Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:15 a.m.6 views

CVE-2019-16790

In Tiny File Manager before 2.3.9, there is a remote code execution via Upload from URL and Edit/Rename files. Only authenticated users are impacted...

8.8CVSS7.7AI score0.01243EPSS
Exploits0References1
Circl
Circl
added 2025/09/09 2:31 p.m.8 views

CVE-2018-16790

creationtimestamp| type| source ---|---|--- 2025-09-09 14:31:42+00:00| seen| Telegram/E0KsFSsJPa62sMflb2zr5PWxT4eovn0FA00I5QEXBdwPDEU...

8.1CVSS7.7AI score0.02137EPSS
Exploits0
OSV
OSV
added 2025/05/16 4:15 p.m.3 views

DEBIAN-CVE-2025-40906

BSON::XS versions 0.8.4 and earlier for Perl includes a bundled libbson 1.1.7, which has several vulnerabilities. Those include CVE-2017-14227, CVE-2018-16790, CVE-2023-0437, CVE-2024-6381, CVE-2024-6383, and CVE-2025-0755. BSON-XS was the official Perl XS implementation of MongoDB's BSON...

9.8CVSS7.8AI score0.00534EPSS
Exploits0References1
Circl
Circl
added 2024/03/18 2:46 p.m.7 views

CVE-2019-16790

creationtimestamp| type| source ---|---|--- 2024-03-18 14:46:08+00:00| seen| https://t.me/ctinow/210571...

8.8CVSS8.1AI score0.01243EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-4812-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.7AI score0.02797EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/12/20 10:51 p.m.13 views

CVE-2020-16790

...

Exploits0
OSV
OSV
added 2021/03/15 9:45 p.m.4 views

USN-4812-1 libbson vulnerabilities

It was discovered that libbson incorrectly validated input length. An attacker could possibly use this issue to cause a denial of service. This issue affected only Ubuntu 16.04 ESM. CVE-2017-14227 It was discovered that libbson incorrectly handled certain specially crafted bson buffers. An attack...

8.1CVSS7.2AI score0.02797EPSS
Exploits0References3
CVE
CVE
added 2019/12/30 7:15 p.m.74 views

CVE-2019-16790

In Tiny File Manager, versions prior to 2.3.9 are affected by a remote code execution vulnerability exploitable via Upload from URL and Edit/Rename operations. The issue impacts authenticated users, with affected components being the Upload from URL and file-edit/rename paths. Root cause details ...

8.8CVSS7.9AI score0.01243EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.21 views

Fedora 28 : libbson (2018-2062cd7548)

This release fixes a heap-based buffer over-read when parsing a mallformed BSON document CVE-2018-16790. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

8.1CVSS7.8AI score0.02137EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/09/28 12:0 a.m.18 views

Fedora 27 : libbson (2018-77d864ff39)

This release fixes a heap-based buffer over-read when parsing a mallformed BSON document CVE-2018-16790. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

8.1CVSS7.8AI score0.02137EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/09/28 12:0 a.m.17 views

Fedora Update for libbson FEDORA-2018-2062cd7548

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.1AI score0.02137EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/09/10 5:29 a.m.15 views

CVE-2018-16790

bsoniternextinternal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer...

8.1CVSS7.1AI score0.02137EPSS
Exploits0References4
NVD
NVD
added 2018/09/10 5:29 a.m.16 views

CVE-2018-16790

bsoniternextinternal in bson-iter.c in libbson 1.12.0, as used in MongoDB mongo-c-driver and other products, has a heap-based buffer over-read via a crafted bson buffer...

8.1CVSS8AI score0.02137EPSS
Exploits0References4
CVE
CVE
added 2018/09/10 5:0 a.m.95 views

CVE-2018-16790

CVE-2018-16790 affects libbson 1.12.0 (used by MongoDB’s libbson and the mongo-c-driver). The vulnerability is a heap-based buffer over-read triggered by a crafted BSON buffer in bson_iter_next_internal, as described for libbson 1.12.0. This can impact applications that consume BSON via the affec...

8.1CVSS7.8AI score0.02137EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2018/08/06 9:0 p.m.92 views

CVE-2017-16790

Symfony reported vulnerability CVE-2017-16790 affects the Form component where POST data and uploaded files are merged, allowing a crafted request to cause a file path (e.g., file:///etc/passwd) to be interpreted as a local file path and potentially expose server contents. The issue affects Symfo...

6.5CVSS6.3AI score0.01553EPSS
Exploits0References2Affected Software1
Friends Of PHP
Friends Of PHP
added 2017/11/16 3:14 p.m.28 views

CVE-2017-16790: Ensure that submitted data are uploaded files

More info at https://symfony.com/cve-2017-16790...

6.5CVSS7.2AI score0.01553EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2017/11/16 3:14 p.m.25 views

CVE-2017-16790: Ensure that submitted data are uploaded files

More info at https://symfony.com/cve-2017-16790...

6.5CVSS7.2AI score0.01553EPSS
Exploits0Affected Software1
Rows per page
Query Builder