Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4391

Malware in sbrugna...

5CVSS6.2AI score0.01291EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4390

Malware in sbrugna...

6.4CVSS6.4AI score0.0148EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/02/05 2:50 p.m.7 views

CVE-2020-15251

In the Channelmgnt plug-in for Sopel a Python IRC bot before version 1.0.3, malicious users are able to op/voice and take over a channel. This is an ACL bypass vulnerability. This plugin is bundled with MirahezeBot-Plugins with versions from 9.0.0 and less than 9.0.2 affected. Version 9.0.2...

7.7CVSS6.7AI score0.01142EPSS
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2021/06/28 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-15251

In the Channelmgnt plug-in for Sopel a Python IRC bot before version 1.0.3, malicious users are able to op/voice and take over a channel. This is an ACL bypass vulnerability. This plugin is bundled with MirahezeBot-Plugins with versions from 9.0.0 and less than 9.0.2 affected. Version 9.0.2...

7.7CVSS6.8AI score0.01142EPSS
Exploits0References1
OSV
OSV
added 2020/10/13 6:15 p.m.3 views

UBUNTU-CVE-2020-15251

In the Channelmgnt plug-in for Sopel a Python IRC bot before version 1.0.3, malicious users are able to op/voice and take over a channel. This is an ACL bypass vulnerability. This plugin is bundled with MirahezeBot-Plugins with versions from 9.0.0 and less than 9.0.2 affected. Version 9.0.2...

7.7CVSS6.8AI score0.01142EPSS
Exploits0References6
PyPA
PyPA
added 2020/10/13 6:15 p.m.8 views

PYSEC-2020-110

In the Channelmgnt plug-in for Sopel a Python IRC bot before version 1.0.3, malicious users are able to op/voice and take over a channel. This is an ACL bypass vulnerability. This plugin is bundled with MirahezeBot-Plugins with versions from 9.0.0 and less than 9.0.2 affected. Version 9.0.2...

7.7CVSS6.9AI score0.01142EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2007/08/18 9:17 p.m.13 views

Code injection

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...

5CVSS7.2AI score0.01291EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2007/08/18 9:17 p.m.36 views

CVE-2007-4407

ircu 2.10.12.03 and 2.10.12.04 does not associate a timestamp with ops privilege on an unused channel zannel, which allows remote attackers to 1 set or remove certain channel modes via a "netriding" attack or 2 take over a channel by joining an unlinked server with the A/Upass and then setting a...

6.4CVSS5.9AI score0.0148EPSS
Exploits1References1
OSV
OSV
added 2007/08/18 9:17 p.m.9 views

CVE-2007-4408

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...

6.9AI score
Exploits0References5
OSV
OSV
added 2007/08/18 9:17 p.m.2 views

DEBIAN-CVE-2007-4408

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...

5CVSS6.9AI score0.01291EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2007/08/18 9:0 p.m.22 views

CVE-2007-4408

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...

5CVSS6.3AI score0.01291EPSS
Exploits1
Cvelist
Cvelist
added 2007/08/18 9:0 p.m.23 views

CVE-2007-4408

ircu 2.10.12.05 and earlier ignores timestamps in bounces, which allows remote attackers to take over a channel during a netjoin by causing a bounce while a server with an older version of the channel is linking...

6.6AI score0.01291EPSS
Exploits1References5
CVE
CVE
added 2007/08/18 9:0 p.m.44 views

CVE-2007-4407

CVE-2007-4407 affects ircu versions 2.10.12.03 and 2.10.12.04. The flaw does not associate a timestamp with ops privilege on an unused channel (zannel), enabling remote attackers to manipulate channel modes via a netriding attack or to take over a channel by joining an unlinked server with A/Upas...

6.4CVSS6.7AI score0.0148EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.23 views

Debian DSA-099-1 : xchat - IRC session hijacking

zen-parse found a vulnerability in the XChat IRC client that allows an attacker to take over the users IRC session. It is possible to trick XChat IRC clients into sending arbitrary commands to the IRC server they are on, potentially allowing social engineering attacks, channel takeovers, and deni...

7.5CVSS5.4AI score0.08087EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.19 views

Mandrake Linux Security Advisory : xchat (MDKSA-2002:006)

zen-parse discovered a problem in versions 1.4.2 and 1.4.3 of xchat that could allow a malicious user to send commands to the IRC server they are on which would take advantage of the CTCP PING reply handler in xchat. This could be used for denial of service, channel takeovers, and other similar...

5.5AI score
Exploits0
Rows per page
Query Builder