Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

CNNVD
CNNVDadded 2026/05/16 12:0 a.m.7 views

Net::Statsd::Lite 注入漏洞

Net::Statsd::Lite is a lightweight StatsD client developed by Robert Rothenberg, which supports multiple metric data packets. Versions of Net::Statsd::Lite prior to 0.9.0 have a injection vulnerability. This vulnerability arises from the lack of checks for line breaks, colons, or vertical bars in...

6.5CVSS5.8AI score0.00016EPSS
Exploits0References2
OSV
OSVadded 2024/06/27 4:15 p.m.1 views

ALPINE-CVE-2024-28820

Buffer overflow in the extractopenvpncr function in openvpn-cr.c in openvpn-auth-ldap aka the Three Rings Auth-LDAP plugin for OpenVPN 2.0.4 allows attackers with a valid LDAP username and who can control the challenge/response password field to pass a string with more than 14 colons into this...

6.3CVSS7.7AI score0.00216EPSS
Exploits0References1
Veracode
Veracodeadded 2023/03/01 2:54 a.m.22 views

Cross-site Scripting (XSS)

@braintree/sanitize-url is vulnerable to Cross-site Scripting XSS. The vulnerability exists because the decodeHtmlCharacters function in index.ts does not properly sanitize html encoded colons in the urlSchemeRegex parameter, which allows an attacker to inject and execute malicious JavaScript by...

6.1CVSS5.9AI score0.00585EPSS
Exploits0References4Affected Software2
Microsoft CVE
Microsoft CVEadded 2020/08/18 12:0 a.m.2 views

In libexpat in Expat before 2.2.7 XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).

...

7.8CVSS6.5AI score0.05584EPSS
Exploits1
OSV
OSVadded 2019/06/24 12:0 a.m.1 views

UBUNTU-CVE-2018-20843

In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing enough to be usable for denial-of-service attacks...

7.5CVSS6.7AI score0.05584EPSS
Exploits1References11
curl security advisories
curl security advisoriesadded 2016/01/27 8:0 a.m.2 views

remote filename path traversal in curl tool for Windows

curl does not sanitize colons in a remote filename that is used as the local filename. This may lead to a vulnerability on systems where the colon is a special path character. Currently Windows is the only OS where this vulnerability applies. curl offers command line options --remote-name also...

5.3CVSS6AI score0.00351EPSS
Exploits0Affected Software2
OSV
OSVadded 2016/01/27 8:0 a.m.5 views

CURL-CVE-2016-0754 remote filename path traversal in curl tool for Windows

curl does not sanitize colons in a remote filename that is used as the local filename. This may lead to a vulnerability on systems where the colon is a special path character. Currently Windows is the only OS where this vulnerability applies. curl offers command line options --remote-name also...

5.3CVSS5.3AI score0.00351EPSS
Exploits0
OSV
OSVadded 2015/12/17 12:0 a.m.29 views

DLA-371-1 foomatic-filters - security update

Bulletin has no description...

7.5CVSS7.2AI score0.09264EPSS
Exploits0
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.31 views

Nokia Multimedia Player 1.0 SEH Unicode Exploit

No description provided by source. ? Exploit Title: Nokia Multimedia player SEH Unicode Date: January 11 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.brothersoft.com/nokia-multimedia-player-download-46238.html Version: 1.00.55.5010 Tested on: Windows xp sp3 running on VMwa...

7.1AI score
Exploits0
Rows per page
Query Builder