Lucene search
K

98 matches found

OpenVAS
OpenVAS
added 2009/12/23 12:0 a.m.36 views

Seamonkey Multiple Vulnerabilities (Dec 2009) - Linux

Seamonkey browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.6AI score0.04785EPSS
Exploits9References20
Tenable Nessus
Tenable Nessus
added 2009/12/18 12:0 a.m.224 views

Fedora 12 : seamonkey-2.0.1-1.fc12 (2009-13362)

Update to new upstream SeaMonkey version 2.0.1, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/seamonkey20.htmlseamonkey2.0.1 CVE-2009-3979 CVE-2009-3980 CVE-2009-3982 CVE-2009-3983 CVE-2009-3984 CVE-2009-3985...

9.3CVSS8.3AI score0.04785EPSS
Exploits8References12
Tenable Nessus
Tenable Nessus
added 2009/12/18 12:0 a.m.240 views

Fedora 11 : Miro-2.5.2-7.fc11 / blam-1.8.5-17.fc11 / chmsee-1.0.1-14.fc11 / epiphany-2.26.3-7.fc11 / etc (2009-13333)

Update to new upstream Firefox version 3.5.6, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.htmlfirefox3.5.6 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox /...

9.3CVSS8.3AI score0.04785EPSS
Exploits8References35
CVE
CVE
added 2009/12/17 5:0 p.m.76 views

CVE-2009-3980

CVE-2009-3980 affects Mozilla Firefox 3.5.x prior to 3.5.6, SeaMonkey prior to 2.0.1, and Thunderbird; the issue is memory corruption in the browser engine that can lead to a denial of service or potentially arbitrary code execution via unknown vectors. Public records indicate fixes in Firefox 3....

9.3CVSS10AI score0.03722EPSS
Exploits0References19Affected Software3
securityvulns
securityvulns
added 2009/12/17 12:0 a.m.85 views

Mozilla Foundation Security Advisory 2009-65

Mozilla Foundation Security Advisory 2009-65 Title: Crashes with evidence of memory corruption rv:1.9.1.6/ 1.9.0.16 Impact: Critical Announced: December 15, 2009 Reporter: Mozilla developers and community Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.5.6 Firefox 3.0.16 SeaMonkey...

9.3CVSS2.4AI score0.03963EPSS
Exploits0
Cvelist
Cvelist
added 2008/10/14 9:0 p.m.25 views

CVE-2008-3980

Unspecified vulnerability in the Upgrade component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...

5.4AI score0.00902EPSS
Exploits1References5
CVE
CVE
added 2008/10/14 9:0 p.m.97 views

CVE-2008-3980

CVE-2008-3980 affects Oracle Database 10.1.0.5 and 10.2.0.3, specifically the Upgrade component. The vulnerability allows remote authenticated users to impact confidentiality and integrity via unknown vectors; the exact vectors/conditions are not detailed in the provided documents. Oracle’s Octob...

4.9CVSS5.4AI score0.00902EPSS
Exploits1References5Affected Software1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.11 views

FreeBSD Ports: trac, ja-trac

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.5AI score0.03978EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.33 views

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 3980)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

5CVSS6.5AI score0.07919EPSS
Exploits2References18
CVE
CVE
added 2007/07/25 5:0 p.m.55 views

CVE-2007-3980

CVE-2007-3980 describes a PHP remote file inclusion vulnerability in page.php of RCMS Pro RGameScript Pro, allowing remote code execution via a URL in the id parameter. The issue arises from unvalidated user input enabling RFI, with the affected product identified as RCMS Pro RGameScript Pro. CVS...

10CVSS7.5AI score0.04207EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2006/08/05 12:4 a.m.54 views

CVE-2006-3980

PHP remote file inclusion vulnerability in administrator/components/commgm/help.mgm.php in Mambo Gallery Manager MGM 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

6.8CVSS7.6AI score0.06135EPSS
Exploits1References8
Cvelist
Cvelist
added 2006/08/05 12:0 a.m.22 views

CVE-2006-3980

PHP remote file inclusion vulnerability in administrator/components/commgm/help.mgm.php in Mambo Gallery Manager MGM 0.95r2 and earlier for Mambo 4.5 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfigabsolutepath parameter...

7.6AI score0.06135EPSS
Exploits1References8
CVE
CVE
added 2006/08/05 12:0 a.m.58 views

CVE-2006-3980

The CVE-2006-3980 entry describes a PHP remote file inclusion in Mambo Gallery Manager (MGM) 0.95r2 and earlier for Mambo 4.5, caused by using a URL in mosConfig_absolute_path within administrator/components/com_mgm/help.mgm.php. This vulnerability allows remote attackers to execute arbitrary PHP...

6.8CVSS7.6AI score0.06135EPSS
Exploits1References8Affected Software1
OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.47 views

Edgewall Software Trac SQL injection flaw

The remote web server contains a CGI script that is affected by a SQL injection flaw. Description: The remote host is running Trac, an enhanced wiki and issue tracking system for software development projects written in python. The remote version of this software is prone to a SQL injection flaw...

7.5CVSS0.2AI score0.03264EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.26 views

Edgewall Software Trac SQL injection flaw

The remote version of Trac is prone to a SQL injection flaw through the ticket query module due to SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5CVSS7.4AI score0.03264EPSS
Exploits1References3
CVE
CVE
added 2005/12/04 11:0 a.m.54 views

CVE-2005-3980

CVE-2005-3980 describes an SQL injection in Edgewall Trac’s ticket query module, exploitable via the group parameter. The vulnerability affects Trac 0.9 and possibly earlier, enabling remote SQL commands to be executed. Multiple sources (NVD, OSV, OpenVAS, and OSV detail entries) corroborate the ...

7.5CVSS8.2AI score0.03264EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2005/12/04 11:0 a.m.21 views

CVE-2005-3980

SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter...

8.2AI score0.03264EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2005/12/04 11:0 a.m.42 views

CVE-2005-3980

SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter...

7.5CVSS7.3AI score0.03264EPSS
Exploits1
Rows per page
Query Builder