Lucene search
+L

57 matches found

OpenVAS
OpenVAS
added 2017/08/11 12:0 a.m.36 views

RedHat Update for firefox RHSA-2017:2456-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.04187EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2017/08/10 12:0 a.m.44 views

Mozilla Firefox < 55 Multiple Vulnerabilities (macOS)

The version of Mozilla Firefox installed on the remote macOS or Mac OS X host is prior to 55. It is, therefore, affected by multiple vulnerabilities, some of which allow code execution and potentially exploitable application crashes. C Tenable Network Security, Inc. include'compat.inc'; if...

10CVSS7.3AI score0.13697EPSS
Exploits25References27
Tenable Nessus
Tenable Nessus
added 2017/08/10 12:0 a.m.43 views

Mozilla Firefox ESR < 52.3 Multiple Vulnerabilities (macOS)

The version of Mozilla Firefox ESR installed on the remote macOS or Mac OS X host is prior to 52.3. It is, therefore, affected by multiple vulnerabilities, some of which allow code execution and potentially exploitable crashes. C Tenable Network Security, Inc. include'compat.inc'; if description...

10CVSS7.3AI score0.04187EPSS
Exploits13References16
myhack58
myhack58
added 2017/07/08 12:0 a.m.140 views

Oracle golden gate critical vulnerability analysis-vulnerability warning-the black bar safety net

In this article, we will once again prove over-reliance on automation tool will allow people to ignore off a lot of potential danger, at the same time, we will also discuss some of the relevant Oracle Golden Gate technical level of the important weaknesses vulnerability, and to show you yet anoth...

10CVSS7.3AI score0.06833EPSS
Exploits1
NVD
NVD
added 2017/06/09 4:29 p.m.15 views

CVE-2016-7809

Cross-site request forgery CSRF vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows remote attackers to hijack the authentication of logged in user to conduct unintended operations via unspecified vectors...

8.8CVSS8.8AI score0.00913EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2016/01/22 12:0 a.m.25 views

Oracle GoldenGate File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle GoldenGate. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GoldenGate mgr process, which listens on TCP port 7809. By default, the process...

10CVSS7.8AI score0.06833EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2016/01/22 12:0 a.m.46 views

Oracle GoldenGate Veridata File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle GoldenGate. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GoldenGate mgr process, which listens on TCP port 7809. By default, the process...

10CVSS7.8AI score0.05941EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2016/01/22 12:0 a.m.30 views

Oracle GoldenGate Denial of Service Vulnerability

This vulnerability allows remote attackers to cause a denial condition on vulnerable installations of Oracle GoldenGate. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GoldenGate mgr process, which listens on TCP port 7809. By default, this proce...

5CVSS7.3AI score0.03794EPSS
Exploits1References1
NVD
NVD
added 2015/11/06 9:59 p.m.24 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

6.8CVSS7.4AI score0.03398EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2015/11/06 9:59 p.m.34 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

6.8CVSS6AI score0.03398EPSS
Exploits0References2
CVE
CVE
added 2015/11/06 9:0 p.m.81 views

CVE-2015-7809

CVE-2015-7809 affects the Twig templating engine (Sensio Labs Twig) prior to version 1.20.0. When Sandbox mode is enabled, the displayBlock function in Template.php allows remote code execution via the _self variable in templates. Several connected advisories confirm the issue as a remote code ex...

6.8CVSS7.5AI score0.03398EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2015/11/06 9:0 p.m.58 views

CVE-2015-7809

Removed by vendor...

6.8CVSS6.7AI score0.03398EPSS
Exploits0
Cvelist
Cvelist
added 2015/11/06 9:0 p.m.27 views

CVE-2015-7809

The displayBlock function Template.php in Sensio Labs Twig before 1.20.0, when Sandbox mode is enabled, allows remote attackers to execute arbitrary code via the self variable in a template...

7.3AI score0.03398EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2015/10/15 12:0 a.m.23 views

FreeBSD : pear-twig -- remote code execution (705b759c-7293-11e5-a371-14dae9d210b8)

Fabien Potencier reports : End users can craft valid Twig code that allows them to execute arbitrary code RCEs via the self variable, which is always available, even in sandboxed templates. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

6.8CVSS5.5AI score0.03398EPSS
Exploits0References3
CVE
CVE
added 2014/12/10 3:0 p.m.85 views

CVE-2014-7809

CVE-2014-7809 affects Apache Struts 2.0.0–2.3.x with predictable values, enabling remote CSRF bypass. Connected IBM advisories confirm impact on IBM FlashSystem 840/V840-AC0/AC1 nodes and IBM SAN Storwize, IBM Sterling Order Management, Call Center, and related products where Struts is used as p...

6.8CVSS6.7AI score0.03486EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/10 12:0 a.m.57 views

Apache Struts 2 Multiple Vulnerabilities (S2-023) (S2-025)

The remote web server is using a version of Struts 2 that is affected by multiple vulnerabilities : - A cross-site request forgery vulnerability exists due to the token generator failing to adequately randomize the token values. An attacker can exploit this issue by extracting a token from a form...

6.8CVSS7.2AI score0.07551EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/06/29 12:0 a.m.18 views

SuSE 11.2 Security Update : xorg-x11-libXrender (SAT Patch Number 7809)

This update of xorg-x11-libXrender fixes several integer overflow issues. bnc815451, bnc821669, CVE-2013-1987 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C...

6.8CVSS8.2AI score0.01878EPSS
Exploits0References4
Rows per page
Query Builder