Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9454 matches found

Packet Storm
Packet Stormadded 2016/07/25 12:0 a.m.21 views

CodoForum 3.2.1 SQL Injection

Advisory Information ======================================== Title : CodoForum = 3.2.1 Remote SQL Injection Vulnerability Vendor Homepage : https://codoforum.com/ Remotely Exploitable : Yes Versions Affected : Prior to 3.2.1 Tested on : Ubuntu Apache | PHP 5.5.9 | MySQL 5.5 Vulnerability : SQL...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2016/07/22 12:0 a.m.35 views

TeamPass Passwords Management System 2.1.26 File Download

ADVISORY INFORMATION ======================================== Title: TeamPass Passwords Management System via Unauth File Download and Arbitrary File Download Application: TeamPass Passwords Management System Class: Sensitive Information disclosure Remotely Exploitable: Yes Versions Affected:...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2016/07/21 12:0 a.m.16 views

TeamPass Passwords Management System 2.1.26 - Arbitrary File Download

TeamPass Passwords Management System 2.1.26 - Arbitrary File Download 1. ADVISORY INFORMATION ======================================== Title: TeamPass Passwords Management System via Unauth File Download and Arbitrary File Download Application: TeamPass Passwords Management System Class: Sensitiv...

7.4AI score
Exploits0
ThreatPost
ThreatPostadded 2016/07/20 9:21 a.m.16 views

Oracle Fixes 276 Vulnerabilites in July Critical Patch Update

Oracle has one-upped itself once again. The company fixed a record 276 vulnerabilities – more than half of which are remotely exploitable – as part of its July Critical Patch Update released Tuesday afternoon. The quarterly patch update resolves vulnerabilities in 84 different products, including...

0.1AI score
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2016/07/20 12:0 a.m.29 views

Oracle Solaris Critical Patch Update : jul2016_SRU11_3_10_5_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Libadimalloc. The supported version that is affected is 11.3. Difficult to exploit vulnerability allows low privilege...

7CVSS6.4AI score0.00103EPSS
Exploits0References4
exploitpack
exploitpackadded 2016/07/19 12:0 a.m.42 views

Axis Communications MPQTPACS 5.20.x - Server-Side Include Daemon Remote Format String

Axis Communications MPQTPACS 5.20.x - Server-Side Include Daemon Remote Format String !/usr/bin/env python2.7 SOF Remote Format String Exploit Axis Communications MPQT/PACS Server Side Include SSI Daemon Research and development by bashis 2016 This format string vulnerability has following...

0.5AI score
Exploits0
0day.today
0day.todayadded 2016/07/19 12:0 a.m.54 views

Axis Communications MPQT/PACS 5.20.x - Server Side Include (SSI) Daemon Remote Format String

Exploit for multiple platform in category remote exploits !/usr/bin/env python2.7 SOF Remote Format String Exploit Axis Communications MPQT/PACS Server Side Include SSI Daemon Research and development by bashis 2016 This format string vulnerability has following characteristic: - Heap Based...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2016/07/19 12:0 a.m.82 views

Axis Communications MPQT/PACS 5.20.x - Server-Side Include Daemon Remote Format String

!/usr/bin/env python2.7 SOF Remote Format String Exploit Axis Communications MPQT/PACS Server Side Include SSI Daemon Research and development by bashis 2016 This format string vulnerability has following characteristic: - Heap Based Exploiting string located on the heap - Blind Attack No output...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2016/07/18 12:0 a.m.53 views

Axis Communications MPQT/PACS SSI Remote Format String / Code Execution

!/usr/bin/env python2.7 SOF Remote Format String Exploit Axis Communications MPQT/PACS Server Side Include SSI Daemon Research and development by bashis 2016 This format string vulnerability has following characteristic: - Heap Based Exploiting string located on the heap - Blind Attack No output...

0.2AI score
Exploits0
The Hacker News
The Hacker Newsadded 2016/07/13 2:32 a.m.12 views

Several Critical Remotely Exploitable Flaws Found in Drupal Modules, patch ASAP!

The extraordinary 'Panama Papers leak' from Law firm Mossack Fonseca that exposed the tax-avoiding efforts by the world's richest and most influential members was initially believed to be the result of an unpatched vulnerability in the popular content management systems: Drupal and WordPress. Now...

8.3AI score
Exploits0
Circl
Circladded 2016/07/13 12:0 a.m.12 views

CVE-2016-4206

creationtimestamp| type| source ---|---|--- 2016-07-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40100...

10CVSS9.1AI score0.15076EPSS
Exploits3References1
Vulnerability Lab
Vulnerability Labadded 2016/07/12 12:0 a.m.24 views

Nusiorung CMS 2016 - (Login) Auth Bypass Vulnerability

Document Title: =============== Nusiorung CMS 2016 - Login Auth Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1875 Release Date: ============= 2016-07-12 Vulnerability Laboratory ID VL-ID: ==================================== 1875...

7.4AI score
Exploits0
ThreatPost
ThreatPostadded 2016/07/11 8:32 a.m.12 views

91 Percent of Public-Facing ICS Components Are Remotely Exploitable

We live in an increasingly connected world, but even in an age when DDoS attacks can take entire airlines offline, many critically sensitive industrial control systems ICS are still connected to the internet. A pair of reports released today by Kaspersky Lab reveal how dire the situation really i...

0.2AI score
Exploits0References14
ThreatPost
ThreatPostadded 2016/07/07 1:26 p.m.9 views

D-Link Wi-Fi Camera Flaw Extends to 120 Products

Update A software component that exposed D-Link Wi-Fi cameras to remote attacks is also used in more than 120 other products sold by the company. Researchers at Senrio, who found the original vulnerability, disclosed today additional details of product vulnerabilities related to the component aft...

8.3AI score
Exploits0References5
0day.today
0day.todayadded 2016/06/29 12:0 a.m.37 views

Symantec AntiVirus - Remote Stack Buffer Overflow in dec2lha Library

Exploit for multiple platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=814 The dec2lha library is the library responsible for decompressing LZH and LHA archives. The CSymLHA::getheader routine has a trivial stack buffer overflow. .text:00023D91 31 C0...

9CVSS8.6AI score0.29051EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2016/06/22 9:18 a.m.18 views

CVE-2016-2375

An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT contact information sent from the server can result in memory disclosure...

5.3CVSS1.5AI score0.00473EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2016/06/22 9:18 a.m.18 views

CVE-2016-2374

An exploitable memory corruption vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT MultiMX message sent via the server can result in an out-of-bounds write leading to memory disclosure and code execution...

8.1CVSS2.9AI score0.02727EPSS
Exploits1References2
Kaspersky
Kasperskyadded 2016/06/22 12:0 a.m.36 views

KLA10812 Privilege escalation vulnerabilities in Lenovo Solution Center

Multiple serious vulnerabilities have been found in Lenovo Solution Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability at SystemService can be exploited locally to terminate arbitrary process via...

7.8CVSS7.7AI score0.00271EPSS
Exploits0References3
Hacker One
Hacker Oneadded 2016/06/21 1:38 p.m.34 views

Internet Bug Bounty: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize

https://bugs.php.net/bug.php?id=72434 This vulnerability was discovered during the auditing of a vendor on Hackerone. Similar to our other submission on bugs.php.net and here, this vulnerability is remotely exploitable. Please feel free to ask for more technical details if necessary. Thank you fo...

6.9AI score
Exploits0
erpscan
erpscanadded 2016/06/17 12:0 a.m.42 views

SAP NetWeaver Java 7.5 XXE

Application: SAP NetWeaver Versions Affected: SAP NetWeaver 7.5 Vendor URL: SAP Bugs: XXE Reported: 17.06.2016 Vendor response: 18.06.2016 Date of Public Advisory: 10.01.2017 Reference: SAP Security Note 2347439 Author: Mathieu Geli ERPScan VULNERABILITY INFORMATION Class: XXE Impact: Denial of...

0.1AI score
Exploits0
Rows per page
Query Builder