Lucene search
K

245 matches found

Cvelist
Cvelist
added 2018/03/05 11:0 p.m.17 views

CVE-2018-7717

The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended SIGE extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1...

5.9AI score0.00675EPSS
Exploits1References1
OSV
OSV
added 2017/09/25 12:0 a.m.3 views

UBUNTU-CVE-2017-14741

The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers to cause a denial of service infinite loop via a crafted font file...

6.5CVSS7AI score0.01375EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2017/07/03 2:32 a.m.14 views

maywood.com XSS vulnerability

Vulnerable URL: http://www.maywood.com/EVCommerce/ViewImage.asp?ImageName=/EVCommerce/images/edgeCrimped.jpg=1"...

6.9AI score
Exploits0
OSV
OSV
added 2017/03/24 3:59 p.m.1 views

DEBIAN-CVE-2016-10146

Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service memory consumption via unspecified vectors...

7.5CVSS5.9AI score0.0508EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/12/31 12:0 a.m.2 views

PT-2016-3136 · Imagemagick +2 · Imagemagick +2

Name of the Vulnerable Software and Affected Versions: ImageMagick affected versions not specified Description: The issue is related to multiple memory leaks in the caption and label handling code, allowing remote attackers to cause a denial of service due to memory consumption via unspecified...

9.8CVSS6.2AI score0.06534EPSS
Exploits2References104
OSV
OSV
added 2016/12/31 12:0 a.m.2 views

UBUNTU-CVE-2016-10146

Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service memory consumption via unspecified vectors...

7.5CVSS6.8AI score0.0508EPSS
Exploits0References4
CNVD
CNVD
added 2016/09/01 12:0 a.m.1 views

SQL Injection Vulnerability in the CaptionType Parameter of the GetCaption.ashx Page of Nanjing Fargo Streaming Media System

Nanjing Fargo streaming media system is mainly used for applications such as network TV, live event broadcasting, remote education, enterprise roadshow and multimedia public information service, etc. The system integrates computer, network, audio and video and mobile communication and other relat...

7.8AI score
Exploits0References1
Exploit DB
Exploit DB
added 2015/09/22 12:0 a.m.28 views

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar (MS15-061)

Source: https://code.google.com/p/google-security-research/issues/detail?id=321 The PoC triggers a crashes due to a pool buffer overflow while drawing the caption bar of window. The trigger depends on the current window layout and resolution. The PoC takes an offset on the command line to be able...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2015/09/22 12:0 a.m.16 views

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar (MS15-061)

Microsoft Windows Kernel - Pool Buffer Overflow Drawing Caption Bar MS15-061 Source: https://code.google.com/p/google-security-research/issues/detail?id=321 The PoC triggers a crashes due to a pool buffer overflow while drawing the caption bar of window. The trigger depends on the current window...

0.4AI score
Exploits0
Hacker One
Hacker One
added 2015/04/20 12:56 p.m.32 views

Shopify: XSS in experts.shopify.com

Hi, XSS vulnerability in experts.shopify.com, Steps to verify: 1. Go to https://experts.shopify.com 2. Sign up for an expert. Please do note that you must create a new account if you already have, do not use existing account or an account that did not yet apply for an expert then you will ask to...

6AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

jmd-cms - Multiple Vulnerabilities

No description provided by source. ''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-19-jmd-cms-multiple-remote-vulnerabilities/ ''' Abysssec Inc Public Advisory Title : JMD-CMS Multiple Remote...

7.1AI score
Exploits0
Prion
Prion
added 2013/08/19 11:55 p.m.15 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Scald module 7.x-1.x before 7.x-1.1 for Drupal allow remote attackers to inject arbitrary web script or HTML via the 1 flashuri, 2 flashwidth, or 3 flashheight in the scaldflashscaldprerender function in...

4.3CVSS5.9AI score0.01425EPSS
Exploits1References8Affected Software1
Prion
Prion
added 2013/08/06 8:55 p.m.13 views

Path traversal

Absolute path traversal vulnerability in the 3D Graph ActiveX control in cw3dgrph.ocx in National Instruments LabWindows/CVI 2012 SP1 and earlier, LabVIEW 2012 SP1 and earlier, and other products allows remote attackers to create and execute arbitrary files via a full pathname in an argument to t...

10CVSS7.8AI score0.0257EPSS
Exploits0References3Affected Software4
exploitpack
exploitpack
added 2012/11/15 12:0 a.m.29 views

iDev Rentals 1.0 - Multiple Vulnerabilities

iDev Rentals 1.0 - Multiple Vulnerabilities Title: ====== iDev Rentals v1.0 - Multiple Web Vulnerabilities Date: ===== 2012-11-14 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=760 VL-ID: ===== 758 Common Vulnerability Scoring System: ==================================...

0.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/11/01 12:0 a.m.39 views

Oracle Hyperion Financial Management Code Execution

Oracle Hyperion Financial Management TList6 ActiveX Control Remote Code Execution Vulnerability tested against: Internet Explorer 8 Microsoft Windows Server 2003 r2 sp2 download url: http://www.oracle.com/technetwork/middleware/epm/downloads/index.html files tested: SystemInstaller-11121-win32.zi...

0.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/07/05 12:0 a.m.25 views

Fedora 15 : feh-1.14.1-1.fc15 (2011-8750)

Changes since 0.10.1 : - Bug fixes Make zoomdefault key work properly with --geometry Only create caption directory when actually writing out a caption. read directory contents sorted by filename instead of 'randomly' as returned by readdir by default. Thanks talisein! Show certain warnings in th...

3.3CVSS5.4AI score0.00333EPSS
Exploits0References13
Exploit DB
Exploit DB
added 2010/09/19 12:0 a.m.47 views

jmd-cms - Multiple Vulnerabilities

''' | / |/ \ /\ | | | | \ | \ / | | | | / \ | | | | | | | |/| | | | |/ /\ | | | | | | | | || / \ || | | | || ||// \/|/ http://www.exploit-db.com/moaub-19-jmd-cms-multiple-remote-vulnerabilities/ ''' Abysssec Inc Public Advisory Title : JMD-CMS Multiple Remote Vulnerabilities Affected Version :...

7.4AI score
Exploits0
NVD
NVD
added 2010/06/11 6:0 p.m.13 views

CVE-2010-1400

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors involving caption elements...

9.3CVSS8.7AI score0.06698EPSS
Exploits0References22
UbuntuCve
UbuntuCve
added 2010/06/11 6:0 p.m.26 views

CVE-2010-1400

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors involving caption elements...

9.3CVSS7.5AI score0.06698EPSS
Exploits0References2
Prion
Prion
added 2010/06/11 6:0 p.m.24 views

Design/Logic Flaw

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors involving caption elements...

9.3CVSS8.1AI score0.06698EPSS
Exploits0References22Affected Software1
Rows per page
Query Builder