CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1065 matches found

Japan Vulnerability Notes•added 2007/12/13 12:0 a.m.•13 views

JVN#52846259 JP1/Cm2/Network Node Manager vulnerable to cross-site scripting

Hitachi JP1/Cm2/Network Node Manager NNM is software that helps a network administrator manage network configurations, faults, and other elements. Hitachi NNM is vulnerable to cross-site scripting. Impact An arbitrary script can be executed on the user's web browser. Solution Update the Software...

6.6AI score

Exploits0

Japan Vulnerability Notes•added 2007/12/11 12:0 a.m.•11 views

JVN#77414947 Cybozu Office denial of service (DoS) vulnerability

Cybozu Office, web-based groupware, is vulnerable to a denial of service DoS attack because it fails to properly handle specially crafted HTTP requests. Impact A remote attacker can cause a denial of service DoS against the server. Solution Update the Software For more information, refer to the...

7.1AI score

Exploits0

Japan Vulnerability Notes•added 2007/10/12 12:0 a.m.•12 views

JVN#63304072 MouseoverDictionary vulnerable to arbitrary script execution

MouseoverDictionary, an add-on mouseover English-Japanese dictionary for Mozilla Firefox, contains a vulnerability that allows an attacker to execute an arbitrary script on the user's web browser as it does not handle the sidebar HTML page properly. Impact An attacker could execute an arbitrary...

7AI score

Exploits0

Japan Vulnerability Notes•added 2007/07/31 12:0 a.m.•19 views

JVN#43615794 Yayoi Kaikei improper handling of credential information

Yayoi Kaikei Quick Navigator makes the user log into the vendor's server, and sends the user credentials unencrypted. Impact By monitoring the communication between Quick Navigator and the vendor's server, an attacker can obtain the customer number and the phone number to impersonate the user on...

7.1AI score

Exploits0

OSV•added 2007/02/05 12:0 a.m.•2 views

DSA-1257-1 samba

Bulletin has no description...

7.5CVSS9.2AI score0.06412EPSS

Exploits2

Patchstack•added 2006/05/30 12:0 a.m.•17 views

WordPress <= 2.0.2 - Shell Injection

Because of this vulnerability in vars.php, the attackers can spoof their IP address via a PCREMOTEADDR HTTP header and include a remote file. Solution Update the WordPress to the latest available version at least 2.0.3...

5CVSS3.1AI score0.0287EPSS

Exploits1References1Affected Software1

Hewlett-Packard•added 2006/03/31 12:0 a.m.•22 views

HPSBPI2109 SSRT061141 rev.2 - HP Color LaserJet 2500 and 4600 Toolbox Running on Microsoft Windows Remote Unauthorized Disclosure of Information

Potential Security Impact Remote unauthorized disclosure of information VULNERABILITY SUMMARY A potential security vulnerability has been identified in the HP Color LaserJet 2500 and 4600 Toolbox, which may allow an unauthorized remote attacker to read arbitrary files. RESOLUTION HP has provided...

4.3AI score

Exploits0

Packet Storm•added 2005/07/12 12:0 a.m.•39 views

hostingCreate.txt

-= KeHieuHoc HCE GROUP =- Information ------------------------- Software Package : Hosting Controller Vendor Homepage : http://www.hostingcontroller.com Platforms : Windows based servers Vulnerability : Multiple Unauthenticated information disclose Risk : high Vulnerable Versions: All version...

7.4AI score

Exploits0

securityvulns•added 2005/02/10 12:0 a.m.•26 views

[SA14204] Emdros MQL Parser Memory Leak Vulnerabilities

TITLE: Emdros MQL Parser Memory Leak Vulnerabilities SECUNIA ADVISORY ID: SA14204 VERIFY ADVISORY: http://secunia.com/advisories/14204/ CRITICAL: Less critical IMPACT: DoS WHERE: From local network SOFTWARE: Emdros 1.x http://secunia.com/product/3877/ DESCRIPTION: Some vulnerabilities have been...

1.4AI score

Exploits0

securityvulns•added 2004/11/19 12:0 a.m.•27 views

[SA13241] phpMyAdmin Cross-Site Scripting Vulnerabilities

TITLE: phpMyAdmin Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA13241 VERIFY ADVISORY: http://secunia.com/advisories/13241/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: phpMyAdmin 2.x http://secunia.com/product/1720/ DESCRIPTION: Cedric Cochin ha...

1AI score

Exploits0

securityvulns•added 2004/10/04 12:0 a.m.•21 views

[SA12709] yappa-ng Unspecified "Show Random Image" Vulnerability

TITLE: yappa-ng Unspecified "Show Random Image" Vulnerability SECUNIA ADVISORY ID: SA12709 VERIFY ADVISORY: http://secunia.com/advisories/12709/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: yappa-ng 2.x http://secunia.com/product/3989/ DESCRIPTION: Georg Ragaz has...

0.8AI score

Exploits0

OSV•added 2004/01/05 12:0 a.m.•19 views

DSA-412 nd - buffer overflows

Bulletin has no description...

7.5CVSS6.2AI score0.02787EPSS

Exploits0

OSV•added 2003/08/08 12:0 a.m.•19 views

DSA-370 pam-pgsql - format string

Bulletin has no description...

7.5CVSS6.2AI score0.03064EPSS

Exploits0