Lucene search
K

121 matches found

Tenable Nessus
Tenable Nessus
added 2018/02/15 12:0 a.m.32 views

Fedora 27 : libreoffice (2018-3eb4d8e4c4)

The remote Fedora 27 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2018-3eb4d8e4c4 advisory. - CVE-2018-1055 Remote arbitrary file disclosure vulnerability via WEBSERVICE formula Tenable has extracted the preceding description block directly...

9.8CVSS7.3AI score0.23204EPSS
Exploits5References2
CVE
CVE
added 2018/02/09 2:0 p.m.78 views

CVE-2018-1055

CVE-2018-6871, referenced as CVE-2018-1055 in reservation, affects LibreOffice via improper validation of the WEBSERVICE() function argument. This allows a remote, unauthenticated attacker to disclose arbitrary files by convincing a user to open a specially crafted document (information disclosur...

8.4AI score
Exploits4
Cvelist
Cvelist
added 2018/02/09 2:0 p.m.27 views

CVE-2018-1055

...

Exploits4
FreeBSD
FreeBSD
added 2018/02/09 12:0 a.m.32 views

LibreOffice -- Remote arbitrary file disclosure vulnerability via WEBSERVICE formula

LibreOffice reports: LibreOffice Calc supports a WEBSERVICE function to obtain data by URL. Vulnerable versions of LibreOffice allow WEBSERVICE to take a local file URL e.g file:// which can be used to inject local files into the spreadsheet without warning the user. Subsequent formulas can opera...

8.4AI score
Exploits4References2
Openbugbounty
Openbugbounty
added 2017/08/08 5:37 a.m.14 views

tilestwra.com XSS vulnerability

Vulnerable URL: http://www.tilestwra.com/?s= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 06.11.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1055 VIP website status:| Yes Check tilestwra.com SSL connection:| Grade: B+ Coordinated...

6.3AI score
Exploits0
NVD
NVD
added 2016/05/11 10:59 a.m.16 views

CVE-2016-1075

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...

10CVSS10AI score0.06464EPSS
Exploits0References4
NVD
NVD
added 2016/05/11 10:59 a.m.22 views

CVE-2016-1065

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...

10CVSS10AI score0.0641EPSS
Exploits0References4
NVD
NVD
added 2016/05/11 10:59 a.m.17 views

CVE-2016-1055

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...

10CVSS10AI score0.0641EPSS
Exploits0References4
CVE
CVE
added 2016/05/11 10:0 a.m.69 views

CVE-2016-1055

Technical details for CVE-2016-1055 are not provided in the connected documents. Public details appear unavailable here; monitor for updates.

10CVSS8.3AI score0.0641EPSS
Exploits0References4Affected Software4
Cvelist
Cvelist
added 2016/05/11 10:0 a.m.27 views

CVE-2016-1055

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...

10AI score0.0641EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/01/20 12:0 a.m.27 views

WordPress Photo Gallery Blind SQL injection Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

7.5CVSS6.7AI score0.02131EPSS
Exploits1References5
CVE
CVE
added 2015/01/16 3:0 p.m.64 views

CVE-2015-1055

The CVE-2015-1055 vulnerability affects the WordPress Photo Gallery plugin (version 1.2.7 and earlier) used with WordPress. It allows remote attackers to perform a blind SQL injection via the order_by parameter in a GalleryBox action to wp-admin/admin-ajax.php, potentially exposing or altering da...

7.5CVSS8.7AI score0.02131EPSS
Exploits1References2Affected Software1
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.12 views

NetWin SurgeMail Webmail Server page Parameter Format String - Ver2 (CVE-2008-1055)

A format string vulnerability has been reported in NetWin SurgeMail and WebMail. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS7.3AI score0.07946EPSS
Exploits1
CVE
CVE
added 2012/02/14 12:0 a.m.35 views

CVE-2012-1055

CVE-2012-1055 affects PhotoLine 17.01 (and possibly earlier versions before 17.02). The vulnerability is a heap-based buffer overflow in processing JPEG2000 JP2 files with crafted Quantization Default (QCD) marker segments, allowing remote code execution. Affected component is the image editor’s ...

6.8CVSS8.3AI score0.02674EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2011/02/21 6:0 p.m.68 views

CVE-2011-1055

CVE-2011-1055 affects Lingxia I.C.E CMS 1.0, where SQL injection is possible in api/ice_media.cfc via the session.user_id parameter to media.cfm. This remote‑auth vulnerability could allow arbitrary SQL commands to be executed on the affected system. The available documents identify the vulnerabl...

7.5CVSS8.7AI score0.01151EPSS
Exploits1References6Affected Software1
Circl
Circl
added 2011/02/15 12:0 a.m.5 views

CVE-2011-1055

creationtimestamp| type| source ---|---|--- 2011-02-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16171...

7.5CVSS5.8AI score0.01151EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2011/02/04 12:0 a.m.29 views

Ubuntu: Security Advisory (USN-1055-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.3AI score0.02578EPSS
Exploits0References2
Circl
Circl
added 2010/03/15 12:0 a.m.4 views

CVE-2010-1055

creationtimestamp| type| source ---|---|--- 2010-03-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/11755...

5.1CVSS5.8AI score0.02602EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2009/03/26 12:0 a.m.35 views

Sitecore CMS < 5.3.2 rev. 090212 Web Service Security Database Information Disclosure

The remote host is running a version of Sitecore CMS which is reportedly affected by an information disclosure vulnerability. An attacker could exploit this in order to gain unauthorized access to security databases. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

4CVSS5.4AI score0.01152EPSS
Exploits0References2
CVE
CVE
added 2009/03/24 2:0 p.m.44 views

CVE-2009-1055

Mode C: The vulnerability affects Sitecore CMS 5.3.1 rev. 071114 where the web service can disclose security databases and credentials to remote authenticated users via SOAP/XML requests. Root cause is unspecified in the public initial description, but connected Nessus/NVD entries confirm an info...

4CVSS6.7AI score0.01152EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder