Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-3293

Malware in sbrugna...

4.9CVSS6.1AI score0.0089EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2006-4421

Malware in sbrugna...

7.5CVSS6.4AI score0.01843EPSS
Exploits0References8
OSV
OSV
added 2024/10/28 12:30 a.m.15 views

GHSA-HXF3-VGPM-FV9P CycloneDX cdxgen may execute code contained within build-related files

CycloneDX cdxgen prior to 11.1.7, when run against an untrusted codebase, may execute code contained within build-related files such as build.gradle.kts, a similar issue to CVE-2022-24441. cdxgen is used by, for example, OWASP dep-scan. NOTE: this has been characterized as a design limitation,...

7.1CVSS7.9AI score0.00831EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2024/10/28 12:30 a.m.19 views

CycloneDX cdxgen may execute code contained within build-related files

CycloneDX cdxgen prior to 11.1.7, when run against an untrusted codebase, may execute code contained within build-related files such as build.gradle.kts, a similar issue to CVE-2022-24441. cdxgen is used by, for example, OWASP dep-scan. NOTE: this has been characterized as a design limitation,...

7.2CVSS7.9AI score0.00831EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2024/10/27 10:15 p.m.19 views

CVE-2024-50611

CycloneDX cdxgen through 10.10.7, when run against an untrusted codebase, may execute code contained within build-related files such as build.gradle.kts, a similar issue to CVE-2022-24441. cdxgen is used by, for example, OWASP dep-scan. NOTE: this has been characterized as a design limitation,...

7.2CVSS0.00831EPSS
Exploits0References3
OSV
OSV
added 2024/10/27 10:15 p.m.13 views

CVE-2024-50611

CycloneDX cdxgen through 10.10.7, when run against an untrusted codebase, may execute code contained within build-related files such as build.gradle.kts, a similar issue to CVE-2022-24441. cdxgen is used by, for example, OWASP dep-scan. NOTE: this has been characterized as a design limitation,...

7.2CVSS8.9AI score
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/05/26 1:15 p.m.30 views

CVE-2020-25697

A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...

7CVSS7AI score0.00326EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/09/14 12:0 a.m.29 views

CVE-2007-4465

Cross-site scripting XSS vulnerability in modautoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that th...

5.3AI score0.26188EPSS
Exploits0References42
Debian CVE
Debian CVE
added 2007/09/14 12:0 a.m.37 views

CVE-2007-4465

Cross-site scripting XSS vulnerability in modautoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that th...

6.1CVSS5.5AI score0.26188EPSS
Exploits0
NVD
NVD
added 2007/06/13 10:30 a.m.39 views

CVE-2007-3205

The parsestr function in 1 PHP, 2 Hardened-PHP, and 3 Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the...

5CVSS6.7AI score0.02075EPSS
Exploits0References7
Prion
Prion
added 2007/06/13 10:30 a.m.24 views

Input validation

The parsestr function in 1 PHP, 2 Hardened-PHP, and 3 Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the...

5CVSS7AI score0.02075EPSS
Exploits0References7
NVD
NVD
added 2006/12/31 5:0 a.m.23 views

CVE-2006-6893

Tor allows remote attackers to discover the IP address of a hidden service by accessing this service at a high rate, thereby changing the server's CPU temperature and consequently changing the pattern of time values visible through 1 ICMP timestamps, 2 TCP sequence numbers, and 3 TCP timestamps, ...

5CVSS6.2AI score0.02112EPSS
Exploits1References3
CVE
CVE
added 2005/12/15 11:0 a.m.54 views

CVE-2005-4260

CVE-2005-4260 is an XSS vulnerability in PHP-Nuke 7.9 and later, where an interpretation conflict in includes/mainfile.php allows remote attackers to inject scripts by replacing the ">" with "

4.3CVSS6.1AI score0.02113EPSS
Exploits1References3Affected Software1
securityvulns
securityvulns
added 2002/04/25 12:0 a.m.49 views

CORE-20020409: Multiple vulnerabilities in stack smashing protection technologies

CORE SECURITY TECHNOLOGIES Advisory http://www.corest.com Multiple vulnerabilities in stack smashing protection technologies Date Published: 2002-04-23 Last Update: 2002-04-23 Advisory ID: CORE-20020409 Bugtraq ID: Non-assigned yet CVE CAN: Non-assigned yet Title: Multiple vulnerabilities in stac...

7.8AI score
Exploits0
Core Security
Core Security
added 1976/01/01 12:0 a.m.21 views

Multiple vulnerabilities in stack smashing protection technologies.

Advisory ID Internal CORE-20020409 Advisory Information: Advisory ID: CORE-20020409 Bugtraq ID:4586, 4589 CVE Name: Non-assigned yet Title: Multiple vulnerabilities in stack smashing protection technologies. Class: Design limitation, Implementation flaw Remotely Exploitable: Yes Locally...

7.7AI score
Exploits0
Rows per page
Query Builder