Lucene search
K

167 matches found

OpenVAS
OpenVAS
added 2019/01/30 12:0 a.m.29 views

Discourse < 2.2.0.beta2 Information Leak Vulnerability

Discourse is prone to an information leak vulnerability in the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.5AI score0.26717EPSS
Exploits2References1
Veracode
Veracode
added 2019/01/15 8:58 a.m.34 views

Multiple Cross-site Scripting (XSS) Vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in actionpack/lib/actionview/helpers/numberhelper.rb in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2 allow remote attackers to inject arbitrary web script or HTML via the 1 format, 2 negativeformat, or 3 units...

4.3CVSS6AI score0.04032EPSS
Exploits0References10Affected Software6
ATTACKERKB
ATTACKERKB
added 2018/03/28 4:29 a.m.3 views

CVE-2018-9108

CSRF in /admin/user/manage/add in QuickAppsCMS 2.0.0-beta2 allows an unauthorized remote attacker to create an account with admin privileges...

8.8CVSS5.6AI score0.00787EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/03/20 12:0 a.m.22 views

CVE-2018-8088

org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData in the slf4j-ext module in QOS.CH SLF4J, has been fixed in SLF4J versions 1.7.26 later and in the 2.0.x series...

9.4AI score0.15087EPSS
Exploits0References63
Cvelist
Cvelist
added 2018/01/16 7:0 p.m.18 views

CVE-2017-8802

Cross-site scripting XSS vulnerability in Zimbra Collaboration Suite aka ZCS before 8.8.0 Beta2 might allow remote attackers to inject arbitrary web script or HTML via vectors related to the "Show Snippet" functionality...

5.3AI score0.01264EPSS
Exploits2References4
CNVD
CNVD
added 2017/09/08 12:0 a.m.3 views

Sefrengo SQL Injection Vulnerability

Sefrengo is an open source web content management system CMS based on PHP and MySql. The system supports WYSIWYG editors, image uploads and more. A SQL injection vulnerability exists in versions of Sefrengo prior to 1.6.5 beta2. A remote attacker can exploit this vulnerability to execute arbitrar...

9.8CVSS10AI score0.0099EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2017/09/07 8:29 p.m.0 views

CVE-2015-5052

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

9.8CVSS5.8AI score0.0099EPSS
Exploits0References2
NVD
NVD
added 2017/09/07 8:29 p.m.13 views

CVE-2015-5052

SQL injection vulnerability in Sefrengo before 1.6.5 beta2...

9.8CVSS9.9AI score0.0099EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/01/23 12:0 a.m.24 views

MantisBT < 1.2.19, 1.3.0 'view_type' XSS Vulnerability - Linux

MantisBT is prone to a cross-site scripting XSS vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...

6.1CVSS6AI score0.03691EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2015/02/13 12:0 a.m.7 views

PT-2015-3596 · Ovirt · Ovirt Engine

Name of the Vulnerable Software and Affected Versions: oVirt Engine versions prior to 3.5.0 beta2 Description: A cross-site request forgery CSRF issue allows remote attackers to hijack user authentication for requests that perform unspecified actions via a REST API request. Recommendations: For...

6.8CVSS6.8AI score0.00644EPSS
Exploits1References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.8 views

openengine 2.0 beta2 - Remote File Inclusion Vulnerability

No description provided by source. Author : By CrackersChild Contact: [email protected] Greetz : str0ke & All My Friends Script : openEngine 2. 0 beta2 Remote File include Vulnerable Download :http://downloads.sourceforge.net/openengine/openengine20beta2.zip?modtime=1203083918&bigmirror=0...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

cmreams cms 1.3.1.1 beta2 (lfi/xss) Multiple Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.47 views

OpenSSL <= 0.9.8k, 1.0.0-beta2 DTLS Remote Memory Exhaustion DoS

No description provided by source. / cve-2009-1378.c OpenSSL = 0.9.8k, 1.0.0-beta2 DTLS Remote Memory Exhaustion DoS Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378 In dtls1processoutofseqmessage the check if the...

5CVSS0.1AI score0.12746EPSS
Exploits12
OpenVAS
OpenVAS
added 2013/09/21 12:0 a.m.24 views

OTRS < 3.0.0-beta2 XSS Vulnerability

Open Ticket Request System OTRS is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

3.5CVSS5.8AI score0.01044EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/09/20 12:0 a.m.21 views

OTRS < 2.4.0-beta2 Restriction Bypass Vulnerability

Open Ticket Request System OTRS is prone to a restriction bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

2.1CVSS6.4AI score0.00892EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2012/02/21 12:0 a.m.13 views

Fedora 15 : drupal7-field_permissions-1.0-0.2.beta2.fc15 (2012-1390)

Update to beta2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Network...

5.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/09/09 12:0 a.m.29 views

Fedora 13 : libmikmod-3.2.0-11.beta2.fc13 (2010-13702)

Fixes CVE-2009-3995 and CVE-2009-3996. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

9.3CVSS5.3AI score0.06722EPSS
Exploits1References4
seebug.org
seebug.org
added 2009/04/28 12:0 a.m.32 views

EZ-Blog Beta2 (category) Remote SQL Injection Vulnerability

No description provided by source. || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH! ------------------...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2009/04/28 12:0 a.m.36 views

SQL INJECTION &#40;SHELL UPLOAD&#41;--EZ-blog Beta2--&gt;

------------------------------------------------- SQL INJECTION VULNERABILITY --EZ-blog Beta2-- ------------------------------------------------- CMS INFORMATION: --WEB: http://sourceforge.net/projects/ez-blog/ --DOWNLOAD: http://sourceforge.net/projects/ez-blog/ --DEMO: N/A --CATEGORY: CMS /...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2009/04/27 12:0 a.m.26 views

EZ-Blog Beta2 - category SQL Injection

EZ-Blog Beta2 - category SQL Injection || || || -----------------------------------------\ == -- ----------- ---------------------------- ------------------/ ¡VIVA SPAIN!...¡GANAREMOS EL MUNDIAL!...o.O ¡PROUD TO BE SPANISH!...

0.3AI score
Exploits0
Rows per page
Query Builder