Lucene search
+L

12 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-18034

Malware in sbrugna...

5.5CVSS5.4AI score0.03663EPSS
Exploits5References4
zdt
zdt
added 2017/11/28 12:0 a.m.44 views

Diving Log 6.0 - XML External Entity Injection Vulnerability

Exploit for windows platform in category local exploits + Exploit Title: Diving Log 6.0 XXE Injection + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version...

4.3CVSS5.7AI score0.03663EPSS
Exploits5
exploitpack
exploitpack
added 2017/11/27 12:0 a.m.40 views

Diving Log 6.0 - XML External Entity Injection

Diving Log 6.0 - XML External Entity Injection + Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt...

4.3CVSS0.1AI score0.03663EPSS
Exploits5
packetstorm
packetstorm
added 2017/11/27 12:0 a.m.39 views

Diving Log 6.0 XML External Entity Injection

Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version: 6.0 + Tested on: Windows 7 SP1,...

4.3CVSS0.1AI score0.03663EPSS
Exploits5
exploitdb
exploitdb
added 2017/11/27 12:0 a.m.65 views

Diving Log 6.0 - XML External Entity Injection

Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version: 6.0 + Tested on: Windows 7 SP1,...

5.5CVSS5.5AI score0.03663EPSS
Exploits5
cnvd
cnvd
added 2017/09/12 12:0 a.m.4 views

Diving Log dive.xml File Information Disclosure Vulnerability

Diving Log is a dive log management software. The software supports data import, log printing and log sharing. A security vulnerability exists in Diving Log version 6.0. A remote attacker can exploit this vulnerability to view local files with the help of a specially crafted dive.xml file...

5.5CVSS5.2AI score0.03663EPSS
Exploits5References1
nvd
nvd
added 2017/09/08 10:29 a.m.24 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.5CVSS5.3AI score0.03663EPSS
Exploits5References2
prion
prion
added 2017/09/08 10:29 a.m.17 views

Xxe

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

4.3CVSS5.2AI score0.03663EPSS
Exploits5References2Affected Software1
osv
osv
added 2017/09/08 10:29 a.m.4 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.5CVSS5.8AI score0.03663EPSS
Exploits5References2
cvelist
cvelist
added 2017/09/08 10:0 a.m.25 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.2AI score0.03663EPSS
Exploits5References2
cve
cve
added 2017/09/08 10:0 a.m.65 views

CVE-2017-9095

CVE-2017-9095 affects Diving Log 6.0 and is an XML External Entity (XXE) vulnerability in the dive.xml import workflow (Subsurface import). An attacker can disclose local files via a crafted dive.xml file. Public exploit references document an XXE payload and steps to exfiltrate data to a remote ...

5.5CVSS5.2AI score0.03663EPSS
Exploits5References2Affected Software1
ptsecurity
ptsecurity
added 2017/09/08 12:0 a.m.6 views

PT-2017-18698 · Diving Log · Diving Log

Name of the Vulnerable Software and Affected Versions: Diving Log version 6.0 Description: The issue allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import. This is related to an XXE XML External Entity issue. Recommendations: F...

5.5CVSS5.3AI score0.03663EPSS
Exploits5References3
Rows per page
Query Builder