Lucene search
+L

151 matches found

CNVD
CNVD
added 2019/10/14 12:0 a.m.5 views

WordPress events-manager plugin code injection vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. events-manager is an events management plugin used in it. A code injection vulnerability exists in the WordPress events-manager...

9.8CVSS7.5AI score0.021EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/14 12:0 a.m.3 views

Atlassian Crowd Code Injection Vulnerability

Atlassian Crowd is a Web-based single sign-on system from Atlassian Australia. The system provides authentication, authorization, and other functions for multiple users, web applications, and directory servers. A code injection vulnerability exists in Atlassian Crowd versions prior to 2.10.2, whi...

7.2CVSS7.6AI score0.0233EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/29 12:0 a.m.3 views

Couchbase Server Code Injection Vulnerability

Couchbase Server is a distributed open source NoSQL non-relational database from the U.S. company Couchbase , which mainly supports data query , full-text search and active global replication and other functions . A code injection vulnerability exists in Couchbase Server version 5.1.1. The...

9.8CVSS7.5AI score0.02139EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/10 12:0 a.m.3 views

LibreNMS Code Injection Vulnerability

LibreNMS is an open source network monitoring system based on PHP and MySQL. The system features customizable alerts , auto-discovery of the network environment and automatic updates . A code injection vulnerability exists in LibreNMS version 1.50.1, which can be exploited by an attacker to...

8.8CVSS7.7AI score0.01392EPSS
Exploits1References1
CNVD
CNVD
added 2019/08/27 12:0 a.m.3 views

openITCOCKPIT Code Injection Vulnerability

openITCOCKPIT is a set of open source system monitoring tools . A code injection vulnerability exists in versions of openITCOCKPIT prior to 3.7.1. The vulnerability arises from external input data to construct code segments in the process , the network system or product is not properly filtered f...

9.8CVSS7.5AI score0.01656EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/31 12:0 a.m.5 views

Code Injection Vulnerability in Multiple Bitdefender Products

Bitdefender Endpoint Security Tool and others are products of the Romanian company Bitdefender.Bitdefender Endpoint Security Tool is an endpoint security management tool.Bitdefender Antivirus Plus is a suite of antivirus programs that provide network threat detection and ransomware protection...

7.2CVSS7.6AI score0.00554EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/30 12:0 a.m.5 views

Dolibarr ERP/CRM Command Execution Vulnerability

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A code execution vulnerability exists in Dolibarr ERP/CRM. The...

8.5CVSS7.5AI score0.02236EPSS
Exploits1References1
CNVD
CNVD
added 2019/07/24 12:0 a.m.2 views

xstream code injection vulnerability

xstream is an open source Java class library , it can serialize objects into XML or deserialize XML into objects . . A code injection vulnerability exists in xstream. The vulnerability stems from a network system or product that does not properly filter special elements of externally entered data...

9.8CVSS7.7AI score0.94774EPSS
Exploits4References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.4 views

Eclipse OpenJ9 code injection vulnerability

Eclipse OpenJ9 is a Java application engine from the Eclipse Foundation. The product is primarily used to run Java applications. A code injection vulnerability exists in AIX builds in Eclipse OpenJ9 versions prior to 0.15.0. The vulnerability stems from a networked system or product that does not...

7.8CVSS9.5AI score0.00394EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/16 12:0 a.m.8 views

ProClima Code Injection Vulnerability

Schneider Electric ProClima is a heat calculation software package from Schneider Electric, France. The software provides thermal management capabilities for environmental and electrical/electronic equipment installed in control panels by analyzing specified thermal data. A code injection...

10CVSS7.5AI score0.04953EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/03 12:0 a.m.5 views

Palo Alto Networks Traps Code Injection Vulnerability

Palo Alto Networks Traps is a suite of endpoint security protection software from Palo Alto Networks, USA. A code injection vulnerability exists in Palo Alto Networks Traps 5.0.5 and prior versions. The vulnerability stems from a network system or product not properly filtering specific elements ...

6.5CVSS7.6AI score0.00902EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/13 12:0 a.m.5 views

SAP E-Commerce Code Injection Vulnerability

SAP E-Commerce is a set of e-commerce solutions from Germany's SAP. A code injection vulnerability exists in SAP E-Commerce, which arises from the failure of a network system or product to properly filter specific elements of externally entered data during the construction of a code segment, and...

6.8CVSS7.6AI score0.00858EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/10 12:0 a.m.4 views

EmpireCMS Code Injection Vulnerability

EmpireCMS Empire Content Management System is an open source content management system CMS. A code injection vulnerability exists in the admindbDoSql.php file in EmpireCMS 7.5 and earlier versions, which can be exploited by an attacker to generate illegal code snippets that modify the intended...

7.2CVSS7.6AI score0.0221EPSS
Exploits1References1
CNVD
CNVD
added 2019/05/14 12:0 a.m.4 views

RICOH SP 4520DN Code Injection Vulnerability

The RICOH SP 4520DN is a multifunction printer from Ricoh Japan. A code injection vulnerability exists in the RICOH SP 4520DN, which arises from a network system or product that does not properly filter specific elements of externally inputted data during the construction of a code segment, and c...

6.1CVSS7.7AI score0.00964EPSS
Exploits4References1
CNVD
CNVD
added 2019/05/14 12:0 a.m.5 views

RICOH SP 4510DN Code Injection Vulnerability

The RICOH SP 4510DN is a multifunction printer from Ricoh Japan. A code injection vulnerability exists in the RICOH SP 4510DN, which arises from a network system or product that does not properly filter specific elements of externally inputted data during the construction of a code segment, and c...

6.1CVSS7.7AI score0.00979EPSS
Exploits5References1
CNVD
CNVD
added 2019/05/07 12:0 a.m.5 views

Orpak SitOmat Code Injection Vulnerability

Orpak SitOmat is a remote takeover refueling system from Orpak India. A code injection vulnerability exists in Orpak SitOmat, which arises from the failure of a network system or product to properly filter specific elements of externally inputted data during the construction of a code segment, an...

10CVSS7.8AI score0.0377EPSS
Exploits0References1
Hacker One
Hacker One
added 2019/04/11 2:44 p.m.21 views

shopify-scripts: Buffer overflow in yywarning_s

PoC === The following demonstrates a crash: 300000000000000000000000000000000000000000000000E0030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 Debug...

0.8AI score
Exploits0
CNVD
CNVD
added 2019/04/02 12:0 a.m.38 views

ZZZCMS zzzphp code injection vulnerability

ZZZCMS zzzphp is a content management system CMS. A code injection vulnerability exists in ZZZCMS zzzphp v1.6.3, which originates from a network system or product that does not properly filter specific elements of externally entered data during the construction of a code segment. An attacker can...

9.8CVSS7.2AI score0.06589EPSS
Exploits1References1
CNVD
CNVD
added 2019/03/27 12:0 a.m.4 views

CMS Made Simple Code Injection Vulnerability

CMS Made Simple CMSMS is an open source content management system CMS from the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A code injection vulnerability exists in CMSMS version...

8.8CVSS7.6AI score0.0157EPSS
Exploits0References1
CNVD
CNVD
added 2019/02/11 12:0 a.m.4 views

Frog CMS Code Injection Vulnerability (CNVD-2019-34646)

Frog CMS is a Content Management System CMS developed by Philippe Archambault Software Developers. The system provides tools for page templates, user rights management and document management. A code injection vulnerability exists in Frog CMS. An attacker could use this vulnerability to generate...

7.2CVSS7.6AI score0.02107EPSS
Exploits1References1
Rows per page
Query Builder