CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2016/09/18 2:59 a.m.•13 views

CVE-2016-6639

Cloud Foundry PHP Buildpack aka php-buildpack before 4.3.18 and PHP Buildpack Cf-release before 242, as used in Pivotal Cloud Foundry PCF Elastic Runtime before 1.6.38 and 1.7.x before 1.7.19 and other products, place the .profile file in the htdocs directory, which might allow remote attackers t...

7.5CVSS7.4AI score0.01704EPSS

OSV•added 2016/09/18 2:59 a.m.•7 views

CVE-2016-6639

7.5CVSS6.5AI score0.01704EPSS

Prion•added 2016/09/18 2:59 a.m.•10 views

Cross site request forgery (csrf)

5CVSS6.8AI score0.01704EPSS

Exploits0References2Affected Software2

Cvelist•added 2016/09/18 1:0 a.m.•24 views

CVE-2016-6639

7.4AI score0.01704EPSS

OpenVAS•added 2016/08/24 12:0 a.m.•14 views

NUUO NVRmini 2 <= 3.0.8 LFI Vulnerability - Active Check

NUUO NVRmini 2 devices are prone to a local file disclosure LFI vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.2AI score

Exploits0References3

OpenVAS•added 2016/08/23 12:0 a.m.•227 views

VideoIQ Camera Remote Detection

Detects the installed version of VideoIQ Camera. This script sends an HTTP GET request and tries to ensure the presence of VideoIQ Camera. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7AI score

OpenVAS•added 2016/08/08 12:0 a.m.•19 views

Kodi Web Server Remote Denial Of Service Vulnerability

Kodi Web Server is prone to remote denial of service vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:kodi:kodi";...

7.3AI score

OpenVAS•added 2016/08/04 12:0 a.m.•22 views

Fotoware Fotoweb Cross-site Scripting Vulnerability

Fotoware Fotoweb is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.2AI score

myhack58•added 2016/07/27 12:0 a.m.•13 views

Cisco Data Center Operations Management Solution in the presence of a serious vulnerability-a vulnerability warning-the black bar safety net

! Cisco is a leading global network solutions provider, the company is committed to numerous companies to build network unimpeded,“Bridge”, and with his own keen insight, rich industry experience, advanced technology, help enterprises to put the network into a strategic asset, to fully tap the...

0.4AI score

Tenable Nessus•added 2016/06/17 12:0 a.m.•15 views

Palo Alto Networks PAN-OS 7.0.7 Multiple Vulnerabilities

The version of Palo Alto Networks PAN-OS running on the remote host is 7.0.7. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the passive firewall where a VM-series ESXi configuration processes and forwards traffic. No other details are available. - An unspecified...

6.4AI score

Tenable Nessus•added 2016/05/24 12:0 a.m.•46 views

Debian DLA-484-1 : graphicsmagick security update (ImageTragick)

Several security vulnerabilities were discovered in graphicsmagick a tool to manipulate image files. GraphicsMagick is a fork of ImageMagick and also affected by vulnerabilities collectively known as ImageTragick, that are the consequence of lack of sanitization of untrusted input. An attacker wi...

10CVSS6.7AI score0.97485EPSS

Exploits13References10

0day.today•added 2016/05/04 12:0 a.m.•387 views

ImageMagick 6.9.3-9 / 7.0.1-0 - Multiple Vulnerabilities (ImageTragick)

Exploit for multiple platform in category dos / poc Nikolay Ermishkin from the Mail.Ru Security Team discovered several vulnerabilities in ImageMagick. We've reported these issues to developers of ImageMagick and they made a fix for RCE in sources and released new version 6.9.3-9 released...

10CVSS7.1AI score0.97485EPSS

Exploits13

FreeBSD•added 2016/05/03 12:0 a.m.•43 views

ImageMagick -- multiple vulnerabilities

Openwall reports: Insufficient filtering for filename passed to delegate's command allows remote code execution during conversion of several file formats. Any service which uses ImageMagick to process user supplied images and uses default delegates.xml / policy.xml, may be vulnerable to this issu...

10CVSS0.9AI score0.97485EPSS

Exploits13References2

OpenVAS•added 2016/04/25 12:0 a.m.•9 views

PHPmongoDB CSRF And XSS Vulnerabilities

PHPmongoDB is prone to multiple cross-site scripting XSS and cross-site request forgery CSRF vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier...

6.7AI score

exploitpack•added 2016/04/08 12:0 a.m.•24 views

op5 7.1.9 - Remote Command Execution

op5 7.1.9 - Remote Command Execution + Credits: hyp3rlinx + Website: http://hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/OP5-REMOTE-CMD-EXECUTION.txt Vendor: ============ www.op5.com Product: =========== op5 v7.1.9 op5 Monitor is a software product for server,...

0.1AI score

OpenVAS•added 2016/04/06 12:0 a.m.•11 views

Disc Organization System (DORG) Remote Version Detection

Detection of Disc Organization System DORG. This script sends an HTTP GET request and checks for the presence of the application. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.1AI score