Lucene search
+L

90 matches found

UbuntuCve
UbuntuCve
added 2010/01/07 6:30 p.m.55 views

CVE-2009-4589

Cross-site scripting XSS vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote attackers to inject arbitrary web script or HTML via the ip parameter...

4.3CVSS6AI score0.01356EPSS
Exploits1References2
CVE
CVE
added 2010/01/07 6:13 p.m.65 views

CVE-2009-4589

MediaWiki 1.14.0 and 1.15.0 are affected by a cross-site scripting (XSS) vulnerability in the Special:Block implementation, specifically in the getContribsLink function of SpecialBlockip.php. The issue allows remote attackers to inject arbitrary web script or HTML via the ip parameter. The public...

4.3CVSS5.8AI score0.01356EPSS
Exploits1References7Affected Software2
Debian CVE
Debian CVE
added 2010/01/07 6:13 p.m.58 views

CVE-2009-4589

Cross-site scripting XSS vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote attackers to inject arbitrary web script or HTML via the ip parameter...

4.3CVSS5.6AI score0.01356EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/10/16 12:0 a.m.24 views

Lenovo Rescue and Recovery tvtumon.sys Filename Handling Local Overflow

The version of Lenovo Rescue and Recovery monitor driver running on the remote host is affected by a heap overflow condition. A local attacker may exploit this to elevate privileges to SYSTEM level. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid34432;...

7.2CVSS5.6AI score0.00526EPSS
Exploits0References2
CVE
CVE
added 2008/10/15 10:0 p.m.53 views

CVE-2008-4589

CVE-2008-4589 concerns a heap-based buffer overflow in the Lenovo Rescue and Recovery module tvtumin.sys (kernel driver) affecting version 4.20, including 4.20.0511 and 4.20.0512. The vulnerability allows a local attacker to execute arbitrary code by providing a long file name, enabling privilege...

7.2CVSS7.5AI score0.00526EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2008/10/15 10:0 p.m.18 views

CVE-2008-4589

Heap-based buffer overflow in the tvtumin.sys kernel driver in Lenovo Rescue and Recovery 4.20, including 4.20.0511 and 4.20.0512, allows local users to execute arbitrary code via a long file name...

7.5AI score0.00526EPSS
Exploits0References10
CVE
CVE
added 2007/08/29 1:0 a.m.46 views

CVE-2007-4589

CVE-2007-4589 describes multiple XSS vulnerabilities in InterWorx Hosting Control Panel (InterWorx-CP) Webmaster Level (SiteWorx) 3.0.2. The issue allows injection of arbitrary script/HTML by manipulating PATH_INFO to index.php and to a set of scripts (siteworx.php, users.php, ftp.php, mysql.php,...

4.3CVSS5.5AI score0.01707EPSS
Exploits0References22Affected Software1
CVE
CVE
added 2006/09/06 10:0 p.m.46 views

CVE-2006-4589

DynCMS 6 and earlier are affected by a PHP remote file inclusion in 0_admin/modules/Wochenkarte/frontend/index.php, exploitable via the x_admindir URL parameter to execute arbitrary PHP code. This affects DynCMS versions

7.5CVSS7.9AI score0.03179EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2005/12/30 11:0 a.m.35 views

CVE-2005-4589

CVE-2005-4589 affects Spb Kiosk Engine 1.0.0.1, where the administrator passcode is stored in plaintext in the registry. The root cause is insecure storage of credentials in the registry, enabling local users to obtain the passcode. The NVD entry notes a LOW base score (CVSS2: AV:L/AC:L/Au:N/C:P/...

2.1CVSS6.6AI score0.00342EPSS
Exploits0References6Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.19 views

CVE-2018-4589

CVE-2018-4589 entry is rejected and not used by its CNA.

6.8AI score
Exploits0
Rows per page
Query Builder