Lucene search
K

7 matches found

OSV
OSV
added 2020/02/08 7:15 p.m.2 views

UBUNTU-CVE-2015-5741

The net/http library in net/http/transfer.go in Go before 1.4.3 does not properly parse HTTP headers, which allows remote attackers to conduct HTTP request smuggling attacks via a request that contains Content-Length and Transfer-Encoding header fields...

9.8CVSS6.8AI score0.02704EPSS
Exploits0References3
OSV
OSV
added 2018/10/30 6:29 p.m.4 views

UBUNTU-CVE-2015-5159

python-kdcproxy before 0.3.2 allows remote attackers to cause a denial of service via a large POST request...

7.5CVSS7.2AI score0.02174EPSS
Exploits0References4
OSV
OSV
added 2018/05/29 8:29 p.m.9 views

UBUNTU-CVE-2015-9244

Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with mysql.escape which could lead to SQL Injection...

9.8CVSS5.9AI score0.02443EPSS
Exploits1References4
OSV
OSV
added 2015/12/31 12:0 a.m.2 views

UBUNTU-CVE-2015-8902

The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service infinite loop via a crafted PDB file...

6.5CVSS7AI score0.01954EPSS
Exploits1References5
OSV
OSV
added 2015/08/24 2:59 p.m.3 views

UBUNTU-CVE-2015-6660

The Form API in Drupal 6.x before 6.37 and 7.x before 7.39 does not properly validate the form token, which allows remote attackers to conduct CSRF attacks that upload files in a different user's account via vectors related to "file upload value callbacks."...

6.8CVSS5.8AI score0.01335EPSS
Exploits0References3
OSV
OSV
added 2015/07/05 12:0 a.m.2 views

UBUNTU-CVE-2015-2724

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code...

10CVSS6.5AI score0.0587EPSS
Exploits0References11
OSV
OSV
added 2015/05/13 11:0 a.m.4 views

UBUNTU-CVE-2015-3092

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 do not properly restrict discovery of memory addresses,...

5CVSS5.8AI score0.04387EPSS
Exploits0References3
Rows per page
Query Builder