Lucene search
K

45 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-3640

Malware in sbrugna...

8.8CVSS8.8AI score0.04884EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-11805

Malware in sbrugna...

8.8CVSS8.8AI score0.04822EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-11807

Malware in sbrugna...

8.8CVSS8.8AI score0.02607EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.5 views

SUSE CVE-2007-0448

The fopen function in PHP 5.2.0 does not properly handle invalid URI handlers, which allows context-dependent attackers to bypass safemode restrictions and read arbitrary files via a file path specified with an invalid URI, as demonstrated via the srpath URI...

10CVSS7AI score0.07112EPSS
Exploits1References3
NVD
NVD
added 2020/07/29 4:15 p.m.24 views

CVE-2020-13699

TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: --play URL. An attacker could force a victim to send an NTLM authentication request and either...

8.8CVSS8.7AI score0.25895EPSS
Exploits2References2
OSV
OSV
added 2020/07/29 4:15 p.m.4 views

CVE-2020-13699

TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: --play URL. An attacker could force a victim to send an NTLM authentication request and either...

8.8CVSS7.6AI score0.25895EPSS
Exploits2References2
Prion
Prion
added 2020/07/29 4:15 p.m.33 views

Cross site request forgery (csrf)

TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: --play URL. An attacker could force a victim to send an NTLM authentication request and either...

6.8CVSS8.8AI score0.25895EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2019/06/14 2:29 p.m.13 views

Design/Logic Flaw

An argument injection vulnerability in Atlassian Sourcetree for Windows's URI handlers, in all versions prior to 3.1.3, allows remote attackers to gain remote code execution through the use of a crafted URI...

9.3CVSS9AI score0.04936EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/06/14 2:29 p.m.12 views

CVE-2019-11582

An argument injection vulnerability in Atlassian Sourcetree for Windows's URI handlers, in all versions prior to 3.1.3, allows remote attackers to gain remote code execution through the use of a crafted URI...

9.3CVSS9AI score0.04936EPSS
Exploits0References1
CVE
CVE
added 2019/06/14 1:54 p.m.654 views

CVE-2019-11582

Atlassian SourceTree for Windows is affected by CVE-2019-11582. A remote code execution vulnerability exists in the URI handling component for Windows versions starting with 0.5a up to, but not including, 3.1.3. An unauthenticated attacker can exploit this by sending a crafted URI; user interacti...

9.3CVSS9AI score0.04936EPSS
Exploits0References1Affected Software1
Atlassian
Atlassian
added 2019/05/28 6:58 p.m.58 views

Remote code execution vulnerability for Sourcetree for Windows - CVE-2019-11582

There was an argument injection vulnerability in SourceTree for Windows in URI handlers. A remote, unauthenticated attacker was required to convince a user to interact with a crafted URL in order to exploit the vulnerability. With user interaction, an attacker could gained remote code execution o...

9.3CVSS4.6AI score0.04936EPSS
Exploits0Affected Software1
CVE
CVE
added 2018/09/20 8:0 p.m.49 views

CVE-2018-15832

CVE-2018-15832 affects Ubisoft Uplay Desktop Client (upc.exe) version 63.0.5699.0, where the vulnerability arises from improper validation of a user-supplied string used in a system call during URI handling. This allows remote code execution under the current process context. Exploitation require...

8.8CVSS8.7AI score0.03671EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2018/09/07 12:0 a.m.51 views

Foxmail <= 7.2.9.115 RCE Vulnerability

Tencent Foxmail is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

8.8CVSS9.1AI score0.04884EPSS
Exploits0References1
NVD
NVD
added 2018/08/30 12:29 p.m.18 views

CVE-2018-11616

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.04884EPSS
Exploits0References1
Prion
Prion
added 2018/08/30 12:29 p.m.14 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS8.8AI score0.04884EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/08/30 12:0 p.m.23 views

CVE-2018-11616

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8AI score0.04884EPSS
Exploits0References1
NVD
NVD
added 2018/04/19 2:29 a.m.18 views

CVE-2018-1167

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

8.8CVSS8.8AI score0.04822EPSS
Exploits0References1
Prion
Prion
added 2018/04/19 2:29 a.m.11 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS8.8AI score0.04822EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2018/03/02 1:29 a.m.17 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Amazon Music Player 6.1.5.1213. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.8CVSS8.8AI score0.02607EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/03/02 1:29 a.m.16 views

CVE-2018-1169

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Amazon Music Player 6.1.5.1213. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

8.8CVSS8.8AI score0.02607EPSS
Exploits0References2
Rows per page
Query Builder