Lucene search
K

6032 matches found

CNVD
CNVD
added 2016/12/07 12:0 a.m.4 views

Google Chrome Blink Cross-Site Scripting Vulnerability (CNVD-2016-12105)

Google Chrome is a web browser developed by Google Inc. Blink is a browser layout engine rendering engine jointly developed by Google Inc. and Opera Software of Norway. A cross-site scripting vulnerability exists in Blink in versions of Google Chrome prior to 55.0.2883.75. An attacker can exploit...

6.1CVSS8.4AI score0.00737EPSS
Exploits0References1
OSV
OSV
added 2016/11/17 12:0 a.m.5 views

UBUNTU-CVE-2016-5292

During URL parsing, a maliciously crafted URL can cause a potentially exploitable crash. This vulnerability affects Firefox 50...

6.5CVSS6.9AI score0.01509EPSS
Exploits0References4
OSV
OSV
added 2016/11/16 12:0 a.m.4 views

UBUNTU-CVE-2016-5291

A same-origin policy bypass with local shortcut files to load arbitrary local content from disk. This vulnerability affects Thunderbird 45.5, Firefox ESR 45.5, and Firefox 50...

5.5CVSS6.9AI score0.00442EPSS
Exploits1References5
CNVD
CNVD
added 2016/11/03 12:0 a.m.3 views

Symantec Norton Mobile Security for Android Security Bypass Vulnerability

Symantec Norton Mobile Security for Android is the United States Symantec Symantec, Inc. based on the Android platform for mobile devices to provide security features of the software. A security bypass vulnerability exists in versions of Symantec Norton Mobile Security for Android prior to 3.16. ...

4.3CVSS6.8AI score0.01319EPSS
Exploits0References1
OSV
OSV
added 2016/10/25 12:0 a.m.3 views

UBUNTU-CVE-2016-5287

A potentially exploitable use-after-free crash during actor destruction with service workers. This issue does not affect releases earlier than Firefox 49. This vulnerability affects Firefox 49.0.2...

9.8CVSS7.3AI score0.02425EPSS
Exploits0References4
CNVD
CNVD
added 2016/09/23 12:0 a.m.3 views

Kerio Control Cross-Site Request Forgery Vulnerability

Kerio Control is a simple and fast unified threat management system. Cross-site request forgery vulnerabilities in Kerio Control version 9.1.3 can be exploited by an attacker to execute arbitrary script code in the context of an affected site, steal cookie-based authentication, disclose sensitive...

7.5AI score
Exploits0References1
CNVD
CNVD
added 2016/08/03 12:0 a.m.5 views

Crestron Electronics DM-TXRX-100-STR Security Restriction Bypass Vulnerability

The Crestron Electronics DM-TXRX-100-STR is a multimedia streaming codec. A security vulnerability exists in the Crestron Electronics DM-TXRX-100-STR 1.3039.00040. It could allow a remote attacker to bypass authentication by directly requesting a non-index.html page...

9.8CVSS7.1AI score0.0443EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/07/18 1:51 p.m.7 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
CNVD
CNVD
added 2016/07/12 12:0 a.m.19 views

Fortinet FortiSwitch Weak Password Vulnerability

Fortinet FortiSwitch is a suite of secure switching platforms from Fortinet, Inc. designed for Ethernet infrastructure and current network edge configurations. A weak password vulnerability exists in Fortinet FortiSwitch versions prior to 3.4.1. An attacker could exploit the vulnerability to log ...

10CVSS6.9AI score0.04561EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/02/02 10:4 a.m.8 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.10339EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/01/21 11:38 a.m.4 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/01/21 11:38 a.m.4 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/12/09 1:35 p.m.3 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2015/06/25 12:0 a.m.28 views

Contus HD Video Share (aka HDVideoShare) by Apptha [com_contushdvideoshare], 3.5 and below, Directory Traversal

Contus HD Video Share by Apptha comcontushdvideoshare, 3.5 and below, Directory Traversal...

3AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2015/04/30 12:0 a.m.7 views

Ruby REST Client Information Disclosure Vulnerability

Ruby is a cross-platform, object-oriented, dynamically typed programming language developed by Japanese software developer Yukihiro Matsumoto.REST Client aka rest-client is one of the simple HTTP and REST client. A security vulnerability exists in Ruby REST Client versions prior to 1.7.3. Since t...

2.1CVSS6.4AI score0.00373EPSS
Exploits0References1
OSV
OSV
added 2015/01/23 3:59 p.m.8 views

AZL-6953 CVE-2014-9639 affecting package vorbis-tools for versions less than 1.4.0-35

Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access...

5CVSS6.1AI score0.03575EPSS
Exploits1References1
OSV
OSV
added 2015/01/23 3:59 p.m.5 views

AZL-6952 CVE-2014-9638 affecting package vorbis-tools for versions less than 1.4.0-35

oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero...

5CVSS6.1AI score0.03579EPSS
Exploits1References1
Prion
Prion
added 2014/08/17 11:55 p.m.16 views

Hardcoded credentials

The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...

9.3CVSS7.2AI score0.02176EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/08/17 11:0 p.m.21 views

CVE-2014-0326

The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...

6.7AI score0.02176EPSS
Exploits0References1
myhack58
myhack58
added 2014/03/30 12:0 a.m.63 views

PHP168 6.0 and below the version login. php memory major security vulnerability-vulnerability warning-the black bar safety net

A big problem, it is best not to ignore。。。。 The use of the code will be php Trojan is inserted into the cache/directory to easily get webshell, you can bulk. Use a search engine to search Powered by php168 v6 or what version of v5, v4, v3, v2, v1 will search to many, many more related site Since...

7.3AI score
Exploits0
Rows per page
Query Builder