Lucene search
K

22 matches found

NVD
NVD
added 2026/05/10 9:16 p.m.19 views

CVE-2026-45180

Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' session ids may be leaked. This may allow an attacker to use session ids a...

7.5CVSS0.00244EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-24716

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00681EPSS
Exploits0References1
CVE
CVE
added 2022/08/16 11:25 p.m.58 views

CVE-2022-1400

CVE-2022-1400 affects Device42 CMDB versions prior to 18.01.00 and is due to a hard-coded cryptographic key in Exago WebReportsApi.dll (WebReports API). This design flaw can allow an attacker to leak session IDs and elevate privileges within the appliance. The vulnerability is documented in NVD w...

9.8CVSS8.3AI score0.00681EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/09/01 1:29 p.m.7 views

UBUNTU-CVE-2017-12870

SimpleSAMLphp 1.14.12 and earlier make it easier for man-in-the-middle attackers to obtain sensitive information by leveraging use of the aesEncrypt and aesDecrypt methods in the SimpleSAML/Utils/Crypto class to protect session identifiers in replies to non-HTTPS service providers...

5.9CVSS6.2AI score0.00875EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/01/23 9:23 a.m.19 views

Open-Xchange: Incomplete HTML sanitization + Session id leaking + private information disclosure

Hello, I have found a chain of events that lead to session id leaking, witch can be then used to gather private data about other added inboxes to account / login id and some other infos. Unfortunatelly for me I wasn't able to make a hostile account takeover because of you session id + cookie...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.43 views

Ubuntu Update for php5 vulnerabilities USN-549-1

Ubuntu Update for Linux kernel vulnerabilities USN-549-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5491.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for php5 vulnerabilities USN-549-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

7.5CVSS0.7AI score0.18162EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/03/06 12:0 a.m.41 views

RedHat Update for php RHSA-2008:0546-01

Check for the Version of php OpenVAS Vulnerability Test RedHat Update for php RHSA-2008:0546-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

10CVSS9.1AI score0.04289EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.31 views

CentOS Update for php CESA-2008:0546-01 centos2 i386

Check for the Version of php OpenVAS Vulnerability Test CentOS Update for php CESA-2008:0546-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

10CVSS9.1AI score0.04289EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.48 views

CentOS Update for php CESA-2008:0544 centos3 x86_64

Check for the Version of php OpenVAS Vulnerability Test CentOS Update for php CESA-2008:0544 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

10CVSS9AI score0.04696EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.45 views

CentOS Update for php CESA-2008:0544 centos3 x86_64

Check for the Version of php OpenVAS Vulnerability Test CentOS Update for php CESA-2008:0544 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

10CVSS9AI score0.04696EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2008/07/22 12:30 p.m.8 views

php session ID leakage

The outputaddrewritevar function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a loca...

4.3CVSS5.9AI score0.03393EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/07/22 12:30 p.m.45 views

Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Application Stack v1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...

10CVSS7.4AI score0.04696EPSS
Exploits3References7
Cent OS
Cent OS
added 2008/07/16 4:15 p.m.74 views

php security update

CentOS Errata and Security Advisory CESA-2008:0545 Updated php packages that fix several security issues and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripti...

10CVSS7.3AI score0.04696EPSS
Exploits3References8
Cent OS
Cent OS
added 2008/07/16 4:10 p.m.73 views

php security update

CentOS Errata and Security Advisory CESA-2008:0544 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

10CVSS7.4AI score0.04696EPSS
Exploits3References9
RedHat Linux
RedHat Linux
added 2008/07/16 9:57 a.m.6 views

php session ID leakage

The outputaddrewritevar function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a loca...

4.3CVSS5.9AI score0.03393EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/07/16 9:57 a.m.59 views

Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...

10CVSS7.5AI score0.04289EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2008/07/16 9:55 a.m.10 views

php session ID leakage

The outputaddrewritevar function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a loca...

4.3CVSS5.9AI score0.03393EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/07/16 9:36 a.m.59 views

Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

10CVSS7.4AI score0.04696EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2008/07/16 12:0 a.m.259 views

RHEL 4 : php (RHSA-2008:0545)

Updated php packages that fix several security issues and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

10CVSS7.8AI score0.04696EPSS
Exploits3References13
RedHat Linux
RedHat Linux
added 2008/07/02 1:15 p.m.5 views

php session ID leakage

The outputaddrewritevar function in PHP before 5.2.5 rewrites local forms in which the ACTION attribute references a non-local URL, which allows remote attackers to obtain potentially sensitive information by reading the requests for this URL, as demonstrated by a rewritten form containing a loca...

4.3CVSS5.9AI score0.03393EPSS
Exploits0References4
Rows per page
Query Builder