Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9454 matches found

securityvulns
securityvulnsadded 2009/01/31 12:0 a.m.38 views

[TKADV2009-004] FFmpeg Type Conversion Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: FFmpeg Type Conversion Vulnerability Advisory ID: TKADV2009-004 Revision: 1.0 Release Date: 2009/01/28 Last Modified: 2009/01/28 Date Reported: 2009/01/25 Author: Tobias Klein tk at trapkit.de Affected Software: FFmpeg SVN trunk revision 168...

0.6AI score
Exploits0
Packet Storm
Packet Stormadded 2009/01/29 12:0 a.m.33 views

Drupal Imagefield Upload / Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Drupal Imagefield Module Multiple Vulnerabilities Security Risk: High Exploitable: Remotely Vulnerabilities: Arbitrary File Upload, Cross Site Scripting Discovered by: Justin C. Klein Keane, Andrew Rosborough Tested: Imagefield 5.x-2.2 on Drupal 5.15...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2009/01/28 12:0 a.m.91 views

ACROS Security: HTML Injection in BEA (Oracle) WebLogic Server Console (ASPR #2009-01-27-1)

=====BEGIN-ACROS-REPORT===== PUBLIC ========================================================================= ACROS Security Problem Report 2009-01-27-1 ------------------------------------------------------------------------- ASPR 2009-01-27-1: HTML Injection in BEA WebLogic Server Console...

Exploits0
securityvulns
securityvulnsadded 2009/01/28 12:0 a.m.52 views

SAP NetWeaver XSS Vulnerability

COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: NetWeaver/Web DynPro Vendor: SAP www.sap.com CVD ID: CVE-2008-3358 Subject: Cross-Site Scripting Vulnerability Risk: High Effect: Remotely exploitable Author: Martin Suess [email protected] Date: January 27th 20...

4.3CVSS5.9AI score0.0065EPSS
Exploits0
0day.today
0day.todayadded 2009/01/28 12:0 a.m.32 views

Amaya Web Editor XML and HTML parser Vulnerabilities

Exploit for unknown platform in category dos / poc ==================================================== Amaya Web Editor XML and HTML parser Vulnerabilities ==================================================== -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs...

7AI score
Exploits0
Debian
Debianadded 2009/01/19 3:59 p.m.19 views

[Backports-security-announce] Security update for roundcube

Hi, Ive just uploaded new roundcube packages to etch-backports fixing the security issues listed below. Please note that these are remote exploitable issues and an upgrade is highly recommended. Fix a vulnerability in quota image generation. This fixes CVE-2008-5620. Thanks to Nico Golde for...

7.8CVSS2AI score0.00568EPSS
Exploits0
securityvulns
securityvulnsadded 2009/01/16 12:0 a.m.74 views

PR08-19: XSS on Cisco IOS HTTP Server

PR08-19: XSS on Cisco IOS HTTP Server Date found: 1st August 2008 Vendor contacted: 1st August 2008 Advisory publicly released: 14th January 2009 Severity: Medium Credits: Adrian Pastor of ProCheckUp Ltd www.procheckup.com Description: Cisco IOS HTTP server is vulnerable to XSS within invalid...

4.3CVSS0.1AI score0.08935EPSS
Exploits2
securityvulns
securityvulnsadded 2009/01/14 12:0 a.m.31 views

[TKADV2009-001] Sun Solaris aio_suspend() Kernel Integer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Sun Solaris aiosuspend Kernel Integer Overflow Vulnerability Advisory ID: TKADV2009-001 Revision: 1.0 Release Date: 2009/01/08 Last Modified: 2009/01/08 Date Reported: 2008/09/15 Author: Tobias Klein tk at trapkit.de Affected Software: Solar...

7.2AI score
Exploits0
Packet Storm
Packet Stormadded 2008/12/30 12:0 a.m.34 views

Core Security Technologies Advisory 2008.1210

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Qemu and KVM VNC server remote DoS 1. Advisory Information Title: Qemu and KVM VNC server remote DoS Advisory ID: CORE-2008-1210 Advisory URL:...

0.8AI score
Exploits0
0day.today
0day.todayadded 2008/12/17 12:0 a.m.16 views

QuickerSite Easy CMS (QuickerSite.mdb) Database Disclosure Vulnerability

Exploit for unknown platform in category web applications ======================================================================== QuickerSite Easy CMS QuickerSite.mdb Database Disclosure Vulnerability ========================================================================...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2008/12/15 12:0 a.m.35 views

[TKADV2008-014] MPlayer TwinVQ Processing Stack Buffer Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: MPlayer TwinVQ Processing Stack Buffer Overflow Vulnerability Advisory ID: TKADV2008-014 Revision: 1.0 Release Date: 2008/12/14 Last Modified: 2008/12/14 Date Reported: 2008/12/07 Author: Tobias Klein tk at trapkit.de Affected Software:...

0.4AI score
Exploits0
Zero Day Initiative
Zero Day Initiativeadded 2008/12/09 12:0 a.m.39 views

Microsoft Animation ActiveX Control Malformed AVI Parsing Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code through vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the Microsoft Animation...

9.3CVSS4.4AI score0.65731EPSS
Exploits7References1
Exploit DB
Exploit DBadded 2008/12/04 12:0 a.m.34 views

Easy News Content Management - Database Disclosure

Author : BeyazKurt Contact : [email protected] Site : www.khg-crew.ws - KOSOVA HACKERS GROUP Script : Easy Content Management Publishing Script Site : http://easy-news.org/content-management-terns.asp Description : An easy to use ASP-based content management news system. Mulitple login levels...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2008/11/14 12:0 a.m.60 views

Team SHATTER Security Advisory: Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database multiple SQL Injection vulnerabilities in Workspace Manager November 12, 2008 Risk Level: High Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...

5.5CVSS0.6AI score0.67346EPSS
Exploits7
securityvulns
securityvulnsadded 2008/11/14 12:0 a.m.59 views

Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCPUBLISH.ALTERAUTOLOGCHANGESOURCE November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...

5.5CVSS1.1AI score0.47398EPSS
Exploits2
securityvulns
securityvulnsadded 2008/11/14 12:0 a.m.62 views

Team SHATTER Security Advisory: Oracle Database Multiple SQL Injection vulnerabilities in LTADM

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database Multiple SQL Injection vulnerabilities in LTADM November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 9iR2, 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes Authentication...

5.5CVSS0.5AI score0.00247EPSS
Exploits1
securityvulns
securityvulnsadded 2008/11/14 12:0 a.m.56 views

Team SHATTER Security Advisory: Oracle Database SQL Injection in SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCE

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Team SHATTER Security Advisory Oracle Database SQL Injection in SYS.DBMSCDCIPUBLISH.ALTERHOTLOGINTERNALCSOURCE November 12, 2008 Risk Level: Medium Affected versions: Oracle Database Server versions 10gR1, 10gR2 and 11gR1 Remote exploitable: Yes...

5.5CVSS1.1AI score0.37808EPSS
Exploits3
Packet Storm
Packet Stormadded 2008/11/08 12:0 a.m.32 views

AKADV2008-001-v1.0.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory: Openfire Server Multiple Vulnerabilities Advisory ID: AKADV2008-001 Release Date: 2008/11/07 Revision: 1.0 Last Modified: 2008/11/07 Date Reported: 2008/05/17 Author: Andreas Kurtz mail at andreas-kurtz.de Affected Software: Openfire Serve...

7.4AI score
Exploits0
UbuntuCve
UbuntuCveadded 2008/11/07 7:36 p.m.19 views

CVE-2008-4996

init in initramfs-tools 0.92f allows local users to overwrite arbitrary files via a symlink attack on the /tmp/initramfs.debug temporary file. NOTE: the vendor disputes this vulnerability, stating that "init is used in a single-user context; there's no possibility that this is exploitable...

6.9CVSS7.2AI score0.00116EPSS
Exploits1References1
securityvulns
securityvulnsadded 2008/10/27 12:0 a.m.39 views

[TKADV2008-010] VLC media player TiVo ty Processing Stack Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: VLC media player TiVo ty Processing Stack Overflow Vulnerability Advisory ID: TKADV2008-010 Revision: 1.0 Release Date: 2008/10/20 Last Modified: 2008/10/20 Date Reported: 2008/10/18 Author: Tobias Klein tk at trapkit.de Affected Software: V...

0.3AI score
Exploits0
Rows per page
Query Builder