Lucene search
K

571 matches found

NVD
NVD
added 2017/03/07 7:59 p.m.12 views

CVE-2017-6511

andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php...

6.1CVSS6AI score0.00732EPSS
Exploits1References2
OSV
OSV
added 2017/03/07 7:59 p.m.10 views

CVE-2017-6511

andrzuk/FineCMS before 2017-03-06 is vulnerable to a reflected XSS in index.php because of missing validation of the action parameter in application/classes/application.php...

6.1CVSS5.9AI score
Exploits0References2
CNVD
CNVD
added 2017/01/03 12:0 a.m.4 views

Unauthorized Access Vulnerability in Deephaven Jet Mixcall Customer Service System

Ltd. is a company that focuses on the research, development, manufacturing and sales of call centers and converged communication products. mixcall is one of the company's customer service systems. An unauthorized access vulnerability exists in the SZHJ Mixcall customer service system. Due to a la...

6.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2010/11/10 7:0 p.m.5 views

OpenJDK HttpURLConnection allows arbitrary request headers (6961084,6980004)

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the...

5.1CVSS5.8AI score0.03102EPSS
Exploits0References4
Prion
Prion
added 2010/10/19 10:0 p.m.30 views

Design/Logic Flaw

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the...

5.1CVSS8.3AI score0.03102EPSS
Exploits0References34Affected Software3
UbuntuCve
UbuntuCve
added 2010/10/19 12:0 a.m.31 views

CVE-2010-3573

Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU...

5.1CVSS5.9AI score0.10557EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.5 views

kernel: ext4: ext4_fill_super() missing validation issue

The ext4fillsuper function in fs/ext4/super.c in the Linux kernel 2.6.27 before 2.6.27.19 and 2.6.28 before 2.6.28.7 does not validate the superblock configuration, which allows local users to cause a denial of service NULL pointer dereference and OOPS by attempting to mount a crafted ext4...

4.9CVSS6.1AI score0.00513EPSS
Exploits1References4
NVD
NVD
added 2008/12/09 12:30 a.m.17 views

CVE-2008-5396

Array index error in the 1 torisa.c and 2 dahdi/tor2.c drivers in Zaptel aka DAHDI 1.4.11 and earlier allows local users in the dialout group to overwrite an integer value in kernel memory by writing to /dev/zap/ctl, related to missing validation of the sync field associated with the ZTSPANCONFIG...

7.2CVSS5.9AI score0.00348EPSS
Exploits1References5
securityvulns
securityvulns
added 2008/04/15 12:0 a.m.132 views

Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability

Advisory 1 "Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability" $ Author : Morgan ARMAND $ Contact : armandm at epitech dot net $ Vendor URL : http://www.dotclear.net $ Vendor Contacted : 07/04/2008 $ Vendor Status : No response $ Affected Software : Dotclear = 1.2.7.1 $ Severity :...

1AI score
Exploits0
Cvelist
Cvelist
added 2007/10/01 8:0 p.m.27 views

CVE-2007-5082

Multiple stack-based buffer overflows in Computer Associates CA BrightStor Hierarchical Storage Manager HSM before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter...

8AI score0.6346EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2006/05/13 12:0 a.m.16 views

FreeBSD : Macromedia flash player -- swf file handling arbitrary code (aed343b4-5480-11da-b579-001125afbed7)

A Secunia Advisory reports : A vulnerability has been reported in Macromedia Flash Player, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to missing validation of the frame type identifier that is read from a SWF file. This value is used ...

5.9AI score
Exploits0References3
Rows per page
Query Builder