85 matches found
CVE-2019-0947
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0945, CVE-2019-0946...
CVE-2013-0947
EMC RSA Authentication Manager 8.0 before P1 allows local users to discover cleartext operating-system passwords, HTTP plug-in proxy passwords, and SNMP communities by reading a 1 log file or 2 configuration file...
CVE-1999-0947
AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters...
CVE-2025-0947
creationtimestamp| type| source ---|---|--- 2025-02-01 17:15:26+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lh4zb36cvi2p 2025-02-01 17:37:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lh52iysvjd2q 2025-02-01 19:17:04+00:00|...
CVE-2025-0947
A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be launched remotely. The...
CVE-2025-0947 itsourcecode Tailoring Management System expview.php sql injection
A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be launched remotely. The...
CVE-2025-0947 itsourcecode Tailoring Management System expview.php sql injection
A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be launched remotely. The...
CVE-2024-0947 Cookies Manipulation in Talya Informatics' Elektraweb
Reliance on Cookies without Validation and Integrity Checking vulnerability in Talya Informatics Elektraweb allows Session Credential Falsification through Manipulation, Accessing/Intercepting/Modifying HTTP Cookies, Manipulating Opaque Client-based Data Tokens. This issue affects Elektraweb:...
RHEL 7 : pki-core and redhat-pki-theme (RHSA-2021:0947)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0947 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-core: store...
Updated unarj packages fix security vulnerability
Buffer overflow in unarj before 2.63a-r2 allows remote attackers to execute arbitrary code via an arj archive that contains long filenames. CVE-2004-0947 Directory traversal vulnerability in the -x extract command line option in unarj allows remote attackers to overwrite arbitrary files via an ar...
CVE-2023-0947
creationtimestamp| type| source ---|---|--- 2023-02-22 07:17:10+00:00| seen| https://t.me/cibsecurity/58677...
CVE-2023-0947
Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2023-0947 Path Traversal in flatpressblog/flatpress
Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2023-0947 Path Traversal in flatpressblog/flatpress
Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3...
CVE-2023-0947
CVE-2023-0947 : Path Traversal vulnerability in FlatPress (flatpressblog/flatpress) prior to version 1.3. The issue allows unauthenticated attackers to traverse directories and access sensitive files in the FP-content area due to improper path validation. Affected: FlatPress prior to 1.3. Impact ...
CVE-2021-0947
creationtimestamp| type| source ---|---|--- 2022-08-24 18:23:20+00:00| seen| https://t.me/cibsecurity/48649...
CVE-2021-0947
CVE-2021-0947 involves a kernel information disclosure in Android's graphics stack. The method PVRSRVBridgeTLDiscoverStreams allocates a heap buffer for streams, fills it via TLServerDiscoverStreamsKM, then copies it to userspace. If TLServerDiscoverStreamsKM fails (e.g., due to invalid sizes), t...
CVE-2022-0947
CVE-2022-0947 affects the ABB ARG600 Wireless Gateway series. The vulnerability allows an attacker to remotely connect to the serial port gateway and/or protocol converter, depending on configuration, enabling high-severity impact. Public metrics show a CVSS v3.1 base score of 9.8 (CRITICAL) with...
SUSE: Security Advisory (SUSE-SU-2021:0947-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-0947
CVE-2009-0947 is detailed with concrete technical flaws: multiple integer overflows in the cdf_read_property_info and cdf_read_sat functions in a file prior to version 5.02. The candiate exploit path is via these overflows, potentially enabling memory corruption (buffer/heap overflow) as describe...