Lucene search
K

200 matches found

Vulnrichment
Vulnrichment
added 2014/05/14 7:0 p.m.2 views

CVE-2014-3146

Incomplete blacklist vulnerability in the lxml.html.clean module in lxml before 3.3.5 allows remote attackers to conduct cross-site scripting XSS attacks via control characters in the link scheme to the cleanhtml function...

5.7AI score0.06333EPSS
Exploits1References14
OSV
OSV
added 2014/05/07 12:0 a.m.2 views

UBUNTU-CVE-2014-0191

The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation i...

4.3CVSS6.8AI score0.081EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2013/07/15 1:6 p.m.52 views

USN-1904-1: libxml2 vulnerabilities

It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly obtain access to arbitrary files or cause resource consumption. This issue only affected Ubuntu 10.04 LTS,...

6.8CVSS7.2AI score0.04733EPSS
Exploits1
securityvulns
securityvulns
added 2013/05/09 12:0 a.m.63 views

[USN-1817-1] libxml2 vulnerability

========================================================================== Ubuntu Security Notice USN-1817-1 May 07, 2013 libxml2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.5CVSS1.5AI score0.03819EPSS
Exploits1
Ubuntu
Ubuntu
added 2013/05/07 12:26 p.m.54 views

USN-1817-1: libxml2 vulnerability

It was discovered that libxml2 incorrectly handled memory management when parsing certain XML files. An attacker could use this flaw to cause libxml2 to crash, resulting in a denial of service, or to possibly execute arbitrary code...

7.5CVSS8.2AI score0.03819EPSS
Exploits1
NVD
NVD
added 2013/04/03 12:55 a.m.23 views

CVE-2013-1664

The XML libraries for Python 3.4, 3.3, 3.2, 3.1, 2.7, and 2.6, as used in OpenStack Keystone Essex, Folsom, and Grizzly; Compute Nova Essex and Folsom; Cinder Folsom; Django; and possibly other products allow remote attackers to cause a denial of service resource consumption and crash via an XML...

5CVSS9.2AI score0.04863EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2013/01/31 7:14 p.m.9 views

libxml2: double-free in XPath processing code

Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...

7.5CVSS7.1AI score0.07533EPSS
Exploits1References4
securityvulns
securityvulns
added 2013/01/10 12:0 a.m.84 views

Microsoft Windows multiple security vulnerabilities

Print spooler service code execution, XML library integer overflow and memory corruption, multiple .Net vulnerabilities, Win32K privilege escalation SSL/TLS library protection bypass, Open Data Protocol DoS...

10CVSS3.9AI score0.32096EPSS
Exploits19Affected Software1
Nmap
Nmap
added 2012/01/02 11:21 a.m.606 views

http-proxy-brute NSE Script

Performs brute force password guessing against HTTP proxy servers. Script Arguments http-proxy-brute.url sets an alternative URL to use when brute forcing default: http-proxy-brute.method changes the HTTP method to use when performing brute force guessing default: HEAD creds.service, creds.global...

10CVSS0.3AI score0.99448EPSS
Exploits33
OpenVAS
OpenVAS
added 2009/06/03 12:0 a.m.10 views

Solaris Update for XML library source 114876-01

Check for the Version of XML library source OpenVAS Vulnerability Test Solaris Update for XML library source 114876-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/03 12:0 a.m.6 views

Solaris Update for XML library source 114875-01

Check for the Version of XML library source OpenVAS Vulnerability Test Solaris Update for XML library source 114875-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

0.1AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/03 12:0 a.m.9 views

Solaris Update for XML library source 114876-01

Check for the Version of XML library source OpenVAS Vulnerability Test Solaris Update for XML library source 114876-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/03 12:0 a.m.19 views

Solaris Update for XML library source 114875-01

Check for the Version of XML library source OpenVAS Vulnerability Test Solaris Update for XML library source 114875-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2008/11/24 12:0 a.m.27 views

Debian Security Advisory DSA 1666-1 (libxml2)

The remote host is missing an update to libxml2 announced via advisory DSA 1666-1. OpenVAS Vulnerability Test $Id: deb16661.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1666-1 libxml2 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

10CVSS0.9AI score0.04051EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/11/18 12:0 a.m.37 views

Debian DSA-1666-1 : libxml2 - several vulnerabilities

Several vulnerabilities have been discovered in the GNOME XML library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4225 Drew Yao discovered that missing input sanitising in the xmlBufferResize function may lead to an infinite loop, resulting in...

10CVSS8.4AI score0.04051EPSS
Exploits1References5
Debian
Debian
added 2008/11/17 11:34 p.m.33 views

[SECURITY] [DSA 1666-1] New libxml2 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1666-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 17, 2008 http://www.debian.org/security/faq -...

10CVSS7.8AI score0.04051EPSS
Exploits1
OSV
OSV
added 2008/08/22 12:0 a.m.12 views

DSA-1631-1 libxml2 - denial of service

Bulletin has no description...

6.5CVSS6.4AI score0.02507EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.26 views

Ubuntu 4.10 : XML library vulnerabilities (USN-10-1)

Several buffer overflows have been discovered in libxml2's FTP connection and DNS resolution functions. Supplying very long FTP URLs or IP addresses might result in execution of arbitrary code with the privileges of the process using libxml2. Since libxml2 is used in packages like php4-imagick, t...

10CVSS6.2AI score0.05843EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/12 12:0 a.m.12 views

Solaris 9 (x86) : 114876-01

SunOS 5.9x86: XML library source patch. Date this patch was last updated by Sun : Apr/22/03 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/12 12:0 a.m.9 views

Solaris 9 (sparc) : 114875-01

SunOS 5.9: XML library source patch. Date this patch was last updated by Sun : Apr/22/03 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if descriptio...

7AI score
Exploits0References1
Rows per page
Query Builder