Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:32 a.m.4 views

CVE-2016-11053

An issue was discovered on Samsung mobile devices with software through 2015-11-11 supporting FRP/RL. There is a Factory Reset Protection FRP bypass. The Samsung ID is SVE-2015-5131 January 2016...

4.6CVSS7AI score0.00134EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2019/09/25 12:0 a.m.236 views

ABRT - sosreport Privilege Escalation (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ABRT sosreport Privilege Escalation', 'Description' = %q This module attempts to gain root privileges on RHEL systems with a vulnerable version o...

6.9CVSS7AI score0.03296EPSS
Exploits17
OSV
OSV
added 2018/08/05 6:29 p.m.2 views

CVE-2018-14944

An issue has been found in jpegencoder through 2015-11-27. It is a SEGV in the function readFromBMP in jpegencoder.cpp. The signal is caused by an out-of-bounds write...

7.8CVSS5.7AI score0.01001EPSS
Exploits1References2
Openbugbounty
Openbugbounty
added 2017/12/24 6:6 a.m.12 views

gameblog.fr XSS vulnerability

Open Bug Bounty ID: OBB-458132 Description| Value ---|--- Affected Website:| gameblog.fr Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/05/06 7:1 a.m.8 views

gameblog.fr XSS vulnerability

Open Bug Bounty ID: OBB-232628 Description| Value ---|--- Affected Website:| gameblog.fr Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
CNVD
CNVD
added 2017/04/20 12:0 a.m.1 views

Facebook Proxygen Security Vulnerability (CNVD-2017-05674)

Facebook Proxygen is a set of open source C++ HTTP class libraries from the U.S. company Facebook . A security vulnerability exists in the SPDY/2 codec in versions of Facebook Proxygen prior to 2015-11-09. An attacker can exploit the vulnerability to perform hijacking and injection attacks...

9.8CVSS7.1AI score0.01212EPSS
Exploits0References1
NVD
NVD
added 2017/04/10 3:59 a.m.16 views

CVE-2015-6035

Opsview before 2015-11-06 has XSS via SNMP...

6.1CVSS6.1AI score0.00652EPSS
Exploits1References1
CVE
CVE
added 2017/04/10 3:0 a.m.34 views

CVE-2015-6035

CVE-2015-6035 affects Opsview prior to 2015-11-06. Multiple connected sources confirm a cross-site scripting (XSS) vulnerability exploitable via the SNMP interface, enabling an attacker to injected arbitrary web script/HTML in the user’s browser. The CNVD entry reiterates remote exploitation via ...

6.1CVSS6AI score0.00652EPSS
Exploits1References1Affected Software1
Exploit DB
Exploit DB
added 2016/02/10 12:0 a.m.73 views

Yeager CMS 1.2.1 - Multiple Vulnerabilities

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: Yeager CMS vulnerable version: 1.2.1 fixed version: 1.3 CVE number: CVE-2015-7567, CVE-2015-7568, CVE-2015-7569, CVE-2015-7570 ,...

9.8CVSS7.7AI score0.08439EPSS
Exploits9
CNVD
CNVD
added 2016/02/02 12:0 a.m.3 views

Vine MV Cross-Site Scripting Vulnerability

Vine MV is a web application developed by Japanese software developer Ayaka Ikezawa that uses the Vine video sharing application API to automatically generate music videos. A cross-site scripting vulnerability exists in the main.rb file in versions of Vine MV prior to 2015-11-08. A remote attacke...

6.1CVSS6.1AI score0.01417EPSS
Exploits0References1
Prion
Prion
added 2016/01/30 3:59 p.m.12 views

Cross site scripting

Cross-site scripting XSS vulnerability in main.rb in Vine MV before 2015-11-08 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.01417EPSS
Exploits0References3Affected Software1
exploitpack
exploitpack
added 2016/01/29 12:0 a.m.27 views

ProjectSend r582 - Multiple Vulnerabilities

ProjectSend r582 - Multiple Vulnerabilities Advisory ID: SGMA-16001 Title: ProjectSend multiple vulnerabilities Product: ProjectSend previously cFTP Version: r582 and probably prior Vendor: www.projectsend.org Vulnerability type: SQL-injection, Auth bypass, Arbitrary File Access, Insecure Object...

0.6AI score
Exploits0
seebug.org
seebug.org
added 2016/01/19 12:0 a.m.391 views

泛微 OA sysinterface/codeEdit.jsp 页面任意文件上传

0x01 漏洞概述 相关厂商: 泛微OA 官方主页: http://www.weaver.com.cn/ 公开时间: 2015-11-25 漏洞类型: 非授权访问/权限绕过 无需登录上传文件。 http://localhost:8088/sysinterface/codeEdit.jsp?filename=5308.java&filetype=java filename为文件名称 为空时会自动创建。 0x02 漏洞利用 代码详情 String fileid = "Ewv"; String readonly = ""; boolean isCreate = false;...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/12/14 12:0 a.m.62 views

Jenkins CLI RMI Java Deserialization

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Jenkins CLI RMI Java Deserialization Vulnerability', 'Description' = %q This module exploits a vulnerability in Jenkins. An unsafe...

7.5CVSS0.3AI score0.86829EPSS
Exploits12
0day.today
0day.today
added 2015/11/30 12:0 a.m.24 views

MyCustomers Cms Sql Injection Vulnerability

Exploit for php platform in category web applications MyCustomers 1.3.873 SQL Injection Published Credit Risk 2015.11.29 Persian Hack Team Medium CWE CVE Local Remote CWE-89 N/A No Yes Dork: "Powered By IranPHP" & inurl:/index.php?DPT=IP17 & "Powered+by+MyCustomers-1.3.873" Exploit Title :...

7.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2015/11/18 12:0 a.m.25 views

Adobe Premiere Clip iOS - Bypass & Persistent Vulnerability

Document Title: =============== Adobe Premiere Clip iOS - Bypass & Persistent Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1479 View Video: https://www.youtube.com/watch?v=rGEeW7ypuRE Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1478 PSI...

10CVSS6.5AI score0.0415EPSS
Exploits7
Openbugbounty
Openbugbounty
added 2015/11/11 9:19 p.m.10 views

arboga.se XSS vulnerability

Vulnerable URL: http://arboga.se/evenemangskalender/?eventsearchquery==2015-11-11="';-- Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 22:03 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4234450 Google...

6.3AI score
Exploits0
CVE
CVE
added 2015/11/03 11:0 a.m.59 views

CVE-2015-6613

CVE-2015-6613 affects Android devices running versions prior to 5.1.1 LMY48X and before 2015-11-01 on 6.0. The issue allows a local attacker via Bluetooth to send commands to a debugging port and gain privileges (Signature or SignatureOrSystem) through a crafted app. The vulnerability is tied to ...

5.1CVSS6.9AI score0.00629EPSS
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2015/11/03 8:39 a.m.13 views

holjegym.se XSS vulnerability

Vulnerable URL: http://holjegym.se/default.asp?id="';--=2 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 1 VIP website status:| No Check...

6.3AI score
Exploits0
Rows per page
Query Builder