Lucene search
+L

6522 matches found

exploitpack
exploitpack
added 2009/10/14 12:0 a.m.57 views

Achievo 1.3.4 - Cross-Site Scripting

Achievo 1.3.4 - Cross-Site Scripting Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ Multiple XSS in Achievo 1. Advisory Information Title: Multiple XSS in Achievo Advisory ID: BONSAI-2009-0101 Advisory URL:...

4.3CVSS6.1AI score0.02263EPSS
Exploits7
Exploit DB
Exploit DB
added 2009/10/14 12:0 a.m.43 views

Achievo 1.3.4 - SQL Injection

Bonsai Information Security - Advisory http://www.bonsai-sec.com/research/ SQL Injection in Achievo 1. Advisory Information Title: SQL Injection in Achievo Advisory ID: BONSAI-2009-0102 Advisory URL: http://www.bonsai-sec.com/research/vulnerabilities/achievo-sql-injection-0102.txt Date published:...

7.5CVSS6.5AI score0.01256EPSS
Exploits7
Prion
Prion
added 2009/06/16 11:30 p.m.10 views

Code injection

Simple Linux Utility for Resource Management SLURM 1.2 and 1.3 before 1.3.14 does not properly set supplementary groups before invoking 1 sbcast from the slurmd daemon or 2 strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges...

7.2CVSS6.9AI score0.00376EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCve
added 2009/06/16 11:30 p.m.18 views

CVE-2009-2084

Simple Linux Utility for Resource Management SLURM 1.2 and 1.3 before 1.3.14 does not properly set supplementary groups before invoking 1 sbcast from the slurmd daemon or 2 strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges...

7.2CVSS5.9AI score0.00376EPSS
Exploits0References1
Cvelist
Cvelist
added 2009/06/16 11:0 p.m.28 views

CVE-2009-2084

Simple Linux Utility for Resource Management SLURM 1.2 and 1.3 before 1.3.14 does not properly set supplementary groups before invoking 1 sbcast from the slurmd daemon or 2 strigger from the slurmctld daemon, which might allow local SLURM users to modify files and gain privileges...

6.3AI score0.00376EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2009/06/16 11:0 p.m.42 views

CVE-2009-2084

Removed by vendor...

7.2CVSS6.7AI score0.00376EPSS
Exploits0
CVE
CVE
added 2009/06/16 11:0 p.m.78 views

CVE-2009-2084

CVE-2009-2084 affects SLURM 1.2 and 1.3 prior to 1.3.14. The vulnerability stems from not properly setting supplementary groups before invoking sbcast (slurmd) or strigger (slurmctld), allowing local SLURM users to modify files and gain privileges. Connected sources corroborate a privilege escala...

7.2CVSS6.5AI score0.00376EPSS
Exploits0References8Affected Software1
securityvulns
securityvulns
added 2009/05/29 12:0 a.m.38 views

[InterN0T] Achievo 1.3.4 - XSS Vulnerability

Achievo - Cross Site Scripting Vulnerability Version Affected: 1.3.4 August 12, 2008 newest Info: Achievo is a flexible web-based resource management tool for business environments. Achievo's resource management capabilities will enable organisations to support their business processes in a simpl...

6.4AI score
Exploits0
securityvulns
securityvulns
added 2009/04/23 12:0 a.m.60 views

SAP Cfolders Multiple Stored XSS Vulnerabilies

Digital Security Research Group DSecRG Advisory DSECRG-09-014 Original advisory: http://dsecrg.com/pages/vul/show.php?id=114 Application: SAP Cfolders included in: SAP SRM, SAP ECC, SAP Knowledge Management and SAP NetWeaver cRooms Vendor URL: http://SAP.com Bugs: Multiple Stored XSS Risk: Hight...

6.2AI score
Exploits0
Snyk
Snyk
added 2008/08/14 11:41 p.m.5 views

Resource Management Errors

Overview Affected versions of this package are vulnerable to Resource Management Errors. The regular expression engine regex.c in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service infinite loop an...

5.3CVSS6.9AI score0.15678EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2008/06/26 12:0 a.m.4 views

PT-2008-1163 · Apple +2 · Iphone +4

Name of the Vulnerable Software and Affected Versions: Apple iPod touch versions 1.1 through 2.0.2 Apple iPhone versions 1.0 through 2.0.2 Qt affected versions not specified Description: The issue is related to a use-after-free vulnerability in WebKit and an error in resource management in the Qt...

9.3CVSS7.2AI score0.05951EPSS
Exploits1References25
Prion
Prion
added 2008/02/12 2:0 a.m.17 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in HP Storage Essentials Storage Resource Management SRM before 6.0.0 allow remote attackers to obtain unspecified access to a managed device via unknown attack vectors...

10CVSS7.3AI score0.03739EPSS
Exploits0References5Affected Software2
Fedora
Fedora
added 2008/01/11 10:18 p.m.42 views

[SECURITY] Fedora 7 Update: tog-pegasus-2.6.0-3.fc7

OpenPegasus WBEM Services for Linux enables management solutions that deliv er increased control of enterprise resources. WBEM is a platform and resource independent DMTF standard that defines a common information model and communication protocol for monitoring and controlling resources from...

10CVSS3.4AI score0.07809EPSS
Exploits1
myhack58
myhack58
added 2007/10/22 12:0 a.m.16 views

Nine smart built Station V5. 2 small holes two-vulnerability and early warning-the black bar safety net

One is the injection vulnerability, newshow. asp id parameter is the presence of injection vulnerabilities, you can guess the member table, get the user account password. The second is upload vulnerability in resource management where you can capture and upload the asp file...

1.1AI score
Exploits0
Snyk
Snyk
added 2006/10/27 6:7 p.m.4 views

Resource Management Errors

Overview Affected versions of this package are vulnerable to Resource Management Errors. The cgi.rb CGI library for Ruby 1.8 allows remote attackers to cause a denial of service infinite loop and CPU consumption via an HTTP request with a multipart MIME body that contains an invalid boundary...

5.3CVSS7.2AI score0.04071EPSS
Exploits1References2
Snyk
Snyk
added 2005/12/31 5:0 a.m.1 views

Resource Management Errors

Overview Affected versions of this package are vulnerable to Resource Management Errors. Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service crash via a crafted FlateDecode stream that triggers a nu...

5.3CVSS6.7AI score0.0341EPSS
Exploits1References2
CVE
CVE
added 2005/02/10 5:0 a.m.63 views

CVE-2005-0311

Ingate Firewall 4.1.3 and earlier does not terminate the PPTP session for an active user when the administrator disables that user from a resource, allowing remote authenticated users to retain access. Affected product: Ingate Firewall (versions up to 4.1.3 or earlier). Root cause: PPTP session n...

4.6CVSS6.7AI score0.00746EPSS
Exploits0References6Affected Software1
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.9 views

Virtual Server 2005 R2 SP1

...

1.5AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.10 views

Windows Azure Pack: Admin API

Windows Azure Pack: Admin API...

2.8AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.6 views

Windows Azure Pack: Admin Site

Windows Azure Pack: Admin Site...

2.9AI score
Exploits0
Rows per page
Query Builder