Lucene search
K

100 matches found

CVE
CVE
added 2026/02/20 10:13 p.m.14 views

CVE-2026-2037

CVE-2026-2037 affects GFI Archiver via the MArc.Core.Deserialization of Untrusted Data vulnerability in the MArc.Core.Remoting.exe component (listening on port 8017). The root cause: lack of proper validation during deserialization of untrusted data, allowing an attacker to execute arbitrary code...

8.8CVSS8.9AI score0.01075EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/03/06 7:38 p.m.8 views

CVE-2025-2037

creationtimestamp| type| source ---|---|--- 2025-03-06 19:38:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6739 2025-03-06 22:12:22+00:00| seen| https://t.me/cvedetector/19737 2025-08-18 13:31:23+00:00| seen| MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3 2025-08-19...

8.8CVSS6.2AI score0.00452EPSS
Exploits1References2
NVD
NVD
added 2025/03/06 7:15 p.m.13 views

CVE-2025-2037

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /userdashboard/deleterequester.php. The manipulation of the argument requesterid leads to sql injection. The attack can be initiated...

8.8CVSS0.00452EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/03/06 7:0 p.m.8 views

CVE-2025-2037 code-projects Blood Bank Management System delete_requester.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /userdashboard/deleterequester.php. The manipulation of the argument requesterid leads to sql injection. The attack can be initiated...

6.5CVSS7.8AI score0.00452EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/03/06 7:0 p.m.19 views

CVE-2025-2037 code-projects Blood Bank Management System delete_requester.php sql injection

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /userdashboard/deleterequester.php. The manipulation of the argument requesterid leads to sql injection. The attack can be initiated...

6.5CVSS0.00452EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2016-2037

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cpiosafernamesuffix function in util.c in cpio 2.11 allows remote attackers to cause a denial of service out-of-bounds write via a crafted cpio file...

6.5CVSS6.6AI score0.05484EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 9:18 p.m.14 views

CVE-2022-2037

Excessive Attack Surface in GitHub repository tooljet/tooljet prior to v1.16.0...

9.8CVSS6.7AI score0.01081EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2024/06/18 12:0 a.m.31 views

SUSE: Security Advisory (SUSE-SU-2024:2037-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.2AI score0.49336EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.27 views

RHEL 7 : cpio (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cpio: directory traversal through symlinks CVE-2015-1197 - cpio: out of bounds write CVE-2016-2037 Note...

6.5CVSS6.4AI score0.05484EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 6 : cpio (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cpio: improper input validation when writing tar header fields leads to unexpected tar generation...

7.9AI score0.05484EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.17 views

Oracle Linux 8 : tigervnc (ELSA-2024-2037)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2037 advisory. - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30981 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in...

9.8CVSS6.9AI score0.02106EPSS
Exploits0References4
OSV
OSV
added 2023/08/31 12:13 p.m.1 views

BELL-CVE-2016-2037 CVE-2016-2037 does not affect BellSoft software

Bulletin has no description...

6.5CVSS5.8AI score0.05484EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/05/17 12:0 a.m.31 views

Amazon Linux 2 : golang (ALAS-2023-2037)

The version of golang installed on the remote host is prior to 1.18.9-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2037 advisory. HTTP and MIME header parsing could allocate large amounts of memory, even when parsing small inputs. Certain unusual patterns of...

7.5CVSS7AI score0.01888EPSS
Exploits0References4
CVE
CVE
added 2023/04/14 7:31 a.m.92 views

CVE-2023-2037

CVE-2023-2037 affects Campcodes Video Sharing Website 1.0, with the vulnerability located in watch.php where the code parameter can be manipulated to trigger a SQL injection. The issue is exploitable remotely and, according to the connected sources, the vulnerability has been disclosed publicly. ...

9.8CVSS7.5AI score0.00798EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:39 a.m.4 views

SUSE CVE-2013-2037

httplib2 0.7.2, 0.8, and earlier, after an initial connection is made, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary...

2.6CVSS6.9AI score0.01324EPSS
Exploits1References4
CVE
CVE
added 2022/08/11 2:58 p.m.112 views

CVE-2022-20237

The CVE-2022-20237 entry affects Android kernel code, specifically the BuildDevIDResponse function in miscdatabuilder.cpp. A missing bounds check can cause an out-of-bounds write, which the provided documents state could enable remote code execution without extra privileges or user interaction. T...

9.8CVSS9.3AI score0.00546EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2022/06/09 5:15 p.m.23 views

CVE-2022-2037

Excessive Attack Surface in GitHub repository tooljet/tooljet prior to v1.16.0...

9.8CVSS0.01081EPSS
Exploits1References2
OSV
OSV
added 2022/06/09 8:20 a.m.17 views

CVE-2022-2037 Excessive Attack Surface in tooljet/tooljet

Excessive Attack Surface in GitHub repository tooljet/tooljet prior to v1.16.0...

9.8CVSS9AI score0.01081EPSS
Exploits1References4
CVE
CVE
added 2022/06/09 8:20 a.m.55 views

CVE-2022-2037

CVE-2022-2037 affects ToolJet (tooljet/tooljet) before v1.16.0. The vulnerability is described as an Excessive Attack Surface. Severity varies by source (NVD CVSS2/3.1 reports base scores up to 8.0/9.8 in CNA data). A fix exists in v1.16.0 and later; upgrade to 1.16.0+ to mitigate. Technical deta...

9.8CVSS8AI score0.01081EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2022/02/13 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for cpio (EulerOS-SA-2022-1114)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.05484EPSS
Exploits1References2
Rows per page
Query Builder