial-of-service DoS NULL pointer dereference and...
SUSE CVE-2019-0166
Insufficient input validation in the subsystem for IntelR AMT before versions 11.8.70, 11.11.70, 11.22.70 and 12.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access...
CVE-2023-0166 PickPlugins Product Slider for WooCommerce < 1.13.42 - Contributor+ Stored XSS
The Product Slider for WooCommerce by PickPlugins WordPress plugin before 1.13.42 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...
CVE-2023-0166
The CVE refers to the WordPress plugin Product Slider for WooCommerce by PickPlugins, affected in versions prior to 1.13.42. The vulnerability arises because certain shortcode attributes are not validated or escaped before being output in a page or post, enabling Stored Cross-Site Scripting when ...
CVE-2023-0166 PickPlugins Product Slider for WooCommerce < 1.13.42 - Contributor+ Stored XSS
The Product Slider for WooCommerce by PickPlugins WordPress plugin before 1.13.42 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored...