Lucene search
+L

174 matches found

packetstorm
packetstorm
added 2020/08/04 12:0 a.m.171 views

Pi-hole 4.3.2 Remote Code Execution

!/usr/bin/env python2 Exploit Title: Pi-hole 4.3.2 - Remote Code Execution Authenticated Date: 2020-08-04 Exploit Author: Luis Vacas @CyberVaca Vendor Homepage: https://pi-hole.net/ Software Link: https://github.com/pi-hole/pi-hole Version: = 4.3.2 Tested on: Ubuntu 19.10 CVE : CVE-2020-8816...

6.5CVSS7.2AI score0.7819EPSS
Exploits13
photon
photon
added 2020/07/30 12:0 a.m.80 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0311

An update of 'grub2' packages of Photon OS has been released. This updates fixes CVE-2020-10713 commonly known as BootHole...

4.6CVSS1.1AI score0.01588EPSS
Exploits1
osv
osv
added 2020/07/22 9:50 p.m.18 views

OSV-2020-1256 UNKNOWN WRITE in TIFFReadRGBATileExt

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=14185 Crash type: UNKNOWN WRITE Crash state: TIFFReadRGBATileExt cv::TiffDecoder::readData cv::imread...

7.2AI score
Exploits0References1
osv
osv
added 2020/07/22 9:49 p.m.11 views

OSV-2020-1004 Heap-buffer-overflow in gtTileSeparate

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=13280 Crash type: Heap-buffer-overflow READ 4 Crash state: gtTileSeparate TIFFReadRGBATileExt cv::TiffDecoder::readData...

7.2AI score
Exploits0References1
hackread
hackread
added 2020/06/05 1:4 p.m.30 views

Hackers using malicious CV files to infect PCs with banking trojan

By Deeba Ahmed Here's why one should never open unknown files sent by anonymous users. This is a post from HackRead.com Read the original post: Hackers using malicious CV files to infect PCs with banking trojan...

3AI score
Exploits0
openbugbounty
openbugbounty
added 2020/01/23 4:22 a.m.9 views

cv-library.co.uk Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1073094 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

Exploits0
osv
osv
added 2019/12/06 3:15 p.m.4 views

UBUNTU-CVE-2019-19624

An out-of-bounds read was discovered in OpenCV before 4.1.1. Specifically, variable coarsestscale is assumed to be greater than or equal to finestscale within the calc/oclcalc functions in disflow.cpp. However, this is not true when dealing with small images, leading to an out-of-bounds read of t...

6.5CVSS6.4AI score0.01742EPSS
Exploits1References4
redhat
redhat
added 2019/11/07 4:55 p.m.69 views

Important: Red Hat Security Advisory: OpenShift Container Platform 3.9 atomic-openshift security update

An update for atomic-openshift is now available for Red Hat OpenShift Container Platform 3.9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.5CVSS6.7AI score0.25939EPSS
Exploits4References5
cvelist
cvelist
added 2019/04/18 6:7 p.m.20 views

CVE-2019-11084

GAuth 0.9.9 beta has stored XSS that shows a popup repeatedly and discloses cookies...

6AI score0.00763EPSS
Exploits0References1
ossfuzz
ossfuzz
added 2019/04/11 5:29 p.m.16 views

opencv/imread_fuzzer: Crash in TIFFReadRGBATileExt

Project: https://github.com/opencv/opencv.git Detailed report: https://oss-fuzz.com/testcase?key=5729601348698112 Project: opencv Fuzzer: aflopencvimreadfuzzer Fuzz target binary: imreadfuzzer Job Type: aflasanopencv Platform Id: linux Crash Type: UNKNOWN WRITE Crash Address: 0x7f97d1e3e903 Crash...

6.4AI score
Exploits0Affected Software1
nessus
nessus
added 2019/03/27 12:0 a.m.24 views

openSUSE Security Update : opencv (openSUSE-2019-436)

This update for opencv fixes this security issue : - CVE-2017-18009: Prevent heap-based buffer over-read in the function cv::HdrDecoder::checkSignature bsc1074312. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

7.5CVSS7.7AI score0.02313EPSS
Exploits0References2
ossfuzz
ossfuzz
added 2019/02/22 5:6 p.m.18 views

opencv/imread_fuzzer: Heap-buffer-overflow in gtTileSeparate

Project: https://github.com/opencv/opencv.git Detailed report: https://oss-fuzz.com/testcase?key=5098633869918208 Project: opencv Fuzzer: libFuzzeropencvimreadfuzzer Fuzz target binary: imreadfuzzer Job Type: libfuzzerasanopencv Platform Id: linux Crash Type: Heap-buffer-overflow READ 4 Crash...

6.4AI score
Exploits0Affected Software1
openbugbounty
openbugbounty
added 2018/12/31 9:50 p.m.8 views

cv-motivation.com XSS vulnerability

Open Bug Bounty ID: OBB-717086 Description| Value ---|--- Affected Website:| cv-motivation.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidde...

0.1AI score
Exploits0
openbugbounty
openbugbounty
added 2018/10/12 11:35 p.m.7 views

gigajob.com XSS vulnerability

Open Bug Bounty ID: OBB-685529 Description| Value ---|--- Affected Website:| gigajob.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
nvd
nvd
added 2018/08/06 8:29 p.m.17 views

CVE-2017-8992

HPE has identified a remote privilege escalation vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

9.8CVSS9.5AI score0.02594EPSS
Exploits0References1
prion
prion
added 2018/08/06 8:29 p.m.13 views

Design/Logic Flaw

HPE has identified a remote HOST header attack vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

5.8CVSS6.2AI score0.00974EPSS
Exploits0References1Affected Software1
prion
prion
added 2018/08/06 8:29 p.m.14 views

Cross site scripting

HPE has identified a cross site scripting XSS vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

3.5CVSS5.3AI score0.00547EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2018/08/06 8:0 p.m.21 views

CVE-2017-8991

HPE has identified a cross site scripting XSS vulnerability in HPE CentralView Fraud Risk Management earlier than version CV 6.1. This issue is resolved in HF16 for HPE CV 6.1 or subsequent version...

5.3AI score0.00547EPSS
Exploits0References1
cve
cve
added 2018/08/06 8:0 p.m.43 views

CVE-2018-7069

CVE-2018-7069 corresponds to a remote unauthenticated file-access vulnerability in HPE CentralView Fraud Risk Management versions earlier than CV 6.1. The issue allows unauthenticated remote access to files and is addressed in HF16 for HPE CV 6.1 or newer. Connected sources indicate the flaw affe...

7.5CVSS7.4AI score0.01802EPSS
Exploits0References1Affected Software1
cve
cve
added 2018/08/06 8:0 p.m.39 views

CVE-2018-7068

CVE-2018-7068 is a remote HOST header attack affecting HPE CentralView Fraud Risk Management prior to version CV 6.1. The underlying issue is a HOST header handling vulnerability exposed in earlier builds. The affected line of exploitation is remote, and the issue is resolved in HF16 for HPE CV 6...

6.1CVSS6.2AI score0.00974EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder