Lucene search
+L

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:33 a.m.9 views

CVE-2017-18176

Progress Sitefinity 9.1 has XSS via file upload, because JavaScript code in an HTML file has the same origin as the application's own code. This is fixed in 10.1...

5.4CVSS5.8AI score0.00718EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38351

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2024/05/03 2:15 a.m.30 views

CVE-2023-34270

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that t...

7.8CVSS8AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 1:57 a.m.66 views

CVE-2023-34270

Summary: CVE-2023-34270affects Fatek Automation FvDesigner via FPJ file parsing. The issue arises from lack of input validation in FPJ parsing, causing an out-of-bounds write and enabling remote code execution in the current process. Exploitation requires user interaction (visiting a malicious pa...

7.8CVSS8AI score0.00394EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.21 views

CVE-2023-34270 Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that t...

7.8CVSS8.2AI score0.00394EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.22 views

CVE-2023-34270 Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that t...

7.8CVSS7.8AI score0.00394EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2024/04/11 12:0 a.m.43 views

squid security update

7:3.5.20-17.0.1 - Mutiple CVE fixes for squid Orabug: 33146289 - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing 788 - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range...

8.6CVSS7.3AI score0.95785EPSS
Exploits4
NVD
NVD
added 2023/02/27 6:15 p.m.8 views

CVE-2018-18176

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues. Notes: none...

6.4AI score
Exploits0
Cvelist
Cvelist
added 2018/02/12 2:0 p.m.20 views

CVE-2017-18176

Progress Sitefinity 9.1 has XSS via file upload, because JavaScript code in an HTML file has the same origin as the application's own code. This is fixed in 10.1...

5.4AI score0.00718EPSS
Exploits1References2
CVE
CVE
added 2018/02/12 2:0 p.m.47 views

CVE-2017-18176

Progress Sitefinity 9.1 is affected by a cross‑site scripting (XSS) vulnerability triggered by file uploads, where JavaScript in an HTML file shares origin with the app’s code. Details from multiple sources confirm the issue and that it is fixed in Sitefinity 10.1. The root cause is an XSS condit...

5.4CVSS5.4AI score0.00718EPSS
Exploits1References2Affected Software1
Exploit DB
Exploit DB
added 2012/10/10 12:0 a.m.41 views

Microsoft Windows - 'AfdJoinLeaf' Local Privilege Escalation (MS11-080) (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.8CVSS6.9AI score0.31761EPSS
Exploits12
Packet Storm
Packet Storm
added 2012/10/03 12:0 a.m.92 views

MS11-080 AfdJoinLeaf Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.2CVSS1.1AI score0.31761EPSS
Exploits12
Metasploit
Metasploit
added 2012/09/26 3:1 p.m.68 views

MS11-080 AfdJoinLeaf Privilege Escalation

This module exploits a flaw in the AfdJoinLeaf function of the afd.sys driver to overwrite data in kernel space. An address within the HalDispatchTable is overwritten and when triggered with a call to NtQueryIntervalProfile will execute shellcode. This module will elevate itself to SYSTEM, then...

7AI score
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.33 views

CVE-2018-18176

CVE-2018-18176 is rejected/not used; this CVE ID is not associated with an active vulnerability.

7.2AI score
Exploits0
Rows per page
Query Builder