Lucene search
K

52 matches found

NVD
NVD
added 2018/06/04 7:29 p.m.33 views

CVE-2017-0931

html-janitor node module suffers from a Cross-Site Scripting XSS vulnerability via clean accepting user-controlled values...

6.1CVSS6AI score0.01063EPSS
Exploits1References2
OSV
OSV
added 2018/06/04 7:29 p.m.13 views

CVE-2017-0931

html-janitor node module suffers from a Cross-Site Scripting XSS vulnerability via clean accepting user-controlled values...

6.1CVSS6.1AI score
Exploits0References2
Cvelist
Cvelist
added 2018/06/04 7:0 p.m.36 views

CVE-2017-0931

html-janitor node module suffers from a Cross-Site Scripting XSS vulnerability via clean accepting user-controlled values...

5.9AI score0.01063EPSS
Exploits1References2
Prion
Prion
added 2018/04/24 7:29 p.m.18 views

Heap overflow

An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dns packet to trigger this vulnerability...

7.5CVSS9.4AI score0.01943EPSS
Exploits3References1Affected Software1
UbuntuCve
UbuntuCve
added 2018/04/24 7:29 p.m.27 views

CVE-2017-12087

An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dns packet to trigger this vulnerability...

10CVSS7.3AI score0.01943EPSS
Exploits3References2
NVD
NVD
added 2018/04/18 2:29 p.m.22 views

CVE-2015-9132

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Small Cell SoC FSM9055, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, and SD 810, possible arbitrary memory read due to untrusted pointer dereference when handling HLOS controlled...

7.5CVSS7.8AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2018/04/18 2:29 p.m.22 views

Null pointer dereference

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Small Cell SoC FSM9055, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, and SD 810, possible arbitrary memory read due to untrusted pointer dereference when handling HLOS controlled...

5CVSS8.1AI score0.00928EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/18 2:0 p.m.20 views

CVE-2015-9132

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Small Cell SoC FSM9055, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, and SD 810, possible arbitrary memory read due to untrusted pointer dereference when handling HLOS controlled...

7.9AI score0.00928EPSS
Exploits0References2
Talos
Talos
added 2017/11/20 12:0 a.m.69 views

Tinysvcmdns Multi-label DNS Heap Overflow Vulnerability

Summary An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dns packet to trigger this...

10CVSS8.6AI score0.01943EPSS
Exploits3
RubySec
RubySec
added 2014/08/18 12:0 a.m.23 views

Data Injection Vulnerability in Active Record

The createwith functionality in Active Record was implemented incorrectly and completely bypasses the strong parameters protection. Applications which pass user-controlled values to createwith could allow attackers to set arbitrary attributes on models...

7.5CVSS6.9AI score0.02797EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/09/18 12:0 a.m.39 views

[Reversemode Advisory] Apple Quicktime FLIC File Heap Overflow

Hi, Apple Quicktime = 7.1 is prone to a heap overflow vulnerability. This flaw could lead to a remote code execution,if an attacker tricks the victim to visit a malicious webpage with a specially crafted .fli animation embedded. The flaw is located within the "COLOR64 chunk" Quicktime parser. Sin...

1.8AI score
Exploits0
securityvulns
securityvulns
added 2002/11/18 12:0 a.m.22 views

ColdFusion Heap Overflow -continued

Hi all, I am attempting to write exploit code for the coldfusion heap overflow still. On advice from various on the secfocus list i have installed softice and located the exception handler in question. The handler code starts at 0x77f82b95 The code I am trying to manipulate is at 0x77f8e43b Mov...

1.7AI score
Exploits0
Rows per page
Query Builder