Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OpenVAS
OpenVASadded 2021/11/11 12:0 a.m.17 views

Mozilla Firefox Security Advisory (MFSA2012-17) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.5CVSS9.6AI score0.03436EPSS
Exploits0References3
OSV
OSVadded 2021/05/07 4:16 p.m.12 views

GHSA-2CF2-2383-H4JV Improperly Controlled Modification of Dynamically-Determined Object Attributes in querymen

querymen prior to 2.1.4 allows modification of object properties. The parameters of exported function handlertype, name, fn can be controlled by users without any sanitization. This could be abused for Prototype Pollution attacks...

5.3CVSS5.3AI score0.00319EPSS
Exploits1References3
Github Security Blog
Github Security Blogadded 2021/02/17 7:50 p.m.199 views

Dynamic modification of RPyC service due to missing security check

Impact Version 4.1.0 of RPyC has a vulnerability that affects custom RPyC services making it susceptible to authenticated remote attacks. Patches Git commits between September 2018 and October 2019 and version 4.1.0 are vulnerable. Use a version of RPyC that is not affected. Workarounds The commi...

7.5CVSS0.4AI score0.73039EPSS
Exploits2References7Affected Software1
Prion
Prionadded 2019/10/03 8:15 p.m.12 views

Default configuration

In RPyC 4.1.x through 4.1.1, a remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings...

5CVSS7.5AI score0.73039EPSS
Exploits2References4Affected Software1
myhack58
myhack58added 2016/05/20 12:0 a.m.459 views

Use CouchDB to unauthorized access vulnerability to execute arbitrary system commands-bug warning-the black bar safety net

5 on 1 6, Ali cloud shield defense against the team from external sources informed that the CouchDB database exists for unauthorized access vulnerabilities in the configuration is incorrect. After the test, the cloud shield team was the first to discover the use of the unauthorized access...

0.3AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2012/03/14 7:17 a.m.1 views

Mozilla: Crash when accessing keyframe cssText after dynamic modification (MFSA 2012-17)

The Cascading Style Sheets CSS implementation in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote attackers to cause a denial of service application crash or possibly execute...

7.5CVSS7.8AI score0.03436EPSS
Exploits0References4
Mozilla
Mozillaadded 2012/03/13 12:0 a.m.41 views

Crash when accessing keyframe cssText after dynamic modification — Mozilla

Mozilla community member Daniel Glazman of Disruptive Innovations reported a crash when accessing a keyframe's cssText after dynamic modification. This crash may be potentially exploitable...

7.5CVSS2.9AI score0.03436EPSS
Exploits0References2Affected Software5
Rows per page
Query Builder