Lucene search
K

24 matches found

NVD
NVD
added 2025/07/31 2:15 p.m.6 views

CVE-2025-8407

A vulnerability, which was classified as critical, has been found in code-projects Vehicle Management 1.0. This issue affects some unknown processing of the file /filter2.php. The manipulation of the argument from leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS0.00421EPSS
Exploits1References5
CVE
CVE
added 2025/07/31 2:2 p.m.18 views

CVE-2025-8407

CVE-2025-8407 affects code-projects Vehicle Management 1.0. The vulnerability is a SQL injection in the processing of the file /filter2.php , caused by manipulation of the from parameter; exploitation can be remote and the exploit has been publicly disclosed. Several sources (NVD, CNVD, Red Hat, ...

9.8CVSS7.6AI score0.00421EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/07/31 2:2 p.m.12 views

CVE-2025-8407 code-projects Vehicle Management filter2.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Vehicle Management 1.0. This issue affects some unknown processing of the file /filter2.php. The manipulation of the argument from leads to sql injection. The attack may be initiated remotely. The exploit has been...

7.5CVSS0.00421EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/23 7:19 a.m.8 views

CVE-2024-8407

A vulnerability was found in alwindoss akademy up to 35caccea888ed63d5489e211c99edff1f62efdba. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file cmd/akademy/handler/handlers.go. The manipulation of the argument emailAddress leads to cross...

5.4CVSS5.1AI score0.00449EPSS
Exploits1References1
Circl
Circl
added 2024/09/04 4:54 p.m.4 views

CVE-2024-8407

creationtimestamp| type| source ---|---|--- 2024-09-04 16:54:33+00:00| seen| https://t.me/cvedetector/4787...

5.4CVSS4.4AI score0.00449EPSS
Exploits1References1
CVE
CVE
added 2021/04/13 8:41 p.m.37 views

CVE-2020-8407

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

6.8AI score
Exploits0
Cvelist
Cvelist
added 2021/04/13 8:41 p.m.11 views

CVE-2020-8407

...

Exploits0
CVE
CVE
added 2019/07/02 6:53 p.m.112 views

CVE-2017-8407

CVE-2017-8407 affects D-Link DCS-1130 network cameras. The issue is a lack of cross-site request forgery protection in the web management interface, allowing an attacker to trick a logged-in user into changing the user’s administrative password. The vulnerability’s impact is partial confidentiali...

8.8CVSS8.6AI score0.01189EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2019/02/17 6:0 p.m.36 views

CVE-2019-8407

HongCMS 3.0.0 is affected by CVE-2019-8407 due to a path traversal in the filename parameter of admin/index.php/language/edit, allowing arbitrary file read and write. The underlying cause is improper handling of "../" in the filename, enabling access to sensitive files. Impact: partial confidenti...

6.5CVSS6.4AI score0.0145EPSS
Exploits1References1Affected Software1
Circl
Circl
added 2018/11/14 5:39 p.m.10 views

CVE-2018-8407

creationtimestamp| type| source ---|---|--- 2018-11-14 17:39:01+00:00| seen| MISP/5bec5b59-b2b0-4506-9c63-32a40a021402...

5.5CVSS6.8AI score0.01655EPSS
Exploits0
NVD
NVD
added 2018/11/14 1:29 a.m.31 views

CVE-2018-8407

An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider" driver improperly initializes objects in memory, aka "MSRPC Information Disclosure Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019,...

5.5CVSS6.5AI score0.01655EPSS
Exploits0References3
CVE
CVE
added 2018/11/14 1:0 a.m.182 views

CVE-2018-8407

CVE-2018-8407 is an information disclosure vulnerability in the Kernel Remote Procedure Call Provider driver that occurs when objects are not properly initialized in memory. The vulnerability affects multiple Windows releases, including Windows 7, Windows 8.1, Windows 10 and various Windows Serve...

5.5CVSS6.7AI score0.01655EPSS
Exploits0References3Affected Software8
Symantec
Symantec
added 2018/11/13 12:0 a.m.392 views

Microsoft Windows MSRPC CVE-2018-8407 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...

1.1AI score0.01655EPSS
Exploits0Affected Software3
Tenable Nessus
Tenable Nessus
added 2018/11/13 12:0 a.m.118 views

KB4467700: Windows Server 2008 November 2018 Security Update

The remote Windows host is missing security update 4467700 or cumulative update 4467706. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...

10CVSS8.2AI score0.63294EPSS
Exploits10References13
CVE
CVE
added 2017/01/12 3:0 p.m.46 views

CVE-2016-8407

CVE-2016-8407 is an information disclosure vulnerability in Android’s kernel components (ION subsystem, Binder, USB driver, and networking). The issue could allow a local malicious app to access data outside its permission levels after compromising a privileged process. Affected products/versions...

4.7CVSS3.9AI score0.01046EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/01/04 12:0 a.m.36 views

openSUSE Security Update : flash-player (openSUSE-2015-882)

This update for flash-player to version 11.2.202.554 fixes the following security issues in Adobe security advisory APSB15-32. - These updates resolve heap buffer overflow vulnerabilities that could lead to code execution CVE-2015-8438, CVE-2015-8446. - These updates resolve memory corruption...

10CVSS8.8AI score0.43408EPSS
Exploits18References79
Prion
Prion
added 2015/12/10 6:0 a.m.14 views

Stack overflow

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

10CVSS8.2AI score0.09008EPSS
Exploits0References7Affected Software4
OSV
OSV
added 2015/12/10 5:59 a.m.2 views

UBUNTU-CVE-2015-8407

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

10CVSS7.9AI score0.08158EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2015/12/10 5:59 a.m.22 views

CVE-2015-8407

Stack-based buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

10CVSS7.5AI score0.08158EPSS
Exploits0References2
CVE
CVE
added 2015/12/10 2:0 a.m.81 views

CVE-2015-8407

CVE-2015-8407 is a heap buffer overflow in Adobe Flash Player before 18.0.0.268, 19.x, and 20.x before 20.0.0.228 on Windows/OS X, and before 11.2.202.554 on Linux, plus Adobe AIR before 20.0.0.204 (and AIR SDK/Compiler before that version). The vulnerability allows attackers to execute arbitrary...

10CVSS9AI score0.08158EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder