Lucene search
K

60 matches found

ATTACKERKB
ATTACKERKB
added 2021/05/21 12:0 a.m.3 views

CVE-2020-4990

IBM Security Guardium 11.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 192710...

8.8CVSS7.9AI score0.0112EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2021/01/22 12:0 a.m.3 views

IBM Security Guardium SQL Injection Vulnerability (CNVD-2021-05465)

IBM Security Guardium is a comprehensive data protection solution that offers a full range of data security features from compliance support to dynamic data shielding. An SQL injection vulnerability exists in IBM Security Guardium 10.6, 11.2. An attacker can exploit this vulnerability by sending...

8.8CVSS7.6AI score0.01501EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.8 views

IBM Security Guardium SQL注入漏洞

IBM Security Guardium is a comprehensive data protection solution that offers a full range of data security features from compliance support to dynamic data shielding. An SQL injection vulnerability exists in IBM Security Guardium 10.6, 11.2. An attacker can exploit this vulnerability by sending...

8.8CVSS7.2AI score0.01501EPSS
Exploits0References8
OSV
OSV
added 2020/06/26 2:15 p.m.5 views

CVE-2019-4650

IBM Maximo Asset Management 7.6.1.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 170961...

6.3CVSS5.9AI score0.00958EPSS
Exploits0References2
OSV
OSV
added 2020/01/09 5:15 p.m.3 views

CVE-2019-4651

IBM Jazz Reporting Service JRS 6.0.6.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 170962...

9.8CVSS6.4AI score0.01367EPSS
Exploits0References2
CNVD
CNVD
added 2018/09/06 12:0 a.m.3 views

Cisco Umbrella API Unauthorized Access Vulnerability

Cisco Umbrella is a cloud security platform. An unauthorized access vulnerability exists in the Cisco Umbrella API due to insufficient authentication configuration of Cisco Umbrella's API interface, which allows an authenticated, remote attacker to view and modify data in his or her organization...

9.1CVSS9.4AI score0.01094EPSS
Exploits0References1
Fedora
Fedora
added 2018/03/30 1:31 p.m.12 views

[SECURITY] Fedora 28 Update: kst-2.0.8-20.fc28

Kst is a real-time data viewing and plotting tool with basic data analysis functionality. Kst contains many powerful built-in features and is expandable with plugins and extensions. Main features of kst include: Robust plotting of live "streaming" data. Powerful keyboard and mouse plot...

1.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.9 views

Vulnerability of the Windows operating system, allowing a malicious individual to execute arbitrary code

A vulnerability that allows for remote execution of code exists in Microsoft Windows and is related to the processing of .bat and .cmd files executed from an external network. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then install...

6.9CVSS5.9AI score0.14736EPSS
Exploits4References3
CNVD
CNVD
added 2015/08/19 12:0 a.m.4 views

Cisco Unified Web Interaction Manager Web Interface Security Restriction Bypass Vulnerability

Cisco Unified Web Interaction Manager is a WEB interaction manager. An input validation vulnerability in Cisco Unified Web Interaction Manager WEBjiekou could be exploited by a remote attacker to submit a special request to view, modify, or delete data stored on the target system...

6.5CVSS6.8AI score0.02456EPSS
Exploits0References1
CNVD
CNVD
added 2015/07/16 12:0 a.m.3 views

Microsoft SQL Server Privilege Vulnerability

Microsoft SQL Server is the United States Microsoft Microsoft company develops and maintains a set of applications in the Microsoft Windows system under the large commercial database system. An elevation of privilege vulnerability exists in Microsoft SQL Server, which can be exploited by an...

6.5CVSS7.8AI score0.185EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/01/06 7:26 a.m.2 views

Movable Type access restriction bypass vulnerability

Overview Movable Type contains an access restriction bypass vulnerability. Movable Type, a web log system from Six Apart KK, contains a vulnerability that allows a remote attacker to bypass access restrictions. This vulnerability is different from JVN08369659. Impact A remote attacker may view or...

5.5CVSS6.6AI score
Exploits0References4
NVD
NVD
added 2009/04/10 10:0 p.m.21 views

CVE-2008-6710

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."...

9CVSS6.5AI score0.02098EPSS
Exploits0References7
Prion
Prion
added 2009/04/10 10:0 p.m.19 views

Design/Logic Flaw

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."...

9CVSS7AI score0.02098EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2009/04/10 10:0 p.m.19 views

Design/Logic Flaw

Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services SES 3.x and 4.0, as used with Avaya Communication Manager 3.1.x, allows remote authenticated users to execute arbitrary commands via unknown vectors related to configuration of "local data viewing or...

9CVSS7.7AI score0.02445EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2009/04/10 3:0 p.m.25 views

CVE-2008-6710

Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1.x before CM 3.1.4 SP2 and 4.0.x before 4.0.3 SP1 allows remote authenticated administrators to gain root privileges via unknown vectors related to "configuring data viewing or restoring credentials."...

6.5AI score0.02098EPSS
Exploits0References7
Cvelist
Cvelist
added 2009/04/10 3:0 p.m.25 views

CVE-2008-6708

Unspecified vulnerability in the Web management interface in Avaya SIP Enablement Services SES 3.x and 4.0, as used with Avaya Communication Manager 3.1.x and 4.x, allows remote authenticated administrators to gain root privileges via unknown vectors related to configuration of "data viewing or...

6.5AI score0.02098EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2009/02/10 11:42 p.m.68 views

USN-717-2: Firefox vulnerabilities

A flaw was discovered in the browser engine when restoring closed tabs. If a user were tricked into restoring a tab to a malicious website with form input controls, an attacker could steal local files on the user's system. CVE-2009-0355 Wladimir Palant discovered that Firefox did not restrict...

5.4CVSS8.3AI score0.01635EPSS
Exploits0
NVD
NVD
added 2007/02/23 3:28 a.m.16 views

CVE-2006-7037

Mathcad 12 through 13.1 allows local users to bypass the security features by directly accessing or editing the XML representation of the worksheet with a text editor or other program, which allows attackers to 1 bypass password protection by replacing the password field with a hash of a known...

4.4CVSS6.3AI score0.00317EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/02/23 1:0 a.m.22 views

CVE-2006-7037

Mathcad 12 through 13.1 allows local users to bypass the security features by directly accessing or editing the XML representation of the worksheet with a text editor or other program, which allows attackers to 1 bypass password protection by replacing the password field with a hash of a known...

6.3AI score0.00317EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2005/04/07 12:0 a.m.14 views

Brooky CubeCart < 2.0.7 Multiple Script SQL Injection

Binary data 2801.prm...

5CVSS7.3AI score0.03026EPSS
Exploits0References2
Rows per page
Query Builder