Lucene search
K

75 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:54 a.m.7 views

SUSE CVE-2011-0873

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, and 5.0 Update 29 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D...

10CVSS6.4AI score0.0627EPSS
Exploits0References13
Circl
Circl
added 2022/05/16 6:26 p.m.4 views

CVE-2022-0873

creationtimestamp| type| source ---|---|--- 2022-05-16 18:26:27+00:00| seen| https://t.me/cibsecurity/42735 2025-12-22 11:21:44+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-0873.yaml 2025-12-23 21:02:58+00:00| seen|...

4.8CVSS4.9AI score0.00872EPSS
Exploits2References3
NVD
NVD
added 2022/05/16 3:15 p.m.14 views

CVE-2022-0873

The Gmedia Photo Gallery WordPress plugin before 1.20.0 does not sanitise and escape the Album's name before outputting it in pages/posts with a media embed, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered-html capability is...

4.8CVSS0.00872EPSS
Exploits2References1
CVE
CVE
added 2022/05/16 2:30 p.m.76 views

CVE-2022-0873

The CVE-2022-0873 entry concerns the WordPress Gmedia Photo Gallery plugin prior to 1.20.0. The connected Nuclei template confirms a Cross-Site Scripting (XSS) vulnerability caused by failure to sanitize/escape the album name when output in pages or posts with a media embed. This could allow high...

4.8CVSS4.7AI score0.00872EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/05/16 2:30 p.m.15 views

CVE-2022-0873 Gmedia Photo Gallery < 1.20.0 - Admin+ Stored Cross-Site Scripting

The Gmedia Photo Gallery WordPress plugin before 1.20.0 does not sanitise and escape the Album's name before outputting it in pages/posts with a media embed, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered-html capability is...

5.1AI score0.00872EPSS
Exploits2References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/27 9:58 a.m.11 views

Security Bulletin: Cross-Site Request Forgery vulnerability in IBM InfoSphere Master Data Management Server (CVE-2014-0873)

Summary The IBM InfoSphere Master Data Management Server User Interfaces are vulnerable to Cross-Site Request Forgery attacks. Vulnerability Details CVE ID: CVE-2014-0873 DESCRIPTION: Due to insufficient safeguards against cross-site request forgery in the IBM InfoSphere Master Data Management...

6.8CVSS5.9AI score0.0057EPSS
Exploits0Affected Software2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2019:0873-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.65005EPSS
Exploits8References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2017:0873-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01798EPSS
Exploits4References4
Cvelist
Cvelist
added 2020/01/24 9:14 p.m.11 views

CVE-2019-0873

...

Exploits0
CVE
CVE
added 2020/01/24 9:14 p.m.102 views

CVE-2019-0873

CVE-2019-0873 is rejected/not used; this ID does not represent an active vulnerability entry.

7.3AI score
Exploits0
Prion
Prion
added 2018/03/14 5:29 p.m.23 views

Memory corruption

ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872,...

7.6CVSS7.3AI score0.66554EPSS
Exploits6References2
NVD
NVD
added 2018/03/14 5:29 p.m.24 views

CVE-2018-0873

ChakraCore and Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from...

7.6CVSS7.3AI score0.15556EPSS
Exploits0References3
Prion
Prion
added 2018/03/14 5:29 p.m.21 views

Memory corruption

ChakraCore and Microsoft Windows 10 1703 and 1709 allow remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930,...

7.6CVSS7.2AI score0.66554EPSS
Exploits6References3
CVE
CVE
added 2018/03/14 5:0 p.m.96 views

CVE-2018-0873

CVE-2018-0873 maps to a ChakraCore/Chakra Scripting Engine Memory Corruption vulnerability that allows remote code execution in ChakraCore and Microsoft Edge on affected Windows versions (Windows 10 1511–1709 and Windows Server 2016). The root cause is how the Chakra engine handles in‑memory obje...

7.6CVSS7.2AI score0.15556EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.36 views

Solaris 10 (x86) : 139463-02

SunOS 5.10x86: nfssrv patch. Date this patch was last updated by Sun : Mar/05/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

6.8CVSS6.7AI score0.01961EPSS
Exploits4References4
NVD
NVD
added 2017/12/06 2:29 p.m.16 views

CVE-2017-0873

A denial of service vulnerability in the Android media framework libmpeg2. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID A-63316255...

7.1CVSS6.4AI score0.00428EPSS
Exploits0References2
CVE
CVE
added 2017/12/06 2:0 p.m.54 views

CVE-2017-0873

CVE-2017-0873 is a DoS vulnerability in Android's media framework libmpeg2. The issue affects Android versions 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, and 8.0, and is classified as DoS with impact to availability. The Android Security Bulletin lists this CVE under the Media framework with a high severity,...

7.1CVSS6.3AI score0.00428EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.6 views

CVE-2003-0873

...

Exploits0
CVE
CVE
added 2015/02/13 2:0 a.m.35 views

CVE-2015-0873

PerlTreeBBS (Homepage Decorator) is affected by a persistent cross-site scripting vulnerability (CWE-79) in version 2.30 and earlier. The vulnerability could cause arbitrary script execution in a user’s browser. Affected product: PerlTreeBBS from Homepage Decorator; root cause: persistent XSS; im...

4.3CVSS5.8AI score0.00942EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.43 views

openSUSE Security Update : java-1_6_0-sun (openSUSE-SU-2011:0633-1)

Oracle Java 6 Update 26 fixes several security vulnerabilities. Please refer to Oracle's site for further information: http://www.oracle.com/technetwork/topics/security/javacpujun e2011-313339.html CVE-2011-0862, CVE-2011-0873, CVE-2011-0815, CVE-2011-0817, CVE-2011-0863, CVE-2011-0864,...

10CVSS8.1AI score0.06277EPSS
Exploits0References20
Rows per page
Query Builder