CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9786 matches found

Oracle linux•added 2006/11/30 12:0 a.m.•31 views

Moderate ruby security update

1.8.1-7.EL4.8 - BR tcl-devel and tk-devel instead of tcl and tk. 1.8.1-7.EL4.7 - security fix release. - ruby-1.8.1-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212237 1.8.1-7.EL4.6 - security fixes CVE-2006-3694 - fixed the insecure operations on Di...

6.4CVSS3.3AI score0.05739EPSS

Exploits1

Oracle linux•added 2006/11/30 12:0 a.m.•37 views

Moderate ruby security update

6.4CVSS3.3AI score0.05739EPSS

Exploits1

securityvulns•added 2006/11/30 12:0 a.m.•46 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References5Affected Software3

securityvulns•added 2006/11/28 12:0 a.m.•63 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References8Affected Software7

securityvulns•added 2006/11/27 12:0 a.m.•53 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References7Affected Software1

securityvulns•added 2006/11/25 12:0 a.m.•43 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References16Affected Software9

securityvulns•added 2006/11/23 12:0 a.m.•41 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References2Affected Software2

securityvulns•added 2006/11/22 12:0 a.m.•39 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References33Affected Software26

Tenable Nessus•added 2006/11/22 12:0 a.m.•23 views

GLSA-200611-12 : Ruby: Denial of Service vulnerability

The remote host is affected by the vulnerability described in GLSA-200611-12 Ruby: Denial of Service vulnerability Zed Shaw, Jeremy Kemper, and Jamis Buck of the Mongrel project reported that the CGI library shipped with Ruby is vulnerable to a remote Denial of Service by an unauthenticated user...

5CVSS7.3AI score0.04071EPSS

Exploits1References2

Tenable Nessus•added 2006/11/22 12:0 a.m.•22 views

GLSA-200611-15 : qmailAdmin: Buffer overflow

The remote host is affected by the vulnerability described in GLSA-200611-15 qmailAdmin: Buffer overflow qmailAdmin fails to properly handle the 'PATHINFO' variable in qmailadmin.c. The PATHINFO is a standard CGI environment variable filled with user-supplied data. Impact : A remote attacker coul...

7.5CVSS6AI score0.04499EPSS

Exploits0References2

Gentoo Linux•added 2006/11/21 12:0 a.m.•27 views

qmailAdmin: Buffer overflow

Background qmailAdmin is a free software package that provides a web interface for managing a qmail system with virtual domains. Description qmailAdmin fails to properly handle the "PATHINFO" variable in qmailadmin.c. The PATHINFO is a standard CGI environment variable filled with user supplied...

7.5CVSS7AI score0.04499EPSS

Exploits0

securityvulns•added 2006/11/20 12:0 a.m.•40 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References14Affected Software10

Gentoo Linux•added 2006/11/20 12:0 a.m.•29 views

Ruby: Denial of Service vulnerability

Background Ruby is a dynamic, open source programming language with a focus on simplicity and productivity. Description Zed Shaw, Jeremy Kemper, and Jamis Buck of the Mongrel project reported that the CGI library shipped with Ruby is vulnerable to a remote Denial of Service by an unauthenticated...

5CVSS6.6AI score0.04071EPSS

Exploits1

Tenable Nessus•added 2006/11/20 12:0 a.m.•31 views

RHEL 2.1 / 3 / 4 : ruby (RHSA-2006:0729)

Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A flaw was discovered in...

5CVSS6.9AI score0.04071EPSS

Exploits1References3

Tenable Nessus•added 2006/11/20 12:0 a.m.•27 views

ELOG Web LogBook global Denial of Service

The remote web server is identified as ELOG Web Logbook, an open source blogging software. The version of ELOG Web Logbook installed on the remote host is vulnerable to a denial of service attack by requesting '/global' or any logbook with 'global' in its name. When a request like this is receive...

5CVSS5.5AI score0.03177EPSS

Exploits1References4

securityvulns•added 2006/11/18 12:0 a.m.•41 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References16Affected Software7

securityvulns•added 2006/11/17 12:0 a.m.•45 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

6.8CVSS1.5AI score0.01739EPSS

Exploits1References23Affected Software16

securityvulns•added 2006/11/16 12:0 a.m.•40 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References24Affected Software6

securityvulns•added 2006/11/14 12:0 a.m.•64 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

10CVSS1.5AI score0.0392EPSS

Exploits1References36Affected Software39

securityvulns•added 2006/11/13 12:0 a.m.•41 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by