84 matches found
CVE-2022-3963
creationtimestamp| type| source ---|---|--- 2022-11-13 05:49:04+00:00| seen| https://t.me/cibsecurity/52903...
CVE-2022-3963
CVE-2022-3963 affects gnuboard5, targeting the FAQ Key ID Handler in file bbs/faq.php. The issue is a cross-site scripting (XSS) vulnerability caused by manipulating the fm_id parameter, enabling remote exploitation. A fix is available in version 5.5.8.2.1, with patch identifier ba062ca5b62809106...
CVE-2022-3963 gnuboard5 FAQ Key ID faq.php cross site scripting
A vulnerability was found in gnuboard5. It has been classified as problematic. Affected is an unknown function of the file bbs/faq.php of the component FAQ Key ID Handler. The manipulation of the argument fmid leads to cross site scripting. It is possible to launch the attack remotely. Upgrading ...
CVE-2021-3963
kimai2 is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3963 Cross-Site Request Forgery (CSRF) in kevinpapst/kimai2
kimai2 is vulnerable to Cross-Site Request Forgery CSRF...
CVE-2021-3963
CVE-2021-3963 affects Kimai2 (web-based time tracking). The vulnerability is a Cross-Site Request Forgery (CSRF) issue in the application, enabling an attacker to induce authenticated users to perform unintended actions in the UI (e.g., operations such as deleting templates) if the attacker can c...
Mozilla Firefox Security Advisory (MFSA2012-58) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
VMware ESXi Use-After-Free / Out-Of-Bounds Access Vulnerability
Several security issues have been identified in the VMware ESIx virtual machine monitor VMM. A use-after-free UAF vulnerability in PVNVRAM, a missing return value check in EHCI USB controller leading to private heap information disclosure, and several out-of-bounds reads. Overview ======= We...
CVE-2020-3963
VMware ESXi 7.0 before ESXi7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG, Workstation 15.x before 15.5.2, and Fusion 11.x before 11.5.2 contain a use-after-free vulnerability in PVNVRAM. A malicious actor with local access to a virtual machine may be abl...
VMSA-2020-0015:VMware Cloud Foundation, ESXi, Workstation, and Fusion updates address multiple security vulnerabilities
Advisory ID: VMSA-2020-0015.2 CVSSv3 Range: 4.0 - 9.3 Issue Date:2020-06-23 Updated On: 2020-07-02 CVEs: CVE-2020-3962, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3966, CVE-2020-3967, CVE-2020-3968, CVE-2020-3969, CVE-2020-3970, CVE-2020-3971 Synopsis: VMware Cloud Foundation, ESXi,...
CVE-2019-3963
CVE-2019-3963 affects OpenEMR 5.0.1 and earlier, where the vulnerable component is the controller.php handling the patient_id parameter. The root cause is a reflected XSS vulnerability in that parameter, enabling an attacker to execute arbitrary code in the context of a user’s session. Multiple c...
Ubuntu 18.04 LTS : Memcached vulnerability (USN-3963-1)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3963-1 advisory. It was discovered that Memcached incorrectly handled certain lru command messages. A remote attacker could possibly use this issue to cause Memcached to crash,...
CVE-2018-3963
The CVE-2018-3963 issue affects the CUJO Smart Firewall: the DHCP daemon’s static-hostname handling inserts the hostname into dhcpd.conf without sanitization, enabling arbitrary command execution as root when a static DHCP entry is configured. The vulnerability can be triggered by a DHCP request ...
Foxit Reader and PhantomPDF Multiple Use After Free Vulnerabilities (CVE-2018-3940; CVE-2018-3941; CVE-2018-3942; CVE-2018-3943; CVE-2018-3944; CVE-2018-3945; CVE-2018-3946)
A remote code execution vulnerability exists in Foxit Reader and PhantomPDF. The vulnerability is due to a use-after-free error while handling a specially crafted PDF file. Successful exploitation could lead to arbitrary code execution. Additional CVEs: CVE-2018-3957, CVE-2018-3958, CVE-2018-3959...
Siemens SCALANCE S613 Denial Of Service
Exploit Title: Siemens SCALANCE S613 - Remote Denial-of-Service Vulnerability Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.siemens.com/ Version: SCALANCE S613 MLFB: 6GK5613-0BA00-2AA3: All versions. Tested on: Kali Linux CVE: CVE-2016-3963 !/usr/bin/python import socke...
Siemens SCALANCE S613 - Remote Denial of Service
Siemens SCALANCE S613 - Remote Denial of Service Exploit Title: Siemens SCALANCE S613 - Remote Denial of Service Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.siemens.com/ Version: SCALANCE S613 MLFB: 6GK5613-0BA00-2AA3: All versions. Tested on: Kali Linux CVE:...
Siemens SCALANCE S613 - Remote Denial of Service
Exploit Title: Siemens SCALANCE S613 - Remote Denial of Service Date: 2018-05-23 Exploit Author: t4rkd3vilz Vendor Homepage: https://www.siemens.com/ Version: SCALANCE S613 MLFB: 6GK5613-0BA00-2AA3: All versions. Tested on: Kali Linux CVE: CVE-2016-3963 !/usr/bin/python import socket import sys i...
CVE-2017-3963
CVE-2017-3963 entry is rejected and does not represent an active vulnerability.
CVE-2017-3963
...
Oracle: Security Advisory (ELSA-2012-1211)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...