Lucene search
K

330 matches found

Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.5 views

PT-2026-3657

HackerOne community member Faraz Ahmed PakCyberbot has reported a format string injection in the Revive Adserver settings. When specific character combinations are used in a setting, the admin user console could be disabled due to a fatal PHP error...

2.7CVSS5.5AI score0.0021EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

Revive Adserver security vulnerability

Revive Adserver is a set of open-source advertising management systems developed by the Revive Adserver team. This system offers functions such as advertising placement, ad slot management, and data statistics. There is a security vulnerability in Revive Adserver; this vulnerability stems from...

2.7CVSS5.8AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 9 : ghostscript-9.54.0-17.el9_4 (AXSA:2024-8750:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8750:04 advisory. ghostscript: format string injection leads to shell command execution SAFER bypass CVE-2024-29510 ghostscript: path traversal and command execution...

6.3CVSS7.3AI score0.27992EPSS
Exploits6References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:32 a.m.7 views

CVE-2023-25492

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API...

8.8CVSS6.9AI score0.00506EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.10 views

CVE-2022-35885

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacke...

8.8CVSS7AI score0.01241EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.11 views

CVE-2022-35876

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

9.8CVSS7.2AI score0.00861EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.10 views

CVE-2022-35887

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacke...

8.8CVSS7AI score0.01252EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.18 views

CVE-2022-35874

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

9.8CVSS7.2AI score0.00869EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.11 views

CVE-2022-35875

Four format string injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. Specially-crafted configuration values can lead to memory corruption, information disclosure and denial of service. An attacker can modify a...

9.8CVSS7.2AI score0.00861EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:39 a.m.12 views

CVE-2022-35884

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacke...

8.8CVSS7AI score0.01252EPSS
Exploits1References1
Hacker One
Hacker One
added 2025/11/30 8:51 a.m.9 views

Revive Adserver: INI Format string injection in Revive Adserver 6.0.4 settings

Vulnerability description not provided...

2.7CVSS6.8AI score0.0021EPSS
Exploits0
NVD
NVD
added 2025/10/17 6:15 p.m.17 views

CVE-2025-62419

DataEase is a data visualization and analytics platform. In DataEase versions through 2.10.13, a JDBC URL injection vulnerability exists in the DB2 and MongoDB data source configuration handlers. In the DB2 data source handler, when the extraParams field is empty, the HOSTNAME, PORT, and DATABASE...

8.2CVSS0.00393EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-1767

Malware in sbrugna...

8.8CVSS8.8AI score0.01054EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2016-6628

Malware in sbrugna...

9CVSS8.8AI score0.01757EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0543

Malware in sbrugna...

9.8CVSS9.2AI score0.02611EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-0793

Malware in sbrugna...

4CVSS6.4AI score0.02171EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-3378

Malware in sbrugna...

4.3CVSS6.4AI score0.01368EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-0712

Malware in sbrugna...

5CVSS6.2AI score0.01381EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-3350

Malware in sbrugna...

9.3CVSS6.4AI score0.07464EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5616

Malware in sbrugna...

3.3CVSS4.2AI score0.00408EPSS
Exploits0References2
Rows per page
Query Builder