Lucene search
K

206166 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:47 p.m.8 views

CVE-2005-1632

Cheetah 0.9.15 and 0.9.16 searches the /tmp directory for modules before using the paths in the PYTHONPATH variable, which allows local users to execute arbitrary code via a malicious module in /tmp/...

7.2CVSS7.5AI score0.00433EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:47 p.m.8 views

CVE-2005-1434

Multiple unknown vulnerabilities in OpenView Network Node Manager OV NNM 6.2, 6.4, 7.01, and 7.50 allow attackers to cause a denial of service or execute arbitrary code...

7.5CVSS7.8AI score0.03954EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:46 p.m.12 views

CVE-2005-1580

users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code...

7.5CVSS7.8AI score0.02688EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:45 p.m.9 views

CVE-2005-1881

upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code...

7.5CVSS7.8AI score0.03429EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:45 p.m.7 views

CVE-2005-1976

Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files...

1.7CVSS8.1AI score0.00414EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:44 p.m.5 views

CVE-2005-1626

Multiple buffer overflows in handlers.c for Pico Server pServ before 3.3 may allow attackers to execute arbitrary code...

7.5CVSS7.8AI score0.0201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:43 p.m.13 views

CVE-2005-1433

Multiple unknown vulnjerabilities HP OpenView Event Correlation Services OV ECS 3.32 and 3.33 allow attackers to cause a denial of service or execute arbitrary code...

4.6CVSS7.7AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:42 p.m.6 views

CVE-2023-25212

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the fromSetWirelessRepeat function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.7 views

CVE-2023-25313

OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature...

9.8CVSS7.9AI score0.01315EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.4 views

CVE-2023-25214

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the setSchedWifi function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.9 views

CVE-2023-25344

An issue was discovered in swig-templates thru 2.0.4 and swig thru 1.4.2, allows attackers to execute arbitrary code via crafted Object.prototype anonymous function...

9.8CVSS7.8AI score0.01028EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.6 views

CVE-2023-25210

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the fromSetSysTime function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.7 views

CVE-2023-25215

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the saveParentControlInfo function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.11 views

CVE-2023-25220

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the addwhitenode function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.00959EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.7 views

CVE-2023-25309

Cross Site Scripting XSS Vulnerability in Fetlife rollout-ui version 0.5, allows attackers to execute arbitrary code via a crafted url to the delete a feature functionality...

6.1CVSS6.6AI score0.00697EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.8 views

CVE-2023-25211

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the R7WebsSecurityHandler function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.6 views

CVE-2023-25365

Cross Site Scripting vulnerability found in October CMS v.3.2.0 allows local attacker to execute arbitrary code via the file type .mp3...

7.8CVSS6.9AI score0.00355EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.7 views

CVE-2023-25219

Tenda AC5 USAC5V1.0RTLV15.03.06.28 was discovered to contain a stack overflow via the fromDhcpListClient function. This vulnerability allows attackers to cause a Denial of Service DoS or execute arbitrary code via a crafted payload...

9.8CVSS8.5AI score0.0087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.6 views

CVE-2023-25240

An improper SameSite Attribute vulnerability in pimCore v10.5.15 allows attackers to execute arbitrary code...

8.8CVSS7.5AI score0.00974EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.7 views

CVE-2023-43357

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Title parameter in the Manage Shortcuts component...

5.4CVSS6.9AI score0.00461EPSS
Exploits1References1
Rows per page
Query Builder