Lucene search
+L

148 matches found

Prion
Prion
added 2012/08/28 5:55 p.m.21 views

Design/Logic Flaw

The execcommand function in common/helpers.py in Gajim before 0.15 allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in an href attribute...

6.8CVSS8AI score0.03179EPSS
Exploits1References8Affected Software1
Prion
Prion
added 2010/06/11 6:0 p.m.17 views

Code injection

The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to discover sensitive URLs via an HREF attribute associated with a redirecting URL...

4.3CVSS6.4AI score0.02058EPSS
Exploits0References21Affected Software1
Cvelist
Cvelist
added 2010/06/11 5:28 p.m.21 views

CVE-2010-1393

The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to discover sensitive URLs via an HREF attribute associated with a redirecting URL...

8.3AI score0.02058EPSS
Exploits0References21
OpenVAS
OpenVAS
added 2010/01/20 12:0 a.m.25 views

Apple Safari Multiple Vulnerabilities

This host is installed with Apple Safari Web Browser and is prone to to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbapplesafarimultvulnjan10.nasl 7174 2017-09-18 11:48:08Z asteins $ Apple Safari Multiple Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone...

5CVSS0.07462EPSS
Exploits2References2
CVE
CVE
added 2010/01/14 7:0 p.m.51 views

CVE-2010-0314

The connected SSV entry (SSV:19008) documents CVE-2010-0314 as a redirect-target disclosure in Apple Safari: if a site URL is placed in the HREF of a stylesheet LINK element, a user’s session can read document.styleSheets[0].href to reveal the redirect URL. It notes Safari 4.0.4 and describes the...

5CVSS8.5AI score0.07462EPSS
Exploits2References6Affected Software1
Cvelist
Cvelist
added 2009/12/21 4:0 p.m.23 views

CVE-2009-4363

TextFilter/lib/Horde/Text/Filter/Xss.php in Horde Application Framework before 3.3.6, Horde Groupware before 1.2.5, and Horde Groupware Webmail Edition before 1.2.5 does not properly handle data: URIs, which allows remote attackers to conduct cross-site scripting XSS attacks via data:text/html...

5AI score0.0137EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2009/05/20 12:0 a.m.21 views

SDP Downloader ASX File Heap Buffer Overflow Vulnerability

This host is installed with SDP Downloader and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodsdpdownloaderbofvuln.nasl 5122 2017-01-27 12:16:00Z teissa $ SDP Downloader ASX File Heap Buffer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2009...

9.3CVSS0.6AI score0.0733EPSS
Exploits1References3
NVD
NVD
added 2009/05/15 3:30 p.m.13 views

CVE-2009-1641

Multiple stack-based buffer overflows in Mini-stream Ripper 3.0.1.1 allow remote attackers to execute arbitrary code via 1 a long rtsp URL in a .ram file and 2 a long string in the HREF attribute of a REF element in a .asx file...

9.3CVSS7.7AI score0.30917EPSS
Exploits2References5
Prion
Prion
added 2009/05/15 3:30 p.m.13 views

Stack overflow

Multiple stack-based buffer overflows in Mini-stream Ripper 3.0.1.1 allow remote attackers to execute arbitrary code via 1 a long rtsp URL in a .ram file and 2 a long string in the HREF attribute of a REF element in a .asx file...

9.3CVSS8.3AI score0.30917EPSS
Exploits2References5Affected Software1
Cvelist
Cvelist
added 2009/04/09 3:0 p.m.36 views

CVE-2008-6682

Multiple cross-site scripting XSS vulnerabilities in Apache Struts 2.0.x before 2.0.11.1 and 2.1.x before 2.1.1 allow remote attackers to inject arbitrary web script or HTML via vectors associated with improper handling of 1 " double quote characters in the href attribute of an s:a tag and 2...

5.6AI score0.05614EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2009/01/23 12:0 a.m.21 views

VUPlayer .asx Playlist File Buffer Overflow Vulnerability

This host is installed with VUPlayer and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodvuplayerasxplaylistbofvuln.nasl 5148 2017-01-31 13:16:55Z teissa $ VUPlayer .asx Playlist File Buffer Overflow Vulnerability Authors: Sharath S Copyright: Copyright c 2009...

9.3CVSS0.4AI score0.48398EPSS
Exploits4References5
NVD
NVD
added 2009/01/05 4:30 p.m.20 views

CVE-2008-5839

Buffer overflow in Foxmail 6.5 allows remote attackers to execute arbitrary code via a long mailto URI in the HREF attribute of an A element...

9.3CVSS7.9AI score0.0557EPSS
Exploits1References3
Prion
Prion
added 2009/01/05 4:30 p.m.14 views

Buffer overflow

Buffer overflow in Foxmail 6.5 allows remote attackers to execute arbitrary code via a long mailto URI in the HREF attribute of an A element...

9.3CVSS8.5AI score0.0557EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/01/05 4:0 p.m.26 views

CVE-2008-5839

Buffer overflow in Foxmail 6.5 allows remote attackers to execute arbitrary code via a long mailto URI in the HREF attribute of an A element...

7.9AI score0.0557EPSS
Exploits1References3
CVE
CVE
added 2009/01/05 4:0 p.m.62 views

CVE-2008-5839

CVE-2008-5839 describes a buffer overflow in FoxMail Client (FoxMail 6.5) triggered by a long mailto URI in the HREF attribute of an A element, allowing remote code execution. Affected component: FoxMail Client; root cause: improper handling/overflow in mailto URI parsing. Impact: potential arbit...

9.3CVSS8.2AI score0.0557EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2008/11/29 2:30 a.m.20 views

CVE-2008-5282

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via 1 a link with a long HREF attribute, and 2 a DIV tag with a long id attribute...

10CVSS6.5AI score0.17635EPSS
Exploits1References1
NVD
NVD
added 2008/11/29 2:30 a.m.25 views

CVE-2008-5282

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via 1 a link with a long HREF attribute, and 2 a DIV tag with a long id attribute...

10CVSS7.6AI score0.17635EPSS
Exploits1References10
NVD
NVD
added 2008/07/29 6:41 p.m.17 views

CVE-2008-3360

Stack-based buffer overflow in the HTML parser in IntelliTamper 2.0.7 allows remote attackers to execute arbitrary code via a long URL in the HREF attribute of an A element, a different vulnerability than CVE-2006-2494...

9.3CVSS7.5AI score0.07807EPSS
Exploits1References9
Cvelist
Cvelist
added 2008/07/29 6:0 p.m.25 views

CVE-2008-3360

Stack-based buffer overflow in the HTML parser in IntelliTamper 2.0.7 allows remote attackers to execute arbitrary code via a long URL in the HREF attribute of an A element, a different vulnerability than CVE-2006-2494...

7.5AI score0.07807EPSS
Exploits1References9
RedHat Linux
RedHat Linux
added 2008/06/30 3:33 p.m.6 views

JFreeChart: XSS vulnerabilities in the image map feature

Multiple cross-site scripting XSS vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the 1 chart name or 2 chart tool tip text; or the 3 href, 4 shape, or 5 coords attribute of a chart area...

4.3CVSS5.8AI score0.0276EPSS
Exploits1References4
Rows per page
Query Builder