Lucene search
K

52 matches found

ATTACKERKB
ATTACKERKB
added 2022/02/21 11:0 a.m.7 views

CVE-2021-46680

A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to perform javascript code executions via the module form name field...

6.1CVSS6.4AI score0.00321EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/02/09 11:15 p.m.4 views

CVE-2022-22545

A high privileged user who has access to transaction SM59 can read connection details stored with the destination for http calls in SAP NetWeaver Application Server ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756...

4.9CVSS7.3AI score0.00819EPSS
Exploits0References2
Prion
Prion
added 2022/02/09 11:15 p.m.24 views

Design/Logic Flaw

A high privileged user who has access to transaction SM59 can read connection details stored with the destination for http calls in SAP NetWeaver Application Server ABAP and ABAP Platform - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756...

4CVSS4.8AI score0.00819EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/12/14 12:0 a.m.5 views

SAP NetWeaver AS 操作系统命令注入漏洞

SAP NetWeaver AS is a SAP network application server from SAP. It not only provides network services, but is also the basic platform for SAP software. SAP NetWeaver AS ABAP suffers from an operating system command injection vulnerability that originates from allowing an attacker with elevated...

7.2CVSS7.9AI score0.00294EPSS
Exploits0References4
Hacker One
Hacker One
added 2017/05/16 5:29 p.m.79 views

PortSwigger Web Security: Misconfiguration: Missing Custom Error Page (CWE-12 & CWE-756)

Hi I found that custom errors for http://portswigger.net application framework are not configured., so application vulnerable to CWE-756 & CWE-12 https://cwe.mitre.org/data/definitions/12.html https://cwe.mitre.org/data/definitions/756.html - Impact: Default error pages gives detailed information...

0.4AI score
Exploits0
OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.39 views

Amazon Linux: Security Advisory (ALAS-2016-756)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.6773EPSS
Exploits16References2
Tenable Nessus
Tenable Nessus
added 2016/10/13 12:0 a.m.106 views

Amazon Linux AMI : mysql55 / mysql56 (ALAS-2016-756)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server. C...

10CVSS8.4AI score0.6773EPSS
Exploits16References2
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

Ubuntu 8.10 : clamav vulnerability (USN-756-1)

It was discovered that ClamAV did not properly verify buffers when processing Upack files. A remote attacker could send a crafted file and cause a denial of service via application crash. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

5CVSS5.4AI score0.03422EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.6 views

Ubuntu: Security Advisory (USN-756-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.18 views

Debian: Security Advisory (DSA-756-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.04242EPSS
Exploits2References3
Cent OS
Cent OS
added 2005/09/06 11:15 p.m.66 views

cvs security update

CentOS Errata and Security Advisory CESA-2005:756-01 An updated cvs package that fixes a security bug is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. CVS Concurrent Version System is a version control system. An insecure temporary...

4.6CVSS5.8AI score0.00443EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2005/09/06 1:42 p.m.20 views

Low: Red Hat Security Advisory: cvs security update

An updated cvs package that fixes a security bug is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. CVS Concurrent Version System is a version control system. An insecure temporary file usage was found in the cvsbug program. It is...

4.6CVSS5.8AI score0.00443EPSS
Exploits0References2
Rows per page
Query Builder