Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7624 matches found

OSV
OSVadded 2006/04/28 9:2 p.m.3 views

CVE-2006-2083

Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...

8AI score
Exploits0References9
OSV
OSVadded 2006/04/28 9:2 p.m.2 views

DEBIAN-CVE-2006-2083

Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...

7.5CVSS8.4AI score0.03633EPSS
Exploits0References1
Cvelist
Cvelistadded 2006/04/28 9:0 p.m.25 views

CVE-2006-2083

Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...

7.6AI score0.03633EPSS
Exploits0References9
Debian CVE
Debian CVEadded 2006/04/28 9:0 p.m.22 views

CVE-2006-2083

Integer overflow in the receivexattr function in the extended attributes patch xattr.c for rsync before 2.6.8 might allow attackers to execute arbitrary code via crafted extended attributes that trigger a buffer overflow...

7.5CVSS7.6AI score0.03633EPSS
Exploits0
NVD
NVDadded 2006/04/20 10:2 a.m.19 views

CVE-2006-1903

Multiple cross-site scripting XSS vulnerabilities in UserLand Manila allow remote attackers to inject arbitrary web script or HTML 1 via the referer parameter in sendMail, and via attributes of 2 the A element and certain other HTML elements in web pages edited with the editInBrowser module. NOTE...

2.6CVSS5.7AI score0.01161EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2006/03/15 2:5 p.m.0 views

security flaw

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...

7.5CVSS5.8AI score0.0337EPSS
Exploits1References4
Cvelist
Cvelistadded 2006/03/02 7:0 p.m.20 views

CVE-2005-3712

Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes...

7.8AI score0.03695EPSS
Exploits0References8
Prion
Prionadded 2006/02/16 11:2 a.m.17 views

Cross site scripting

DISPUTED Cross-site scripting XSS vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as 1 onfocus and 2 onblur in the "author's website" field. NOTE: followup comments to the researcher's web log suggest that this issue i...

2.6CVSS5.9AI score0.04719EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2006/02/16 11:2 a.m.6 views

CVE-2006-0733

Cross-site scripting XSS vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as 1 onfocus and 2 onblur in the "author's website" field. NOTE: followup comments to the researcher's web log suggest that this issue is only...

5.8AI score
Exploits0References5
Cvelist
Cvelistadded 2006/02/16 11:0 a.m.30 views

CVE-2006-0733

Cross-site scripting XSS vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as 1 onfocus and 2 onblur in the "author's website" field. NOTE: followup comments to the researcher's web log suggest that this issue is only...

5.6AI score0.04719EPSS
Exploits1References4
Debian CVE
Debian CVEadded 2006/02/16 11:0 a.m.22 views

CVE-2006-0733

Cross-site scripting XSS vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as 1 onfocus and 2 onblur in the "author's website" field. NOTE: followup comments to the researcher's web log suggest that this issue is only...

2.6CVSS5.7AI score0.04719EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2006/02/16 12:0 a.m.5 views

PT-2006-1785 · WordPress +1 · Wordpress +1

Name of the Vulnerable Software and Affected Versions: WordPress version 2.0.0 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via scriptable attributes such as onfocus and onblur in the "author's website" field. It is suggested that th...

2.6CVSS6AI score0.04719EPSS
Exploits1References13
Prion
Prionadded 2006/02/13 11:6 a.m.8 views

Stack overflow

Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service application crash and possibly execute code via long "revision attributes"...

7.5CVSS7.3AI score0.02722EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2006/02/13 11:0 a.m.20 views

CVE-2006-0597

Multiple stack-based buffer overflows in elogd.c in elog before 2.5.7 r1558-4 allow attackers to cause a denial of service application crash and possibly execute code via long "revision attributes"...

6.9AI score0.02722EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2006/02/13 11:0 a.m.12 views

CVE-2006-0597

Removed by vendor...

7.5CVSS6.7AI score0.02722EPSS
Exploits0
securityvulns
securityvulnsadded 2006/02/13 12:0 a.m.49 views

[NT] Microsoft Internet Explorer Drag-and-Drop Redeux

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

7.5CVSS5.9AI score0.01211EPSS
Exploits0
Prion
Prionadded 2006/01/25 11:7 p.m.14 views

Code injection

Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allow remote attackers to access MBean attributes or cause an unspecified denial of service via unknown attack vectors...

6.4CVSS7.5AI score0.01757EPSS
Exploits0References6Affected Software1
NVD
NVDadded 2006/01/25 11:7 p.m.10 views

CVE-2006-0422

Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allow remote attackers to access MBean attributes or cause an unspecified denial of service via unknown attack vectors...

6.4CVSS7AI score0.01757EPSS
Exploits0References6
Cvelist
Cvelistadded 2006/01/25 11:0 p.m.15 views

CVE-2006-0422

Multiple unspecified vulnerabilities in BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allow remote attackers to access MBean attributes or cause an unspecified denial of service via unknown attack vectors...

7AI score0.01757EPSS
Exploits0References6
CVE
CVEadded 2006/01/25 11:0 p.m.42 views

CVE-2006-0422

CVE-2006-0422 affects BEA WebLogic Server and WebLogic Express (versions 8.1–SP4, 7.0–SP6, 6.1–SP7). The issue enables remote attackers to access MBean attributes or cause an unspecified denial of service via unknown attack vectors. The provided documents do not specify the root cause details, at...

6.4CVSS7AI score0.01757EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder