CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2025/05/22 3:11 a.m.•4 views

CVE-2017-16805

In radare2 2.0.1, libr/bin/dwarf.c allows remote attackers to cause a denial of service invalid read and application crash via a crafted ELF file, related to rbindwarfparsecompunit in dwarf.c and sdbsetinternal in shlr/sdb/src/sdb.c...

5.5CVSS6.7AI score0.01028EPSS

Exploits0References1

NVD•added 2022/12/02 10:15 p.m.•7 views

CVE-2019-16805

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none...

Exploits0

Prion•added 2022/07/18 7:15 p.m.•14 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS7.8AI score0.01031EPSS

Exploits0References2Affected Software2

CVE•added 2022/07/18 6:41 p.m.•71 views

CVE-2022-28678

CVE-2022-28678 affects Foxit PDF Reader 11.2.1.53537. The flaw is in the handling of Doc objects, where the code does not validate the existence of an object before performing operations, enabling arbitrary code execution in the context of the current process. Exploitation requires user interacti...

7.8CVSS7.7AI score0.01031EPSS

Exploits0References2Affected Software2

CVE•added 2021/12/20 10:51 p.m.•21 views

CVE-2020-16805

CVE-2020-16805 is rejected/not used as stated in the Initial Description.

6.7AI score

Exploits0

Cvelist•added 2021/12/20 10:51 p.m.•10 views

CVE-2020-16805

...

Exploits0

OSV•added 2018/09/10 11:29 p.m.•1 views

CVE-2018-16805

In b3log Solo 2.9.3, XSS in the Input page under the Publish Articles menu, with an ID of linkAddress stored in the link JSON field, allows remote attackers to inject arbitrary Web scripts or HTML via a crafted site name provided by an administrator...

4.8CVSS5.7AI score0.0076EPSS

Exploits0References1

CVE•added 2018/09/10 11:0 p.m.•47 views

CVE-2018-16805

In CVE-2018-16805, the affected software is b3log Solo 2.9.3. The vulnerability is a cross-site scripting (XSS) flaw on the Input page under Publish Articles, where an ID named linkAddress stored in the link JSON field can be exploited to inject arbitrary Web scripts or HTML via a crafted site na...

4.8CVSS4.8AI score0.0076EPSS

Exploits0References1Affected Software1

OSV•added 2017/11/13 9:29 p.m.•13 views

CVE-2017-16805

5.5CVSS6.8AI score

Exploits0References2

Cvelist•added 2017/11/13 9:0 p.m.•23 views

CVE-2017-16805

5.3AI score0.01028EPSS

Exploits0References2

CVE•added 2017/11/13 9:0 p.m.•49 views

CVE-2017-16805

radare2 2.0.1 is affected by CVE-2017-16805 due to a flaw in libr/bin/dwarf.c (r_bin_dwarf_parse_comp_unit) and sdb_set_internal in shlr/sdb/src/sdb.c that allows remote attackers to trigger an invalid read and crash the application via a crafted ELF file. Impact is denial of service; no patch/ve...

5.5CVSS5.3AI score0.01028EPSS

Exploits0References2Affected Software1

Cvelist•added 1976/01/01 12:0 a.m.•11 views

CVE-2019-16805

...

Exploits0

CVE•added 1976/01/01 12:0 a.m.•25 views

CVE-2019-16805

CVE-2019-16805 is rejected/not used; this entry does not represent an active vulnerability.

7.3AI score

Exploits0

Rows per page