Lucene search
K

18 matches found

OpenVAS
OpenVAS
added 2025/12/11 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2025-2531)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.7AI score0.02782EPSS
Exploits2References2
Wordfence Blog
Wordfence Blog
added 2024/03/18 3:1 p.m.37 views

Too Much Escaping Backfires, Allows Shortcode-Based XSS Vulnerability in Contact Form Entries WordPress Plugin

🎉 Did you know were running a Bug Bounty Extravaganza again? Earn over 6x our usual bounty rates, up to $10,000, for all vulnerabilities submitted through May 27th, 2024 when you opt to have Wordfence handle responsible disclosure! On February 24th, 2024, during our second Bug Bounty Extravaganza...

5.5CVSS4.9AI score0.00593EPSS
Exploits0
0day.today
0day.today
added 2023/09/11 12:0 a.m.316 views

WordPress Slimstat Analytics 5.0.9 Cross Site Scripting / SQL Injection Vulnerabilities

Vulnerability Summary from Wordfence Intelligence Description: Slimstat Analytics = 5.0.9 – Authenticated Contributor+ Stored Cross-Site Scripting via Shortcode Affected Plugin: Slimstat Analytics Plugin Slug: wp-slimstat Affected Versions: = 5.0.9 CVE ID: CVE-2023-4597 CVSS Score: 6.4 Medium CVS...

8.8CVSS6.7AI score0.00916EPSS
Exploits4
Packet Storm
Packet Storm
added 2023/05/23 12:0 a.m.237 views

Affiliate Me 5.0.1 SQL Injection

Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023. CVSS 3.1: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Tactic: Initial Access TA0001 Technique: Exploit Public-Facing Application T1190 Application Name: Affiliate Me Application Version:...

7.1AI score
Exploits0
Wordfence Blog
Wordfence Blog
added 2023/05/22 2:49 p.m.24 views

W3 Eden Addresses Authenticated Stored XSS Vulnerability in Download Manager WordPress Plugin

On April 25, 2023, our Wordfence Threat Intelligence team identified and began the responsible disclosure process for a stored Cross-Site Scripting XSS vulnerability in W3 Eden’s Download Manager plugin, which is actively installed on more than 100,000 WordPress websites, making it one of the mos...

4.9CVSS6AI score0.00646EPSS
Exploits2
OpenVAS
OpenVAS
added 2023/02/24 12:0 a.m.24 views

Fedora: Security Advisory for golang-github-need-being-tree (FEDORA-2023-c9b2182a4e)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.7AI score0.00818EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/07/18 12:0 a.m.16 views

Fedora: Security Advisory for golang-github-intel-goresctrl (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS9.1AI score0.05994EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/07/06 12:0 a.m.9 views

Fedora: Security Advisory for golang-github-hashicorp-hclog (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05994EPSS
Exploits4References2
Packet Storm
Packet Storm
added 2019/10/14 12:0 a.m.320 views

Open-Xchange OX App Suite SSRF / XSS / Information Disclosure / Access Controls

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Dear subscribers, we're sharing our latest advisory with you and like to thank everyone who contributed in finding and solving those vulnerabilities. Feel free to join our bug bounty programs appsuite, dovecot, powerdns at HackerOne. Yours sincerely...

0.1AI score0.01162EPSS
Exploits4
Hacker One
Hacker One
added 2019/08/31 11:38 a.m.20 views

Nextcloud: Persistent XSS on favorite via filename

CVSS ---- Medium 6.4 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Description ----------- The name of a file is echoed without encoding when favoring the file, leading to persistent XSS. POC --- To place the payload: - Create a file called test'".pdf and upload it. To trigger the payload: - click...

2.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2016/07/24 12:0 a.m.29 views

VUPlayer 2.49 - (.pls) Buffer Overflow Vulnerability

Document Title: =============== VUPlayer 2.49 - .pls Buffer Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1876 Release Date: ============= 2016-07-24 Vulnerability Laboratory ID VL-ID: ==================================== 1876...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/04/21 12:0 a.m.27 views

Mobile Drive HD 1.8 - Local File Inclusion

Document Title: =============== Mobile Drive HD v1.8 - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1446 Release Date: ============= 2015-03-11 Vulnerability Laboratory ID VL-ID: ==================================== 1446...

7AI score
Exploits0
securityvulns
securityvulns
added 2014/11/03 12:0 a.m.45 views

iFunBox Free v1.1 iOS - File Include Vulnerability

Document Title: =============== iFunBox Free v1.1 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1344 Release Date: ============= 2014-10-20 Vulnerability Laboratory ID VL-ID: ==================================== 1344...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2012/08/24 12:0 a.m.28 views

Fedora Update for rubygem-actionpack FEDORA-2012-11870

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.4CVSS7.8AI score0.046EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2012/07/03 12:0 a.m.41 views

Fedora Update for rubygem-actionpack FEDORA-2012-9636

Check for the Version of rubygem-actionpack OpenVAS Vulnerability Test Fedora Update for rubygem-actionpack FEDORA-2012-9636 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

6.4CVSS0.1AI score0.046EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2012/07/03 12:0 a.m.41 views

Fedora Update for rubygem-actionpack FEDORA-2012-9636

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.4CVSS7.8AI score0.046EPSS
Exploits3References2
canvas
canvas
added 2010/04/01 4:30 p.m.55 views

Immunity Canvas: JAVA_DESERIALIZE2

Name| javadeserialize2 ---|--- CVE| CVE-2010-0094 Exploit Pack| CANVAS Description| javadeserialize2 Notes| CVE Name: CVE-2010-0094 VENDOR: Sun OSVDB: http://osvdb.org/show/osvdb/63484 Repeatability: Infinite client side - no crash References:...

7.5CVSS9.7AI score0.81593EPSS
Exploits5
OpenVAS
OpenVAS
added 2009/05/11 12:0 a.m.14 views

Debian Security Advisory DSA 1795-1 (ldns)

The remote host is missing an update to ldns announced via advisory DSA 1795-1. OpenVAS Vulnerability Test $Id: deb17951.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1795-1 ldns Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.4CVSS0.8AI score0.03473EPSS
Exploits0
Rows per page
Query Builder