Lucene search
K

70 matches found

WPVulnDB
WPVulnDB
added 2022/05/31 12:0 a.m.11 views

Easy Pricing Tables < 3.2.1 - Reflected Cross-Site-Scripting

The plugin does not sanitise and escape parameter before outputting it back in a page available to any user both authenticated and unauthenticated when a specific setting is enabled, leading to a Reflected Cross-Site Scripting PoC With the "Compatibility Mode"...

6.1CVSS0.2AI score0.01388EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/05/31 12:0 a.m.121 views

Easy Pricing Tables < 3.2.1 - Reflected Cross-Site-Scripting

The plugin does not sanitise and escape parameter before outputting it back in a page available to any user both authenticated and unauthenticated when a specific setting is enabled, leading to a Reflected Cross-Site Scripting With the "Compatibility Mode"...

6.1CVSS0.1AI score0.01388EPSS
Exploits2
Veracode
Veracode
added 2020/08/06 9:33 p.m.21 views

Denial Of Service (DoS)

FreeRDP is vulnerable to denial of service. A use-after-free in gdiSelectObject causes clients using compatibility mode with /relax-order-checks to be vulnerable to an application crash...

7.5CVSS2.5AI score0.01808EPSS
Exploits0References10Affected Software1
RedhatCVE
RedhatCVE
added 2020/07/08 12:20 p.m.27 views

CVE-2020-4031

In FreeRDP before version 2.1.2, there is a use-after-free in gdiSelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2...

4.3CVSS3.8AI score0.01808EPSS
Exploits0References3
OSV
OSV
added 2020/06/22 10:15 p.m.19 views

CVE-2020-4031

In FreeRDP before version 2.1.2, there is a use-after-free in gdiSelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2...

7.5CVSS6.6AI score
Exploits0References8
OSV
OSV
added 2020/06/22 10:15 p.m.2 views

DEBIAN-CVE-2020-4031

In FreeRDP before version 2.1.2, there is a use-after-free in gdiSelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2...

7.5CVSS8.2AI score0.01808EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2020/06/22 12:0 a.m.29 views

CVE-2020-4031

In FreeRDP before version 2.1.2, there is a use-after-free in gdiSelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2...

7.5CVSS5.6AI score0.01808EPSS
Exploits0
Debian CVE
Debian CVE
added 2020/06/22 12:0 a.m.19 views

CVE-2020-4031

In FreeRDP before version 2.1.2, there is a use-after-free in gdiSelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2...

7.5CVSS7.5AI score0.01808EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2020/02/11 12:0 a.m.64 views

CVE-2020-0674

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka ‘Scripting Engine Memory Corruption Vulnerability’. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713,...

7.6CVSS8.2AI score0.86863EPSS
In wildExploits20References8
RedHat Linux
RedHat Linux
added 2018/10/30 9:54 a.m.7 views

zsh: NULL dereference in cd in sh compatibility mode under given circumstances

A NULL pointer dereference flaw was found in the code responsible for the cd builtin command of the zsh package. An attacker could use this flaw to cause a denial of service by crashing the user shell...

8.1CVSS5.8AI score0.02124EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2017/11/10 12:0 a.m.96 views

Microsoft Internet Explorer 11 jscript!JsErrorToString Use-After-Free

Microsoft IE11: use-after-free in jscript!JsErrorToString CVE-2017-11810 There is a use-after-free in jscript.dll library that can be exploited in IE11. jscript.dll is an old JavaScript library that was used in IE 8 and back. However, IE11 can still load it if put into IE8 compatibility mode and ...

7.6CVSS7.8AI score0.5389EPSS
Exploits4
OSV
OSV
added 2017/10/10 8:29 p.m.3 views

CVE-2017-11057

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in compatibility mode, flashdata from 64-bit userspace may cause disclosure of kernel memory or a fault due to using a userspace-provided address...

7.8CVSS5.8AI score0.00151EPSS
Exploits0References2
Prion
Prion
added 2017/10/10 8:29 p.m.15 views

Design/Logic Flaw

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in compatibility mode, flashdata from 64-bit userspace may cause disclosure of kernel memory or a fault due to using a userspace-provided address...

4.6CVSS7.5AI score0.00151EPSS
Exploits0References2Affected Software1
seebug.org
seebug.org
added 2017/05/27 12:0 a.m.52 views

Apple MacOS 32-Bit Syscall Exit Kernel Register Leak(CVE-2017-2509)

The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to userspace, unixsyscall in bsd/dev/i386/systemcalls.c calls threadexceptionreturn in osfmk/x8664/locore.s, which in turn...

4.3CVSS7.7AI score0.02321EPSS
Exploits2
0day.today
0day.today
added 2017/05/23 12:0 a.m.54 views

Apple macOS - 32-bit syscall exit Kernel Register Leak Exploit

Exploit for macOS platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1149 The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to...

4.3CVSS7.7AI score0.02321EPSS
Exploits2
Exploit DB
Exploit DB
added 2017/05/22 12:0 a.m.28 views

Apple macOS - &#039;32-bit syscall exit&#039; Kernel Register Leak

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1149 The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to userspace, unixsyscall in...

7AI score
Exploits0
Citrix
Citrix
added 2017/01/25 12:0 a.m.6 views

Published application with XP compatibility mode enabled may cause intermittent black background

Published application with XP compatibility mode enabled may cause intermittent black background...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/05/09 12:0 a.m.45 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1247-1)

ntp was updated to version 4.2.8p6 to fix 28 security issues. Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way, some options have been renamed or dropped. - 'controlkey 1' is added during update to ntp.conf to allow sntp to work. - The local cloc...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References88
Hacker One
Hacker One
added 2016/02/28 8:41 a.m.22 views

Shopify: xss in the all widgets of shopifyapps.com

i found xss in all widgets.shopifyapps.com/ google dork:site:widgets.shopifyapps.com the parameter "padding" is vulnerable,xss payload - %0ax:expressionalert1%0a xss does work in inetrnet explorer browsers for ie10,ie11 in compatibility mode , for ie5,ie6,ie7 for ie8,ie9 javascript is disabled, t...

7AI score
Exploits0
NVD
NVD
added 2015/07/01 10:59 a.m.18 views

CVE-2015-1967

MQ Explorer in IBM WebSphere MQ before 8.0.0.3 does not recognize the absence of the compatibility-mode option, which allows remote attackers to obtain sensitive information by sniffing the network for a session in which TLS is not used...

4.3CVSS6AI score0.01735EPSS
Exploits0References2
Rows per page
Query Builder