Lucene search
+L

1410 matches found

hackapp
hackapp
added 2016/04/01 9:34 a.m.10 views

Smart Maps Offline - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Smart Maps Offline published at the 'play' market has multiple vulnerabilities...

1AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:19 a.m.7 views

God Live Wallpaper - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application God Live Wallpaper published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:10 a.m.14 views

Media Server - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Media Server published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:0 a.m.16 views

Sirens and Horns - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Sirens and Horns published at the 'play' market has multiple vulnerabilities...

7.3AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:57 a.m.11 views

Speak German - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities

HackApp vulnerability scanner discovered that application Speak German published at the 'play' market has multiple vulnerabilities...

Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 8:53 a.m.13 views

Happy Cyanide - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Happy Cyanide published at the 'play' market has multiple vulnerabilities...

0.7AI score
Exploits0References1Affected Software1
OSV
OSV
added 2015/07/23 12:59 a.m.4 views

UBUNTU-CVE-2015-1274

Google Chrome before 44.0.2403.89 does not ensure that the auto-open list omits all dangerous file types, which makes it easier for remote attackers to execute arbitrary code by providing a crafted file and leveraging a user's previous "Always open files of this type" choice, related to...

6.8CVSS7.7AI score0.03615EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2015/07/23 12:0 a.m.42 views

CVE-2015-1274

Removed by vendor...

6.8CVSS9.4AI score0.03615EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2013/10/09 2:54 p.m.8 views

CVE-2013-5576

administrator/components/commedia/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended access restrictions and upload files with dangerous extensions via a filename with a trailing . dot...

6.8CVSS5.6AI score0.48191EPSS
Exploits5References13
VulnCheck KEV
VulnCheck KEV
added 2013/10/09 12:0 a.m.4 views

VulnCheck KEV: CVE-2013-5576

administrator/components/commedia/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended access restrictions and upload files with dangerous extensions via a filename with a trailing...

6.8CVSS5.8AI score0.48191EPSS
Exploits5References1
Prion
Prion
added 2013/02/23 9:55 p.m.17 views

Out-of-bounds

Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to a "user gesture check for dangerous file downloads."...

5CVSS6.7AI score0.01556EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCve
added 2013/02/23 9:55 p.m.21 views

CVE-2013-0888

Skia, as used in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service out-of-bounds read via vectors related to a "user gesture check for dangerous file downloads."...

5CVSS7.2AI score0.01556EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2013/02/23 9:0 p.m.22 views

CVE-2013-0888

Removed by vendor...

5CVSS9.4AI score0.01556EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/02/22 12:0 a.m.63 views

Google Chrome < 25.0.1364.97 Multiple Vulnerabilities

Binary data 6694.pasl...

7.5CVSS9.8AI score0.01811EPSS
Exploits0References2
myhack58
myhack58
added 2013/02/04 12:0 a.m.20 views

Sky classroom file upload vulnerability-vulnerability warning-the black bar safety net

Brief description: Allow the upload of dangerous file type,this system is still a lot of Open the network course website, as shown in Figure, landing it, and now SkyDrive. Upload a PHP file, the web site didn't filter PHP file. ! 1 8-300x166. png ! 1 8-300x166. png ! 1 8-300x166. png After enteri...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2011/11/09 11:0 p.m.29 views

CVE-2011-2739

The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x before 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file...

7.3AI score0.02685EPSS
Exploits0References2
OSV
OSV
added 2011/08/09 8:55 p.m.4 views

DEBIAN-CVE-2011-3012

The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions before writing to the quake3 directory, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates...

10CVSS7.7AI score0.08204EPSS
Exploits1References1
OSV
OSV
added 2011/08/09 8:55 p.m.6 views

CVE-2011-3012

The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions before writing to the quake3 directory, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates...

7.4AI score
Exploits0References8
OSV
OSV
added 2011/08/09 8:55 p.m.7 views

UBUNTU-CVE-2011-3012

The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions before writing to the quake3 directory, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates...

10CVSS6.2AI score0.08204EPSS
Exploits1References2
Prion
Prion
added 2011/08/09 8:55 p.m.20 views

Design/Logic Flaw

The ioQuake3 engine, as used in World of Padman 1.2 and earlier, Tremulous 1.1.0, and ioUrbanTerror 2007-12-20, does not check for dangerous file extensions before writing to the quake3 directory, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates...

10CVSS7.7AI score0.0869EPSS
Exploits3References8Affected Software3
Rows per page
Query Builder