Lucene search
K

32 matches found

redhat
redhat
added 2023/08/02 8:0 a.m.6 views

openssh: Remote code execution in ssh-agent PKCS#11 support

A vulnerability was found in OpenSSH. The PKCS11 feature in the ssh-agent in OpenSSH has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system the code in /usr/lib is not necessarily safe for loading into ssh-agent...

9.8CVSS8.1AI score0.76768EPSS
Exploits10References5
checkpoint_advisories
checkpoint_advisories
added 2016/05/08 12:0 a.m.1 views

WordPress Header.php Unauthorized Code Injection

A Code Injection vulnerability has been reported in WordPress. Successful exploitation of this vulnerability would allow a remote attacker to redirect the clients who access an Infected WordPress website to an attacker-controlled page, and infect the client host...

3.1AI score
Exploits0
checkpoint_advisories
checkpoint_advisories
added 2016/05/03 12:0 a.m.1 views

WordPress Clikstats Plugin Open Redirection

A website redirection vulnerability exists in WordPress Clickstats Plugin. Successful exploitation of this vulnerability would allow a remote attacker to redirect the clients who access a WordPress website to an attacker-controlled page, and infect the client host...

3.1AI score
Exploits0
osv
osv
added 2016/01/27 8:59 p.m.3 views

DEBIAN-CVE-2016-1983

The clienthost function in parsers.c in Privoxy before 3.0.24 allows remote attackers to cause a denial of service invalid read and crash via an empty HTTP Host header...

7.5CVSS6.8AI score0.02867EPSS
Exploits0References1
checkpoint_advisories
checkpoint_advisories
added 2015/11/29 12:0 a.m.2 views

WordPress PHP Movie Parameter Redirection

A website redirection vulnerability has been reported in WordPress. Successful exploitation of this vulnerability would allow a remote attacker to redirect the clients who access a WordPress website to an attacker-controlled page, and infect the client host...

2.6AI score
Exploits0
cisco
cisco
added 2015/04/15 4:0 p.m.40 views

Cisco Secure Desktop Cache Cleaner Command Execution Vulnerability

A vulnerability in a Cisco-signed Java Archive JAR executable Cache Cleaner component of Cisco Secure Desktop could allow an unauthenticated, remote attacker to execute arbitrary commands on the client host where the affected .jar file is executed. Command execution would occur with the privilege...

9.3CVSS7.4AI score0.03074EPSS
Exploits0References1
nessus
nessus
added 2012/09/21 12:0 a.m.29 views

Scientific Linux Security Update : qpid on SL6.x i386/x86_64 (20120919)

Apache Qpid is a reliable, cross-platform, asynchronous messaging system that supports the Advanced Message Queuing Protocol AMQP in several common programming languages. It was discovered that the Qpid daemon qpidd did not allow the number of connections from clients to be restricted. A maliciou...

5CVSS5.5AI score0.04236EPSS
Exploits0References2
nessus
nessus
added 2011/04/11 12:0 a.m.31 views

SuSE 10 Security Update : dhcpcd (ZYPP Patch Number 7452)

A rogue DHCP server could instruct clients to use a host name that contains shell meta characters. Since many scripts in the system do not expect unusal characters in the system's host name the DHCP client needs to sanitize the host name offered by the server. CVE-2011-0996 Note: this is a...

6.8CVSS5.4AI score0.03748EPSS
Exploits0References2
cert
cert
added 2005/04/01 12:0 a.m.37 views

Multiple Telnet Clients vulnerable to buffer overflow via the env_opt_add() function in telnet.c

Overview Multiple Telnet clients contain a data length validation flaw that may allow a malicious server to execute arbitrary code on the client host with privs of client. Description The Telnet network protocol is described in RFC854 and RFC855 as a general, bi-directional communications facilit...

9.5AI score
Exploits0References5
securityvulns
securityvulns
added 2000/12/08 12:0 a.m.29 views

Дырка в BitchX ircd (FQDN buffer overflow)

Переполнение буфера при слишком длинном FQDN-Имени хоста клиента...

2.3AI score
Exploits0References1Affected Software1
friendsofphp
friendsofphp
added 1970/01/01 12:0 a.m.7 views

CVE-2026-45074: Cas2Handler Derives CAS service URL from Client Host Header → Cross-Service Ticket Replay

More info at https://symfony.com/cve-2026-45074...

5.8AI score0.00064EPSS
Exploits0Affected Software1
friendsofphp
friendsofphp
added 1970/01/01 12:0 a.m.8 views

CVE-2026-45074: Cas2Handler Derives CAS service URL from Client Host Header → Cross-Service Ticket Replay

More info at https://symfony.com/cve-2026-45074...

5.8AI score0.00064EPSS
Exploits0Affected Software1
Rows per page
Query Builder