Lucene search
K

16 matches found

CVE
CVE
added 2026/01/28 11:43 a.m.17 views

CVE-2026-0483

CVE-2026-0483 is a stored XSS in Live Helper Chat’s PDF file upload for versions before 4.72. An attacker can upload a malicious PDF containing an XSS payload; when a user downloads and opens the file via the app’s link, arbitrary JavaScript executes in the user’s context. Public sources (PT Secu...

6.9CVSS6AI score0.00243EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/07 12:0 a.m.4 views

ZyXEL ZyWALL USG 操作系统命令注入漏洞

Zyxel ZyXEL ZyWALL USG is a network security firewall appliance from China Hopkins Zyxel. A security vulnerability exists in Zyxel ZyWALL/USG versions 4.20 to 4.72, VPN versions 4.30 to 5.32, USG FLEX versions 4.50 to 5.32, and ATP versions 4.32 to 5.32. The vulnerability stems from a...

7.2CVSS7.3AI score0.02806EPSS
Exploits0References2
0day.today
0day.today
added 2017/02/04 12:0 a.m.23 views

Alstrasoft Video Share Enterprise 4.72 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: AlstraSoft Video Share Enterprise v4.72 Script - SQL Injection Google Dork: N/A Date: 04.02.2017 Vendor Homepage: http://www.alstrasoft.com/ Software Buy: http://www.alstrasoft.com/videoshare.htm Demo:...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2012/10/29 12:0 a.m.26 views

Debian Security Advisory DSA 2566-1 (exim4)

The remote host is missing an update to exim4 announced via advisory DSA 2566-1. OpenVAS Vulnerability Test $Id: deb25661.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2566-1 exim4 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

6.8CVSS0.9AI score0.08382EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/05/09 12:0 a.m.26 views

Debian DSA-2232-1 : exim4 - format string vulnerability

It was discovered that Exim, the default mail transport agent in Debian, uses DKIM data obtain from DNS directly in a format string, potentially allowing malicious mail senders to execute arbitrary code. CVE-2011-1764 The oldstable distribution lenny is not affected by this problem because it doe...

7.5CVSS8.2AI score0.0394EPSS
Exploits0References5
Fedora
Fedora
added 2011/04/12 9:26 p.m.39 views

[SECURITY] Fedora 14 Update: exim-4.72-2.fc14

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

4.4CVSS6.3AI score0.0028EPSS
Exploits0
Prion
Prion
added 2011/02/02 1:0 a.m.28 views

Design/Logic Flaw

The openlog function in log.c in Exim 4.72 and earlier does not check the return value from 1 setuid or 2 setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack...

6.9CVSS6.6AI score0.00379EPSS
Exploits0References15Affected Software1
Cvelist
Cvelist
added 2011/02/02 12:0 a.m.25 views

CVE-2011-0017

The openlog function in log.c in Exim 4.72 and earlier does not check the return value from 1 setuid or 2 setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack...

6AI score0.00379EPSS
Exploits0References15
Debian CVE
Debian CVE
added 2011/02/02 12:0 a.m.28 views

CVE-2011-0017

The openlog function in log.c in Exim 4.72 and earlier does not check the return value from 1 setuid or 2 setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack...

6.9CVSS7.1AI score0.00379EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2010/12/14 3:0 p.m.5 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive...

7AI score0.17794EPSS
Exploits4References28
UbuntuCve
UbuntuCve
added 2010/12/14 12:0 a.m.63 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive...

7.8CVSS7.4AI score0.17794EPSS
Exploits4References6
ATTACKERKB
ATTACKERKB
added 2010/12/14 12:0 a.m.38 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive. Recent assessments: Assessed Attacker Value...

7.8CVSS6.3AI score0.17794EPSS
In wildExploits4References32
Tenable Nessus
Tenable Nessus
added 2010/07/01 12:0 a.m.28 views

Fedora 12 : exim-4.72-1.fc12 (2010-9506)

This update fixes the following security flaws: CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling CVE-2010-2024 exim: race condition when MBX locking is enabled Note that Tenable Network Security has extracted the preceding description block directly from the Fedora securi...

4.4CVSS6.7AI score0.0028EPSS
Exploits0References5
securityvulns
securityvulns
added 2010/06/08 12:0 a.m.46 views

Multiple vulnerabilities in Exim

================================== Exim Mailer, multiple vulnerabilites June 3, 2010 CVE-2010-2023, CVE-2010-2024 ================================== ==Description== Two vulnerabilities have been discovered in Exim 4, a popular mail transfer agent used on Unix-like systems www.exim.org. 1. When Ex...

4.4CVSS0.2AI score0.0028EPSS
Exploits0
Debian CVE
Debian CVE
added 2010/06/07 2:0 p.m.29 views

CVE-2010-2023

transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify the stnlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user's file...

4.4CVSS7AI score0.0028EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2010/06/07 12:0 a.m.46 views

CVE-2010-2024

transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/...

4.4CVSS7.1AI score0.0028EPSS
Exploits0References4
Rows per page
Query Builder