Lucene search
K

216 matches found

OSV
OSV
added 2016/03/06 2:59 a.m.3 views

UBUNTU-CVE-2016-1638

extensions/renderer/resources/platformapp.js in the Extensions subsystem in Google Chrome before 49.0.2623.75 does not properly restrict use of Web APIs, which allows remote attackers to bypass intended access restrictions via a crafted platform app...

6.3CVSS7.3AI score0.01054EPSS
Exploits0References3
CNVD
CNVD
added 2015/09/06 12:0 a.m.3 views

Red Hat Enterprise Virtualization Hypervisor Local Unauthorized Access Vulnerability

Red Hat Enterprise Virtualization Hypervisor is a virtualization solution hypervisor. The Red Hat Enterprise Virtualization Hypervisor WEB management interface fails to properly handle session timeouts when a VM is selected in the VM Grid view, and local users have access to other WEB interfaces...

3.7CVSS6.6AI score0.00325EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2014/10/16 4:51 a.m.8 views

GIGAPOD vulnerable to denial-of-service (DoS)

Overview GIGAPOD provided by TripodWorks CO.,LTD. contains a denial-of-service DoS vulnerability. GIGAPOD file servers Appliance model and Software model from TripodWorks CO.,LTD. provide two web interfaces. First, a user web interface via ports 80/443, and a second, an administrative web interfa...

7.8CVSS8.6AI score0.01652EPSS
Exploits0References5
securityvulns
securityvulns
added 2011/07/11 12:0 a.m.84 views

Aruba Advisory AID-070611 Cross Site Scripting vulnerability in ArubaOS and AirWave Administration Web Interfaces

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ADVISORY NUMBER AID-070611 Advisory 1: TITLE Cross Site Scripting vulnerability in ArubaOS and AirWave Administration Web Interfaces. SUMMARY A persistent Cross Site Scripting vulnerability XSS was discovered where an attacker could plant an AP with...

0.1AI score
Exploits0
OpenVAS
OpenVAS
added 2010/09/27 12:0 a.m.17 views

Fedora Update for roundup FEDORA-2010-12261

Check for the Version of roundup OpenVAS Vulnerability Test Fedora Update for roundup FEDORA-2010-12261 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.3CVSS6.4AI score0.0253EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2010/01/22 12:0 a.m.38 views

cPanel HTTP Response Splitting

Recognize-Security - cPanel HTTP Response Splitting Vulnerability ----------------------------------------------------------------- Security Advisory by Trancer January 21 2010 http://www.rec-sec.com "Hacking, however, is an art, not a science." Vendor ------ cPanel Inc. - http://www.cpanel.net...

7.4AI score
Exploits0
NVD
NVD
added 2007/10/18 12:17 a.m.18 views

CVE-2007-5539

Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise ICME, Unified ICM Hosted ICMH, Unified Contact Center Enterprise UCCE, Unified Contact Center Hosted UCCH, and System Unified Contact Center Enterprise SUCCE 7.15 allows remote authenticated users to gain...

9CVSS6.4AI score0.02098EPSS
Exploits0References7
Prion
Prion
added 2007/10/18 12:17 a.m.15 views

Code injection

Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise ICME, Unified ICM Hosted ICMH, Unified Contact Center Enterprise UCCE, Unified Contact Center Hosted UCCH, and System Unified Contact Center Enterprise SUCCE 7.15 allows remote authenticated users to gain...

9CVSS6.9AI score0.02098EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2007/10/18 12:0 a.m.53 views

CVE-2007-5539

Cisco UC/ICM suite components (ICME, ICMH, UCCE, UCCH, SUCCE) version 7.1(5) contain an unspecified vulnerability that allows remote authenticated users to gain privileges, read reports, or alter SUCCE configuration via certain web interfaces. The exact root cause, affected subcomponents, and exp...

9CVSS6.4AI score0.02098EPSS
Exploits0References7Affected Software4
exploitpack
exploitpack
added 2007/08/17 12:0 a.m.20 views

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability,...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/17 12:0 a.m.36 views

Cisco IOS 12.3 - Show IP BGP Regexp Remote Denial of Service

source: https://www.securityfocus.com/bid/25352/info Cisco IOS is prone to a remote denial-of-service vulnerability because the software fails to properly handle certain CLI commands. To issue commands that trigger this vulnerability, attackers must be able to successfully authenticate to...

7.4AI score
Exploits0
Positive Technologies
Positive Technologies
added 2007/02/21 12:0 a.m.7 views

PT-2007-2464 · Red Hat · Jboss

Name of the Vulnerable Software and Affected Versions: JBoss affected versions not specified Description: The default configuration of JBoss does not restrict access to the console and web management interfaces, allowing remote attackers to bypass authentication and gain administrative access...

7.5CVSS7.6AI score0.81832EPSS
Exploits5References17
securityvulns
securityvulns
added 2006/09/13 12:0 a.m.73 views

Computer Terrorism (UK) :: Incident Response Centre - Adobe/Macromedia Flash Player Vulnerability

Computer Terrorism UK :: Incident Response Centre www.computerterrorism.com Security Advisory: CT12-09-2006 ============================================================ Adobe/Macromedia Flash Player - Remote Code Execution ============================================================ Advisory Date...

5.1CVSS0.1AI score0.16606EPSS
Exploits1
Cisco
Cisco
added 2006/06/19 11:41 p.m.19 views

Cisco CallManager Administration and User Options Web Interfaces Cross-Site Scripting Vulnerability

Cisco CallManager versions prior to 4.31, 4.23, 4.13SR4 and 3.35SR3 contain a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary script in the user's browser session. The vulnerability exists due to improper input sanitization in the CallManager Administration...

4.3CVSS7.2AI score0.13488EPSS
Exploits1References1
NVD
NVD
added 2004/08/06 4:0 a.m.13 views

CVE-2004-0672

Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...

6.8CVSS6.1AI score0.02014EPSS
Exploits1References3
Cvelist
Cvelist
added 2004/07/13 4:0 a.m.12 views

CVE-2004-0672

Multiple cross-site scripting XSS vulnerabilities in the primary and management web interfaces in Netegrity IdentityMinder Web Edition 5.6 allows remote attackers to execute script as other users via 1 script that starts with %00 in the numOfExpressions parameter or 2 the mobjtype parameter...

6.1AI score0.02014EPSS
Exploits1References3
Rows per page
Query Builder