Lucene search
K

68 matches found

OpenVAS
OpenVAS
added 2020/05/28 12:0 a.m.87 views

Discourse < 2.5.0.beta5 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

6.9CVSS7.6AI score0.99019EPSS
Exploits11References3
OpenVAS
OpenVAS
added 2020/05/05 12:0 a.m.11 views

Discourse < 2.5.0.beta4 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

7.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/03/19 12:0 a.m.37 views

Discourse < 2.4.0.beta5 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

7.3AI score
Exploits0References1
Snyk
Snyk
added 2019/02/22 12:35 p.m.3 views

Unsafe Dependency Resolution

Overview org.testng:testng is a testing framework for the JVM. Affected versions of this package are vulnerable to Unsafe Dependency Resolution due to resolving dependencies over an insecure channel http. If the build occurred over an insecure connection, a malicious user could have perform a...

5.6CVSS6.7AI score
Exploits0References3
OpenVAS
OpenVAS
added 2019/01/29 12:0 a.m.51 views

Discourse < 2.2.0.beta4 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; if...

5.4CVSS6AI score0.0091EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/04/16 7:50 p.m.14 views

Ubiquiti Inc.: Privilege escalation in the client impersonation functionality

In UCRM 2.3.0-beta4 and prior, consequence of a lack of validation in Client Impersonation functionality, an attacker with access to an Read-Only account can escalate privileges to Admin. The vulnerability was fixed in UCRM 2.3.0...

6.9AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

paFaq beta4 search.php search_item Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/12582/info paFaq is reportedly affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

openengine <= 2.0 beta4 - Remote File Inclusion Vulnerability

No description provided by source. :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP YmmMMMM MMM YM Discovered by dun \ dunatstrcpy.pl openEngine = 2.0 beta4 Remote File Inclusion Vulnerability Script: Open Source Web Content Management...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

paFaq beta4 comment.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/12582/info paFaq is reportedly affected by an SQL injection vulnerability. This issue exists because the application fails to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Dawn of Time 1.69 MUD Server Multiple Format String Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25944/info Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a user running the application. Failed...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2014/03/17 12:0 a.m.25 views

Nagios 'status.cgi' Information Disclosure Vulnerability (Jul 2013) - Active Check

Nagios is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nagios:nagios";...

4CVSS8.8AI score0.04343EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/12/03 12:0 a.m.26 views

WordPress Plugin CiviCRM '_value' Parameter SQL Injection Vulnerability

CiviCRM is prone to an SQL injection SQLi vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress";...

7.5CVSS7.6AI score0.02089EPSS
Exploits1References2
Fedora
Fedora
added 2011/05/01 8:55 p.m.48 views

[SECURITY] Fedora 13 Update: mingw32-openssl-1.0.0-0.7.beta4.fc13

The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols. This package contains Windows MinGW libraries and development tools...

5CVSS2.8AI score0.09854EPSS
Exploits0
CVE
CVE
added 2009/03/06 11:0 a.m.39 views

CVE-2008-6403

The CVE-2008-6403 issue affects OpenRat 0.8-beta4 and earlier, where a PHP remote file inclusion vulnerability in themes/default/include/html/insert.inc.php allows an attacker to execute arbitrary PHP code via a URL parameter (tpl_dir). The underlying cause is improper handling of the tpl_dir par...

7.5CVSS7.8AI score0.02294EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2008/09/30 5:22 p.m.16 views

Remote file inclusion

PHP remote file inclusion vulnerability in cms/system/openengine.php in openEngine 2.0 beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the oeclasspath parameter...

10CVSS7.7AI score0.03502EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/09/30 5:0 p.m.22 views

CVE-2008-4329

PHP remote file inclusion vulnerability in cms/system/openengine.php in openEngine 2.0 beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the oeclasspath parameter...

7.4AI score0.03502EPSS
Exploits1References3
0day.today
0day.today
added 2008/09/25 12:0 a.m.18 views

openEngine <= 2.0 beta4 Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications =========================================================== openEngine = 2.0 beta4 Remote File Inclusion Vulnerability =========================================================== :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$,...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/09/25 12:0 a.m.17 views

openEngine 2.0 beta4 - Remote File Inclusion

openEngine 2.0 beta4 - Remote File Inclusion :::::::-. ... ::::::. :::. ;;, ';, ;; ;;;;;;;, ;;; ' . ' $$, $$$$ $$$ $$$ "Y$c$$ 888,o8P'88 .d888 888 Y88 MMMMP" "YmmMMMM"" MMM YM Discovered by dun \ dunatstrcpy.pl openEngine = 2.0 beta4 Remote File Inclusion Vulnerability Script: "Open Source Web...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2007/10/05 12:0 a.m.13 views

Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities

Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities source: https://www.securityfocus.com/bid/25944/info Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2007/10/05 12:0 a.m.25 views

Dawn of Time 1.69 MUD Server - Multiple Format String Vulnerabilities

source: https://www.securityfocus.com/bid/25944/info Dawn of Time MUD server is prone to multiple format-string vulnerabilities. Exploiting these issues will allow attackers to execute arbitrary code with the permissions of a user running the application. Failed attacks will likely cause...

7.4AI score
Exploits0
Rows per page
Query Builder