Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2023/01/09 12:0 a.m.7 views

Nextcloud Server < 23.0.10, 24.0.x < 24.0.6 Multiple Vulnerabilities in 3rd-party Component (GHSA-f4h6-pjhm-ph2h)

Nextcloud Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nextcloud:nextcloudserver"...

7.3AI score
Exploits0References1
NVD
NVD
added 2021/10/28 2:15 p.m.14 views

CVE-2021-37254

In M-Files Web product with versions before 20.10.9524.1 and 20.10.9445.0, a remote attacker could use a flaw to obtain unauthenticated access to 3rd party component license key information on server...

7.5CVSS0.01302EPSS
Exploits0References2
Prion
Prion
added 2021/10/28 2:15 p.m.15 views

Design/Logic Flaw

In M-Files Web product with versions before 20.10.9524.1 and 20.10.9445.0, a remote attacker could use a flaw to obtain unauthenticated access to 3rd party component license key information on server...

5CVSS7.4AI score0.01302EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/08/14 4:15 p.m.13 views

Remote code execution

A vulnerability has been identified in Desigo CC V4.x, Desigo CC V3.x, Desigo CC Compact V4.x, Desigo CC Compact V3.x. Affected applications are delivered with a 3rd party component BIRT that contains a remote code execution vulnerability if the Advanced Reporting Engine is enabled. The...

9.3CVSS9.8AI score0.05978EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2020/08/14 3:24 p.m.27 views

CVE-2020-10055

A vulnerability has been identified in Desigo CC V4.x, Desigo CC V3.x, Desigo CC Compact V4.x, Desigo CC Compact V3.x. Affected applications are delivered with a 3rd party component BIRT that contains a remote code execution vulnerability if the Advanced Reporting Engine is enabled. The...

9.9AI score0.05978EPSS
Exploits0References2
Typo3
Typo3
added 2019/05/07 12:0 a.m.18 views

Arbitrary file Upload in extension "Yet Another Gallery" (yag)

The extension contains the 3rd party component “Uploadify”, which includes a demo script for uploading files with the file extensions “jpg”, “jpeg”, “gif” and “png” to the server. Also, a demo script is present, which allows to check for the existence of a given filename...

6.8AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/19 8:20 p.m.30 views

Security Bulletin: IBM Security Guardium is aware of a GnuTLS vulnerability

Summary IBM Security Guardium is aware of the following vulnerabilities Vulnerability Details CVE-2018-10846, CVE-2018-10845, CVE-2018-10844 Affected Products and Versions Affected IBM Security Guardium | Affected Versions ---|--- IBM Security Guardium | 9 - 9.5 IBM Security Guardium | 10 - 10.5...

5.9CVSS3.4AI score0.03623EPSS
Exploits0Affected Software1
Palo Alto Networks
Palo Alto Networks
added 2018/07/20 12:30 a.m.688 views

Denial of Service in PAN-OS Management Web Interface

Palo Alto Networks makes use of a 3rd-party component impacted by CVE-2018-8715. This issue has been confirmed to present a risk for denial of service to the PAN-OS Management Web Interface. Ref PAN-93089, CVE-2018-8715 A specially crafted HTTP POST request with an invalid “If-modified" header...

1.5AI score0.19854EPSS
Exploits2References1Affected Software1
seebug.org
seebug.org
added 2016/08/10 12:0 a.m.26 views

TikiWiki 15.1 ELFinder Unauthenticated File Upload

Description A file upload vulnerability in Tiki Wiki --Part83012510490351498898101-- 3. Info Author: Mehmet Ince https://www.exploit-db.com/exploits/40091/...

8.1AI score
Exploits0
Rows per page
Query Builder