Lucene search
+L

68 matches found

cve
cve
added 2019/01/22 8:0 p.m.28 views

CVE-2018-2159

CVE-2018-2159 is rejected/not used and does not represent an active vulnerability entry.

7.3AI score
Exploits0
cvelist
cvelist
added 2019/01/22 8:0 p.m.7 views

CVE-2018-2159

...

Exploits0
ibm
ibm
added 2018/06/17 5:1 a.m.31 views

Security Bulletin: Open Redirect and Cross-Site Scripting Vulnerabilities in the Rational Change Help System (CVE-2012-2159, CVE-2012-2161)

Summary Some scripts in the help system used by IBM Rational Change are vulnerable to open redirect or cross-site scripting attacks. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires...

5.8CVSS5.4AI score0.01843EPSS
Exploits1Affected Software1
cvelist
cvelist
added 2016/05/22 8:0 p.m.25 views

CVE-2016-2159

The savesubmission function in mod/assign/externallib.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 allows remote authenticated users to bypass intended due-date restrictions by leveraging the student role for a web-service...

6AI score0.01429EPSS
Exploits0References4
cve
cve
added 2016/05/22 8:0 p.m.61 views

CVE-2016-2159

The vulnerability CVE-2016-2159 affects Moodle via the save_submission function in mod/assign/externallib.php, enabling remote authenticated users to bypass due-date restrictions by abusing the student role in a web-service request. Affected versions include Moodle up to 2.6.11, 2.7.x before 2.7....

4.3CVSS5.8AI score0.01429EPSS
Exploits0References4Affected Software1
nessus
nessus
added 2016/04/01 12:0 a.m.28 views

Fedora 22 : moodle-2.8.11-1.fc22 (2016-b91d895e5a)

Multiple CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

8.8CVSS5.5AI score0.01931EPSS
Exploits0References12
nessus
nessus
added 2016/03/28 12:0 a.m.34 views

Fedora 24 : moodle-3.0.3-1.fc24 (2016-9b591e1952)

3.0.3. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network Security,...

8.8CVSS5.5AI score0.01931EPSS
Exploits0References12
openvas
openvas
added 2015/11/24 12:0 a.m.40 views

Oracle: Security Advisory (ELSA-2015-2159)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS9.1AI score0.17942EPSS
Exploits0References2
nessus
nessus
added 2015/11/24 12:0 a.m.29 views

Oracle Linux 7 : curl (ELSA-2015-2159)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2159 advisory. - require credentials to match for NTLM re-use CVE-2015-3143 - close Negotiate connections when done CVE-2015-3148 - reject CRLFs in URLs passed to pro...

5CVSS7.7AI score0.17942EPSS
Exploits0References6
cve
cve
added 2014/05/02 10:0 a.m.65 views

CVE-2014-2159

CVE-2014-2159 affects Cisco TelePresence System MXP Series Software prior to F9.3.1, where the H.225 subsystem can be triggered to cause a denial of service (device reload) by receiving crafted packets. Related Cisco advisory Cisco-SA-20140430-MXP confirms multiple SIP/H.225 DoS issues and states...

7.8CVSS7.3AI score0.01614EPSS
Exploits0References1Affected Software13
openvas
openvas
added 2014/04/03 12:0 a.m.24 views

Ubuntu Update for nss USN-2159-1

Check for the Version of nss OpenVAS Vulnerability Test $Id: gbubuntuUSN21591.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for nss USN-2159-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you ca...

4.3CVSS8.1AI score0.01767EPSS
Exploits2References2
nessus
nessus
added 2014/04/03 12:0 a.m.29 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : nss vulnerability (USN-2159-1)

It was discovered that NSS incorrectly handled wildcard certificates when used with internationalized domain names. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to spoof SSL servers. Note that Tenable Network Security has extracted the precedi...

4.3CVSS7.5AI score0.01767EPSS
Exploits2References2
seebug
seebug
added 2012/06/16 12:0 a.m.109 views

IBM Rational AppScan 8.x/7.x 多个安全漏洞

CVE ID:...

10CVSS0.98113EPSS
Exploits54
cve
cve
added 2011/05/20 10:0 p.m.68 views

CVE-2011-2159

The CVE concerns SmarterTools SmarterStats 6.0 web server that omits the Content-Type header for a defined set of resources (including Admin and Client pages, skin/theme files, config/XML-like files, and sitemap.xml). The root cause is header omission which could allow remote attackers to cause a...

10CVSS6.9AI score0.04377EPSS
Exploits0References4Affected Software1
nessus
nessus
added 2011/02/11 12:0 a.m.32 views

Debian DSA-2159-1 : vlc - missing input sanitising

Dan Rosenberg discovered that insufficient input validation in VLC's processing of Matroska/WebM containers could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Securit...

9.3CVSS5.5AI score0.41582EPSS
Exploits7References3
circl
circl
added 2010/05/31 12:0 a.m.4 views

CVE-2010-2159

creationtimestamp| type| source ---|---|--- 2010-05-31 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/34058...

6.5CVSS5.8AI score0.03109EPSS
Exploits1References1
attackerkb
attackerkb
added 2009/06/22 7:30 p.m.2 views

CVE-2009-2159

backup-database.php in TorrentTrader Classic 1.09 does not require administrative authentication, which allows remote attackers to create and download a backup database by making a direct request and then retrieving a .gz file from backups/...

6.4CVSS5.6AI score0.02704EPSS
Exploits1References7
nvd
nvd
added 2009/06/22 7:30 p.m.17 views

CVE-2009-2159

backup-database.php in TorrentTrader Classic 1.09 does not require administrative authentication, which allows remote attackers to create and download a backup database by making a direct request and then retrieving a .gz file from backups/...

6.4CVSS6.7AI score0.02704EPSS
Exploits1References6
cve
cve
added 2009/06/22 7:0 p.m.50 views

CVE-2009-2159

CVE-2009-2159 affects TorrentTrader Classic 1.09. The vulnerability is in the backup-database.php script, which does not require administrative authentication. This allows remote attackers to trigger creation and retrieval of a backup database by making a direct request and then downloading a .gz...

6.4CVSS7.5AI score0.02704EPSS
Exploits1References6Affected Software1
circl
circl
added 2009/06/15 12:0 a.m.5 views

CVE-2009-2159

creationtimestamp| type| source ---|---|--- 2009-06-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8958...

6.4CVSS5.8AI score0.02704EPSS
Exploits1References1
Rows per page
Query Builder