Lucene search
K

15 matches found

OSV
OSV
added 2026/04/28 6:0 a.m.16 views

RLSA-2026:10950 Important: python3.12 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

8.1CVSS6.5AI score0.01279EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2026/04/27 12:0 a.m.9 views

RHEL 8 : python3.12 (RHSA-2026:10950)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:10950 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

9.1CVSS7AI score0.01279EPSS
Exploits1References24
Positive Technologies
Positive Technologies
added 2026/03/18 12:0 a.m.11 views

PT-2026-26070

Name of the Vulnerable Software and Affected Versions KiviCare – Clinic & Patient Management System EHR plugin for WordPress versions up to and including 4.1.2 Description The KiviCare – Clinic & Patient Management System EHR plugin for WordPress is susceptible to Authentication Bypass. This occu...

9.8CVSS6AI score0.00434EPSS
Exploits1References10
OSV
OSV
added 2024/11/19 2:31 p.m.12 views

USN-7015-5 python2.7 vulnerabilities

USN-7015-1 fixed several vulnerabilities in Python. This update provides the corresponding update for CVE-2024-6232 and CVE-2024-6923 for python2.7 in Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. Original advisory details: It was discovered that the...

7.5CVSS6.8AI score0.02203EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.3 views

PT-2024-41062 · Brest · Brest

Name of the Vulnerable Software and Affected Versions: Brest affected versions not specified Description: The issue is related to the failure to neutralize special elements in cookies used in the operating system command. This can be exploited by a remote attacker to execute arbitrary code by...

9CVSS7.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/06/09 12:0 a.m.2 views

PT-2022-20476 · Mechanize +2 · Mechanize +2

Name of the Vulnerable Software and Affected Versions: Mechanize versions prior to 2.8.5 Description: The Mechanize library, used for automating interaction with websites, has an issue where the Authorization header is leaked after a redirect to a different port on the same site. This occurs in...

7.5CVSS6.4AI score0.01392EPSS
Exploits0References22
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2016:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.03408EPSS
Exploits0References7
NVD
NVD
added 2019/08/14 9:15 p.m.16 views

CVE-2019-1172

An information disclosure vulnerability exists in Azure Active Directory AAD Microsoft Account MSA during the login request session. An attacker who successfully exploited the vulnerability could take over a user's account. To exploit the vulnerability, an attacker would have to trick a user into...

4.3CVSS6AI score0.03989EPSS
Exploits0References1
OSV
OSV
added 2014/09/10 8:0 a.m.10 views

CURL-CVE-2014-3613 cookie leak with IP address as domain

By not detecting and rejecting domain names for partial literal IP addresses properly when parsing received HTTP cookies, libcurl can be fooled to both sending cookies to wrong sites and into allowing arbitrary sites to set cookies for others. For this problem to trigger, the client application...

5CVSS6AI score0.07432EPSS
Exploits0
The Hacker News
The Hacker News
added 2012/12/28 12:45 p.m.8 views

Vulnerability in HTC website allow attacker to hijack accounts

Thamatam Deepak Mr.47™ reported a Cross site scripting XSS Vulnerability and cookie handling in HTC website, that allow an attacker to HTC website hijack accounts. Mr. Deepak is a 16 years old whitehat hacker, listed in Apple Hall of Fame with 'The Hacker News' researcher Mohit Kumar this month...

6.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/12/04 12:0 a.m.25 views

Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : firefox regressions (USN-1638-3)

USN-1638-1 fixed vulnerabilities in Firefox. The new packages introduced regressions in cookies handling and the User Agent string. This update fixes the problem. Gary Kwong, Jesse Ruderman, Christian Holler, Bob Clary, Kyle Huey, Ed Morley, Chris Lord, Boris Zbarsky, Julian Seward, Bill McCloske...

10CVSS8.8AI score0.11079EPSS
Exploits16References29
Tenable Nessus
Tenable Nessus
added 2011/06/21 12:0 a.m.28 views

Mozilla Thunderbird 3.1.x < 3.1.11 Multiple Vulnerabilities

Binary data 801333.prm...

10CVSS9.8AI score0.75691EPSS
Exploits19References21
0day.today
0day.today
added 2010/09/20 12:0 a.m.21 views

odCMS Cookies handling vulnerabilities

Exploit for php platform in category web applications ====================================== odCMS Cookies handling vulnerabilities ====================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/...

7.1AI score
Exploits0
rdot
rdot
added 2010/09/07 12:0 a.m.104 views

VPSProxy (PHP Secure proxy + GUI)

PHP Secure proxy - программа для туннелирования HTTP/HTTPS трафика через PHP-гейт. На написание меня подтолкнула идея bons'a, в реализации которого не было необходимого мне функционала, и самое главное, GUI. Возможности + Поддержка HTTPS для php-гейтов. + Туннелирование HTTPS трафика добавлено в...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2009/06/10 12:0 a.m.42 views

mrcgiguy freeticket - Cookie Handling / SQL Injection

MRCGIGUY FreeTicket Multiple Remote Vulnerabilities Founder: ThE g0bL!N ------ Home: http:/www.4ckx.com/dz/ ---- Download: http://www.mrcgiguy.com/cgi-bin/freedown.cgi?id=1 Vendor:http://www.mrcgiguy.com Special Thx: Snakespc His0k4 Note: Algerie 3-1 Egypt Exploit: ------ Cookies insecure...

7.4AI score
Exploits0
Rows per page
Query Builder