Lucene search
K

336 matches found

Exploit DB
Exploit DB
added 2017/11/21 12:0 a.m.108 views

DblTek - Multiple Vulnerabilities

Vulnerabilities summary The following advisory describes 2 two vulnerabilities found in DblTek webserver. DBL is “specialized in VoIP products, especially GoIPs. We design, develop, manufacture, and sell our products directly and via distributors to customers. Our GoIP models now cover 1, 4, 8, 1...

10CVSS9.7AI score0.13465EPSS
Exploits3
Veracode
Veracode
added 2017/06/22 3:33 a.m.13 views

Cross-site Scripting (XSS)

github.com/gogits/gogs is vulnerable to cross-site scripting XSS attacks. The attacks can be triggered because a user can change their username to anything other than an empty string. This allows them to enter code which may be executed...

5.8AI score
Exploits0
Fortinet
Fortinet
added 2017/04/26 12:0 a.m.28 views

FortiAnalyzer, FortiManager Open Redirect Vulnerability

The FortiAnalyzer and FortiManager WebUI accept a user-controlled input that specifies a link to an external site, and uses that link in a redirect...

5.8CVSS2.2AI score0.00943EPSS
Exploits0Affected Software2
Packet Storm
Packet Storm
added 2017/02/17 12:0 a.m.29 views

Simplessus Files 3.7.7 Path Traversal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory ID: SYSS-2017-004 Product: Simplessus Files Manufacturer: Simplessus Affected Versions: 3.7.7 Tested Versions: 3.7.7 Vulnerability Type: Path Traversal CWE-22 Risk Level: High Solution Status: Fixed Manufacturer Notification: January 25, 20...

0.3AI score
Exploits0
Prion
Prion
added 2017/02/13 9:59 p.m.19 views

Cross site scripting

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPor...

4.3CVSS6.8AI score0.00826EPSS
Exploits0References2Affected Software10
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.21 views

CVE-2016-9371

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPor...

6.4AI score0.00826EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/11/02 12:0 a.m.32 views

CVE-2016-8620

The 'globbing' feature in curl before version 7.51.0 has a flaw that leads to integer overflow and out-of-bounds read via user controlled input...

9.8CVSS6.9AI score0.04413EPSS
Exploits0References3
Cisco
Cisco
added 2016/08/03 4:0 p.m.73 views

Cisco RV110W, RV130W, and RV215W Routers Command Shell Injection Vulnerability

A vulnerability in the command-line interface CLI command parser of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow an authenticated, local attacker to inject arbitrary shell commands that are executed ...

6.6CVSS7.8AI score0.01939EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2015/12/17 12:0 a.m.19 views

IBM Tivoli Storage Manager FastBack Server Multiple Vulnerabilities

IBM Tivoli Storage Manager FastBack is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.1AI score
Exploits0References3
0day.today
0day.today
added 2015/12/15 12:0 a.m.34 views

IBM Tivoli Storage Manager FastBack Server 5.5.4.2 - _FXCLI_GetConfFileChunk Stack Buffer Overflow E

Exploit for windows platform in category dos / poc !/usr/bin/python Title: IBM Tivoli Storage Manager FastBack Server 5.5.4.2 FXCLIGetConfFileChunk Stack Buffer Overflow Vulnerability Date: 14 December 2015 Author: Gianni Gnesa gnix Vendor Homepage: http://www.ibm.com/ Software Name: IBM Tivoli...

7AI score
Exploits0
seebug.org
seebug.org
added 2014/04/19 12:0 a.m.26 views

方维团购getshell和注射

简要描述: 。。。 详细说明: saveavatar.php: $REQUEST'm'="UcModify"; $REQUEST'a'="saveavatar"; include ROOTPATH."app/source/index.php"; //进去看看 app/source/index.php: ....沈略....... $ma = strtolower$REQUEST'm'.''.$REQUEST'a'; switch$ma case 'ucmodifysaveavatar': require...

7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/04/13 12:0 a.m.32 views

CA Total Defense Suite Heartbeat Web Service Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of CA Total Defense Endpoint. Authentication is not required to exploit this vulnerability. The specific flaw exists within CA.Itm.Server.ManagementWS.dll. Due to a failure to properly sanitize...

10CVSS3.4AI score0.11423EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2010/09/20 12:0 a.m.46 views

Vermillion FTP Daemon - 'PORT' Memory Corruption (Metasploit)

$Id: vermillionftpdport.rb 10394 2010-09-20 08:06:27Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/07/20 12:0 a.m.31 views

GLSA-200907-16 : Python: Integer overflows

The remote host is affected by the vulnerability described in GLSA-200907-16 Python: Integer overflows Chris Evans reported multiple integer overflows in the expandtabs method, as implemented by 1 the stringexpandtabs function in Objects/stringobject.c and 2 the unicodeexpandtabs function in...

10CVSS6.2AI score0.02758EPSS
Exploits1References2
Prion
Prion
added 2007/06/22 6:30 p.m.27 views

Design/Logic Flaw

Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA formerly Computer Associates products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server...

10CVSS8.2AI score0.08958EPSS
Exploits8References14Affected Software1
NVD
NVD
added 2007/06/22 6:30 p.m.17 views

CVE-2007-3336

Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA formerly Computer Associates products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server...

10CVSS7.6AI score0.08958EPSS
Exploits8References14
Rows per page
Query Builder