CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4444 matches found

OSV•added 2008/02/19 1:0 a.m.•3 views

DEBIAN-CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS6AI score0.01243EPSS

Exploits0References1

OSV•added 2008/02/19 1:0 a.m.•6 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

5.5AI score

Exploits0References6

NVD•added 2008/02/19 1:0 a.m.•16 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS5.5AI score0.01243EPSS

Exploits0References6

Cvelist•added 2008/02/19 12:0 a.m.•16 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

5.4AI score0.01243EPSS

Exploits0References6

Debian CVE•added 2008/02/19 12:0 a.m.•15 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS5.6AI score0.01243EPSS

Exploits0

CVE•added 2008/02/19 12:0 a.m.•55 views

CVE-2008-0808

CVE-2008-0808 is an XSS in Ikiwiki's meta plugin, affecting Ikiwiki before 1.1.47. Exploitation could allow remote script/HTML injection via meta tags. Debian and OSV advisories reference fixed releases and urge upgrading Ikiwiki to patched versions (e.g., Debian etch 1.33.4); no exploit details ...

4.3CVSS5.4AI score0.01243EPSS

Exploits0References6Affected Software1

UbuntuCve•added 2008/02/11 9:0 p.m.•23 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6AI score0.00433EPSS

Exploits1References1

OSV•added 2008/02/11 9:0 p.m.•2 views

DEBIAN-CVE-2008-0666

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

3.6CVSS6.7AI score0.00433EPSS

Exploits1References1

OSV•added 2008/02/11 9:0 p.m.•3 views

CVE-2008-0666

6.1AI score

Exploits0References8

Prion•added 2008/02/11 9:0 p.m.•19 views

Code injection

3.6CVSS6.4AI score0.00433EPSS

Exploits1References8Affected Software1

OSV•added 2008/02/11 9:0 p.m.•1 views

DEBIAN-CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6.2AI score0.00433EPSS

Exploits1References1

NVD•added 2008/02/11 9:0 p.m.•18 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6AI score0.00433EPSS

Exploits1References8

Cvelist•added 2008/02/11 8:0 p.m.•17 views

CVE-2008-0666

6AI score0.00433EPSS

Exploits1References8

CVE•added 2008/02/11 8:0 p.m.•55 views

CVE-2008-0665

CVE-2008-0665 affects Website META Language (WML) 2.0.11, where wml_backend/p1_ipp/ipp.src allows local users to overwrite arbitrary files via a symlink attack on ipp.$$.tmp. The issue is confirmed in multiple advisories (Debian DSA-1492-1/2, Gentoo GLSA-200803-23, Mandriva MDVSA-2008:076, Gentoo...

3.6CVSS5.9AI score0.00433EPSS

Exploits1References8Affected Software1

Debian CVE•added 2008/02/11 8:0 p.m.•24 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS4.5AI score0.00433EPSS

Exploits1

Debian CVE•added 2008/02/11 8:0 p.m.•25 views

CVE-2008-0666

3.6CVSS4.3AI score0.00433EPSS

Exploits1

FreeBSD•added 2008/02/10 12:0 a.m.•30 views

ikiwiki -- javascript insertion via uris

The ikiwiki development team reports: The htmlscrubber did not block javascript in uris. This was fixed by adding a whitelist of valid uri types, which does not include javascript. Some urls specifyable by the meta plugin could also theoretically have been used to inject javascript; this was also...

4.3CVSS6.4AI score0.01243EPSS

Exploits0References1

OpenVAS•added 2008/01/31 12:0 a.m.•18 views

Debian: Security Advisory (DSA-1462-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.6CVSS6.6AI score0.67264EPSS

Exploits4References3

OpenVAS•added 2008/01/17 12:0 a.m.•27 views

Debian Security Advisory DSA 694-1 (xloadimage)

The remote host is missing an update to xloadimage announced via advisory DSA 694-1. OpenVAS Vulnerability Test $Id: deb6941.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 694-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.6AI score0.03603EPSS

Exploits0

OpenVAS•added 2008/01/17 12:0 a.m.•26 views

Debian Security Advisory DSA 998-1 (libextractor)

The remote host is missing an update to libextractor announced via advisory DSA 998-1. Derek Noonburg has fixed several potential vulnerabilities in xpdf, which are also present in libextractor, a library to extract arbitrary meta-data from files. The old stable distribution woody does not contai...

7.6CVSS0.8AI score0.02139EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by