Lucene search
K

4529 matches found

securityvulns
securityvulns
added 2008/03/17 12:0 a.m.70 views

[ GLSA 200803-23 ] Website META Language: Insecure temporary file usage

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200803-23 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

3.6CVSS6.4AI score0.00433EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2008/03/17 12:0 a.m.28 views

GLSA-200803-23 : Website META Language: Insecure temporary file usage

The remote host is affected by the vulnerability described in GLSA-200803-23 Website META Language: Insecure temporary file usage Temporary files are handled insecurely in the files wmlbackend/p1ipp/ipp.src, wmlcontrib/wmg.cgi, and wmlbackend/p3eperl/eperlsys.c, allowing users to overwrite or...

3.6CVSS5.7AI score0.00433EPSS
Exploits2References3
Zero Day Initiative
Zero Day Initiative
added 2008/03/11 12:0 a.m.42 views

Microsoft Excel BIFF File Format Cell Record Parsing Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. Exploitation requires that the attacker coerce the target into opening a malicious .XLS file. The specific flaw exists within the parsing of malformed cell comments. When Excel...

9.3CVSS6.2AI score0.42225EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2008/02/19 1:0 a.m.17 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS6AI score0.01243EPSS
Exploits0References1
OSV
OSV
added 2008/02/19 1:0 a.m.3 views

DEBIAN-CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS6AI score0.01243EPSS
Exploits0References1
Prion
Prion
added 2008/02/19 1:0 a.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS6.1AI score0.01243EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2008/02/19 1:0 a.m.19 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS5.5AI score0.01243EPSS
Exploits0References6
OSV
OSV
added 2008/02/19 1:0 a.m.8 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

5.5AI score
Exploits0References6
Debian CVE
Debian CVE
added 2008/02/19 12:0 a.m.15 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

4.3CVSS5.6AI score0.01243EPSS
Exploits0
Cvelist
Cvelist
added 2008/02/19 12:0 a.m.20 views

CVE-2008-0808

Cross-site scripting XSS vulnerability in the meta plugin in Ikiwiki before 1.1.47 allows remote attackers to inject arbitrary web script or HTML via meta tags...

5.4AI score0.01243EPSS
Exploits0References6
CVE
CVE
added 2008/02/19 12:0 a.m.58 views

CVE-2008-0808

CVE-2008-0808 is an XSS in Ikiwiki's meta plugin, affecting Ikiwiki before 1.1.47. Exploitation could allow remote script/HTML injection via meta tags. Debian and OSV advisories reference fixed releases and urge upgrading Ikiwiki to patched versions (e.g., Debian etch 1.33.4); no exploit details ...

4.3CVSS5.4AI score0.01243EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2008/02/11 9:0 p.m.18 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6AI score0.00433EPSS
Exploits1References8
OSV
OSV
added 2008/02/11 9:0 p.m.5 views

CVE-2008-0666

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

6.1AI score
Exploits0References8
Prion
Prion
added 2008/02/11 9:0 p.m.20 views

Code injection

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

3.6CVSS6.4AI score0.00433EPSS
Exploits1References8Affected Software1
UbuntuCve
UbuntuCve
added 2008/02/11 9:0 p.m.24 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6AI score0.00433EPSS
Exploits1References1
OSV
OSV
added 2008/02/11 9:0 p.m.2 views

DEBIAN-CVE-2008-0666

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

3.6CVSS6.7AI score0.00433EPSS
Exploits1References1
OSV
OSV
added 2008/02/11 9:0 p.m.1 views

DEBIAN-CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS6.2AI score0.00433EPSS
Exploits1References1
CVE
CVE
added 2008/02/11 8:0 p.m.56 views

CVE-2008-0665

CVE-2008-0665 affects Website META Language (WML) 2.0.11, where wml_backend/p1_ipp/ipp.src allows local users to overwrite arbitrary files via a symlink attack on ipp.$$.tmp. The issue is confirmed in multiple advisories (Debian DSA-1492-1/2, Gentoo GLSA-200803-23, Mandriva MDVSA-2008:076, Gentoo...

3.6CVSS5.9AI score0.00433EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2008/02/11 8:0 p.m.24 views

CVE-2008-0665

wmlbackend/p1ipp/ipp.src in Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on the ipp.$$.tmp temporary file...

3.6CVSS4.5AI score0.00433EPSS
Exploits1
Debian CVE
Debian CVE
added 2008/02/11 8:0 p.m.25 views

CVE-2008-0666

Website META Language WML 2.0.11 allows local users to overwrite arbitrary files via a symlink attack on 1 the /tmp/pe.tmp.$$ temporary file used by wmlcontrib/wmg.cgi and 2 temporary files used by wmlbackend/p3eperl/eperlsys.c...

3.6CVSS4.3AI score0.00433EPSS
Exploits1
Rows per page
Query Builder