Lucene search
K

15 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.8 views

CVE-2025-66170

The CloudStack Backup plugin has an improper authorization logic in versions 4.21.0.0 and 4.22.0.0. Anyone with authenticated user-account access in CloudStack 4.21.0.0+ environments, where this plugin is enabled and has access to specific APIs can list backups from any account in the environment...

6.5CVSS5.4AI score0.00486EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-1821

Malware in sbrugna...

6.5CVSS6.4AI score0.02086EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4293

Malware in sbrugna...

4.3CVSS6.4AI score0.0106EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-5596

Malware in sbrugna...

5CVSS6.4AI score0.01264EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-1480

Malware in sbrugna...

2.1CVSS6.1AI score0.00764EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-1820

Malware in sbrugna...

4CVSS6.4AI score0.02424EPSS
Exploits0References4
OSV
OSV
added 2019/08/29 1:15 a.m.2 views

CVE-2019-11063

A broken access control vulnerability in SmartHome app Android versions up to 3.0.42190515, ios versions up to 2.0.22 allows an attacker in the same local area network to list user accounts and control IoT devices that connect with its gateway HG100 via http://target/smarthome/devicecontrol witho...

8.8CVSS7.3AI score
Exploits0References3
Cvelist
Cvelist
added 2015/08/18 5:0 p.m.21 views

CVE-2015-5515

The Views Bulk Operations VBO module 6.x-1.x and 7.x-3.x before 7.x-3.3 for Drupal, when the bulk operation for changing Roles is enabled, allows remote authenticated users to edit user accounts and add arbitrary roles to the accounts by leveraging access to a user account listing view with VBO...

6.4AI score0.01088EPSS
Exploits0References4
Prion
Prion
added 2015/04/21 6:59 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Bank Account Listing Page in the Commerce Balanced Payments module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.7AI score0.00954EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2015/04/21 6:0 p.m.44 views

CVE-2015-3384

CVE-2015-3384 is a Cross-Site Scripting (XSS) vulnerability in the Drupal Commerce Balanced Payments module, specifically affecting the Bank Account Listing Page. The root cause is insufficient sanitization of user-supplied text in that page, enabling remote authenticated users to inject arbitrar...

3.5CVSS5.4AI score0.00954EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/04/21 6:0 p.m.23 views

CVE-2015-3384

Cross-site scripting XSS vulnerability in the Bank Account Listing Page in the Commerce Balanced Payments module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.2AI score0.00954EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.35 views

ASTPP VoIP Billing (4cf207a) Multiple Vulnerabilities

No description provided by source. Title: ====== ASTPP VoIP Billing 4cf207a - Multiple Web Vulnerabilities Date: ===== 2012-08-17 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=687 VL-ID: ===== 687 Common Vulnerability Scoring System: ==================================...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.32 views

CVE-2001-1503

The finger daemon in.fingerd in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host...

6.4AI score0.00764EPSS
Exploits0References4
NVD
NVD
added 2002/12/31 5:0 a.m.17 views

CVE-2002-1731

The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF...

2.1CVSS6AI score0.00844EPSS
Exploits1References3
NVD
NVD
added 2001/12/31 5:0 a.m.25 views

CVE-2001-1503

The finger daemon in.fingerd in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host...

2.1CVSS6.5AI score0.00764EPSS
Exploits0References4
Rows per page
Query Builder