Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/09 11:3 p.m.2 views

CVE-2026-30927

Admidio is an open-source user management solution. Prior to 5.0.6, in modules/events/eventsfunction.php, the event participation logic allows any user who can participate in an event to register OTHER users by manipulating the useruuid GET parameter. The condition uses || OR, meaning if...

5.3CVSS5.9AI score0.00253EPSS
Exploits0References4Affected Software1
FreeBSD
FreeBSD
added 2024/04/04 12:0 a.m.15 views

Request Tracker -- information exposure vulnerability

Request Tracker reports: CVE-2024-3262 describes previously viewed pages being stored in the browser cache, which is the typical default behavior of most browsers to enable the "back" button. Someone who gains access to a host computer could potentially view ticket data using the back button, eve...

5.5CVSS6.9AI score0.00285EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/04/21 12:0 a.m.5 views

PT-2022-16577 · Mongodb · Mongodb Server +1

Name of the Vulnerable Software and Affected Versions: MongoDB Server versions prior to and including v5.0.6 Description: An authenticated user may trigger an invariant assertion during command dispatch due to incorrect validation on the $external database. This may result in mongod denial of...

6.5CVSS6.3AI score0.0084EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.38 views

Oracle Linux 7 : kernel (ELSA-2020-5023)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5023 advisory. - net bluetooth: l2cap: Fix calling skfilter on non-socket based channel Gopal Tiwari 1888253 CVE-2020-12351 - net bluetooth: a2mp: Fix not initializin...

8.8CVSS7.2AI score0.07693EPSS
Exploits7References3
CNVD
CNVD
added 2019/12/30 12:0 a.m.1 views

Linux kernel fs/proc/proc_sysctl.c file null pointer dereference vulnerability

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A null pointer dereference vulnerability exists in the 'dropsysctltable' in the fs/proc/procsysctl.c file in Linux...

5.5CVSS7AI score0.00477EPSS
Exploits0References1
OSV
OSV
added 2014/03/14 4:55 p.m.3 views

UBUNTU-CVE-2013-2089

Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the file in /data...

4.6CVSS6.1AI score0.01262EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/03/09 1:16 p.m.24 views

CVE-2013-2045

SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS6.2AI score0.01606EPSS
Exploits0References2
OSV
OSV
added 2011/07/21 11:55 p.m.1 views

UBUNTU-CVE-2011-0221

WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1...

9.3CVSS7.7AI score0.03923EPSS
Exploits2References2
Rows per page
Query Builder