CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Exploit DB•added 2017/03/20 12:0 a.m.•56 views

Microsoft Windows - Uniscribe Font Processing Multiple Heap Out-of-Bounds and Wild Reads (MS17-011)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1031 Through fuzzing, we have discovered a number of different crashes in the Windows Uniscribe user-mode library, while trying to display text using a corrupted font file or calling documented Uniscribe API functions against such...

UbuntuCve•added 2017/02/17 5:59 p.m.•20 views

CVE-2014-9905

Multiple cross-site scripting XSS vulnerabilities in the Web Calendar in SOGo before 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 title of an appointment or 2 contact fields...

6.1CVSS6.4AI score0.01223EPSS

Hacker One•added 2016/09/26 1:50 p.m.•20 views

Internet Bug Bounty: Multiple use after frees in obj2ast_* methods

Multiple UAFs in Python AST API. link to bugtracker...

6.9AI score

Check Point Advisories•added 2016/09/18 12:0 a.m.•12 views

Mantis Bug Tracker Filter API view_type Cross Site Scripting (CVE-2016-6837)

A cross-site scripting vulnerability exists in the Filter API component of Mantis Bug Tracker. The vulnerability is due to insufficient input validation on the viewtype parameter in viewallbugpage.php. A remote attacker could exploit this vulnerability by enticing authenticated users to click on ...

4.3CVSS5.7AI score0.03691EPSS

Packet Storm•added 2016/09/13 12:0 a.m.•14 views

Antisip libosip2 4.1.0 Heap Buffer Overflow / Denial Of Service

Antisip's libosip2 v4.1.0 is vulnerable to heap buffer overflows in the following functions while parsing SIP messages and leads to a DoS if glibc hardening is enabled. 1. osipbodytostr 2. osipmessagetostr All files for reproducing the issues have been filed in the bug tracker 12 and have since...

0.7AI score

CNVD•added 2016/08/30 12:0 a.m.•2 views

MantisBT 'Content Security Policy' Security Bypass Vulnerability

MantisBT is the MantisBT team of a Web-based open source defect tracking system . A security bypass vulnerability exists in the MantisBT 'Content Security Policy'. An attacker could exploit the vulnerability to bypass security restrictions and obtain potentially sensitive information...

4.7CVSS6.7AI score0.01003EPSS

Exploit DB•added 2016/08/16 12:0 a.m.•22 views

Microsoft Internet Explorer - MSHTML!CMultiReadStreamLifetimeManager::ReleaseThreadStateInternal Read AV

function eventhandler1 CollectGarbage; function eventhandler5 try /FileReader/ var var00063 = new FileReader; catcherr //line 68 try /Blob/ var var00064 = new Blob; catcherr //line 69 try var00063.readAsDataURLvar00064; catcherr //line 70 iiThS9lJ8 A7...

UbuntuCve•added 2016/07/23 12:0 a.m.•37 views

CVE-2016-5131

Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function...

8.8CVSS7.2AI score0.0227EPSS

Exploits0References4

Packet Storm•added 2016/07/12 12:0 a.m.•29 views

Bug Tracker 2.7.1 Information Disclosure

======================================================================== | Title : Bug Tracker V 2.7.1 database disclosure vulnerability | Author : indoushka | email : [email protected] | Tested on: windows 8.1 Français V.Pro | Vendor : https://www.twbsd.org/demo/...

CISA•added 2016/01/19 12:0 a.m.•134 views

Linux Kernel Vulnerability

US-CERT is aware of a Linux kernel vulnerability affecting Linux PCs and servers and Android-based devices. Exploitation of this vulnerability may allow an attacker to take control of an affected system. US-CERT recommends that users and administrators review the Redhat Security Blog and the Debi...

7.2CVSS2.9AI score0.03646EPSS

In wildExploits14References2

Packet Storm•added 2015/11/04 12:0 a.m.•31 views

ATutor 2.2 PHP Code Injection

--------------------------------------------------------------- ATutor "name" 186. 187. $sort = '$grades'.$ordercol.', SORT'.strtoupper$order.', $selectedstudents ... 188. 189. foreach$selectedtests as $test 190. 191. if $test"gradebooktestid" $ordercol 192. $sort .= ',...

6.5CVSS0.02059EPSS

Exploits3

Exploit DB•added 2015/09/02 12:0 a.m.•44 views

Mantis Bug Tracker 1.2.19 - Host Header

Exploit Title: MantisBT 1.2.19 - Host header attack vulnerability Date: 07-09-2015 Exploit Author: Pier-Luc Maltais Centre opérationnel de sécurité informatique gouvernemental COSIG Vendor Homepage: https://www.mantisbt.org/ Software Link:...

exploitpack•added 2015/08/19 12:0 a.m.•12 views

Adobe Flash - Out-of-Bounds Read in UTF Conversion

Adobe Flash - Out-of-Bounds Read in UTF Conversion Source: https://code.google.com/p/google-security-research/issues/detail?id=378&can=1&q=label%3AProduct-Flash%20modified-after%3A2015%2F8%2F17&sort=id We've hit the same bug from two different avenues: 1 A report to the Chromium bug tracker:...

CNVD•added 2015/02/11 12:0 a.m.•1 views

MantisBT 'adm_config_report.php' cross-site scripting vulnerability (CNVD-2015-01092)

MantisBT is a popular web-based bug tracking system written in PHP. A cross-site scripting vulnerability exists in MantisBT 'admconfigreport.php' due to the program failing to adequately filter user-supplied input. An attacker could exploit this vulnerability to execute arbitrary script code or...

6.8AI score

Kitploit•added 2015/02/09 6:2 p.m.•13 views

Kali Linux 1.1.0 - The Best Penetration Testing Distribution

After almost two years of public development and another year behind the scenes, we are proud to announce our first point release of Kali Linux – version 1.1.0. This release brings with it a mix of unprecedented hardware support as well as rock solid stability. For us, this is a real milestone as...

7.6AI score