Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

0day.today
0day.todayadded 2015/07/20 12:0 a.m.38 views

SysAid Help Desk rdslogs Arbitrary File Upload Exploit

This Metasploit module exploits a file upload vulnerability in SysAid Help Desk v14.3 and v14.4. The vulnerability exists in the RdsLogsEntry servlet which accepts unauthenticated file uploads and handles zip file contents in a insecure way. Combining both weaknesses a remote attacker can...

6.8CVSS7.4AI score0.79205EPSS
Exploits10
Exploit DB
Exploit DBadded 2015/06/10 12:0 a.m.67 views

SysAid Help Desk 14.4 - Multiple Vulnerabilities

Multiple vulnerabilities in SysAid Help Desk 14.4 Discovered by Pedro Ribeiro [email protected], Agile Information Security ================================================================================= Disclosure: 03/06/2015 / Last updated: 10/06/2015 Background on the affected product: "SysAi...

8.5CVSS6.3AI score0.88235EPSS
Exploits26
Packet Storm
Packet Stormadded 2015/06/03 12:0 a.m.64 views

SysAid Help Desk 14.4 Code Execution / Denial Of Service / Traversal / SQL Injection

Hi, tl;dr Found lots of vulns in SysAid Help Desk 14.4, including RCE. SysAid have informed me they all have been fixed in 15.2, but no re-test was performed. Full advisory below, and a copy can be obtained at 1. 5 Metasploit modules have been released and currently awaiting merge in the moderati...

8.5CVSS0.5AI score0.88235EPSS
Exploits28
RedHat Linux
RedHat Linuxadded 2013/10/17 5:31 p.m.5 views

OpenJDK: Vulnerability in Libraries component (Libraries, 7023639)

Unspecified vulnerability in Oracle Java SE 7u25 and earlier, and Java SE Embedded 7u25 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

9.3CVSS6.8AI score0.03812EPSS
Exploits0References7
CVE
CVEadded 2013/10/16 5:31 p.m.320 views

CVE-2013-5838

CVE-2013-5838 affects Oracle Java SE 7u25 and earlier, and Java SE Embedded 7u25 and earlier, with an unspecified vulnerability that could allow a remote attacker to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. Connected advisories detail that a se...

9.3CVSS6.9AI score0.03812EPSS
Exploits0References12Affected Software1
exploitpack
exploitpackadded 2013/08/15 12:0 a.m.13 views

Oracle Java - IntegerInterleavedRaster.verify() Signed Integer Overflow

Oracle Java - IntegerInterleavedRaster.verify Signed Integer Overflow -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------------+ | Packet Storm Advisory 2013-0813-1 | | http://packetstormsecurity.com/ |...

0.3AI score
Exploits0
exploitpack
exploitpackadded 2013/08/12 12:0 a.m.15 views

Oracle Java - storeImageArray() Invalid Array Indexing

Oracle Java - storeImageArray Invalid Array Indexing -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 +------------------------------------------------------------------------------+ | Packet Storm Advisory 2013-0811-1 | | http://packetstormsecurity.com/ |...

0.1AI score
Exploits0
OSV
OSVadded 2013/07/15 12:0 a.m.27 views

DSA-2722-1 openjdk-7 - several

Bulletin has no description...

10CVSS9.8AI score0.9322EPSS
Exploits32
Rows per page
Query Builder