Lucene search
K

118 matches found

Prion
Prion
added 2017/06/01 4:29 p.m.11 views

Code injection

Atlassian Eucalyptus before 4.4.1, when in EDGE mode, allows remote authenticated users with certain privileges to cause a denial of service E2 service outage via unspecified vectors...

3.5CVSS6AI score0.01019EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/02/13 9:59 p.m.3 views

CVE-2016-9346

An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. Configuration data are stored in a file that is not encrypted...

5.3CVSS5.8AI score0.01233EPSS
Exploits0References2
CVE
CVE
added 2017/02/13 9:0 p.m.46 views

CVE-2016-9344

The CVE-2016-9344 issue affects Moxa MiiNePort E1 (pre-1.8), E2 (pre-1.4), and E3 (pre-1.1) devices. Affects the authentication flow by allowing an attacker to brute-force an active session cookie to download configuration files. Reported impact includes potential exposure of configuration data; ...

7.5CVSS7.3AI score0.01633EPSS
Exploits0References2Affected Software3
OSV
OSV
added 2016/05/31 1:59 a.m.5 views

CVE-2016-2295

Moxa MiiNePortE14641 devices with firmware 1.1.10 Build 09120714, MiiNePortE17080 devices with firmware 1.1.10 Build 09120714, MiiNePortE21242 devices with firmware 1.1 Build 10080614, MiiNePortE24561 devices with firmware 1.1 Build 10080614, and MiiNePort E3 devices with firmware 1.0 Build...

7.5CVSS5.8AI score0.01505EPSS
Exploits0References2
OSV
OSV
added 2016/05/31 1:59 a.m.3 views

CVE-2016-2286

Moxa MiiNePortE14641 devices with firmware 1.1.10 Build 09120714, MiiNePortE17080 devices with firmware 1.1.10 Build 09120714, MiiNePortE21242 devices with firmware 1.1 Build 10080614, MiiNePortE24561 devices with firmware 1.1 Build 10080614, and MiiNePort E3 devices with firmware 1.0 Build...

7.5CVSS5.8AI score0.01427EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2016/03/13 1:38 a.m.11 views

e2.emediate.se Open Redirect vulnerability

Vulnerable URL: http://e2.emediate.se/eas?camp=121995;kw=ringspann;EASLink=https://xssposed.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2014/10/15 12:0 a.m.74 views

SQL Injection in Е2

Advisory ID: HTB23222 Product: Е2 Vendor: Ilya Birman Vulnerable Versions: v2844 and probably prior Tested Version: v2844 Advisory Publication: July 2, 2014 without technical details Vendor Notification: July 2, 2014 Vendor Patch: July 3, 2014 Public Disclosure: July 23, 2014 Vulnerability Type:...

7.5CVSS0.3AI score0.02348EPSS
Exploits3
NVD
NVD
added 2014/07/24 2:55 p.m.32 views

CVE-2014-4736

SQL injection vulnerability in E2 before 2.4 2845 allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process...

7.5CVSS8.2AI score0.02348EPSS
Exploits3References4
Prion
Prion
added 2014/07/24 2:55 p.m.25 views

Sql injection

SQL injection vulnerability in E2 before 2.4 2845 allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process...

7.5CVSS9AI score0.02348EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2014/07/24 2:0 p.m.37 views

CVE-2014-4736

SQL injection vulnerability in E2 before 2.4 2845 allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process...

8.2AI score0.02348EPSS
Exploits3References4
CVE
CVE
added 2014/07/24 2:0 p.m.58 views

CVE-2014-4736

CVE-2014-4736 describes an SQL injection in E2 before 2.4 (2845) via the note-id parameter to /@actions/comment-process. The root cause is insufficient input sanitization, allowing remote attackers to inject arbitrary SQL commands, potentially adding/modifying/deleting records or gaining site acc...

7.5CVSS8.5AI score0.02348EPSS
Exploits3References4Affected Software1
0day.today
0day.today
added 2014/07/24 12:0 a.m.65 views

E2 2844 SQL Injection Vulnerability

E2 version 2844 suffers from a remote SQL injection vulnerability. Product: Е2 Vendor: Ilya Birman Vulnerable Versions: v2844 and probably prior Tested Version: v2844 Advisory Publication: July 2, 2014 without technical details Vendor Notification: July 2, 2014 Vendor Patch: July 3, 2014 Public...

7.5CVSS7.6AI score0.02348EPSS
Exploits3
Packet Storm
Packet Storm
added 2014/07/23 12:0 a.m.50 views

E2 2844 SQL Injection

Advisory ID: HTB23222 Product: Е2 Vendor: Ilya Birman Vulnerable Versions: v2844 and probably prior Tested Version: v2844 Advisory Publication: July 2, 2014 without technical details Vendor Notification: July 2, 2014 Vendor Patch: July 3, 2014 Public Disclosure: July 23, 2014 Vulnerability Type:...

7.5CVSS6.6AI score0.02348EPSS
Exploits3
exploitpack
exploitpack
added 2014/07/23 12:0 a.m.25 views

Ilya Birman E2 - @actionscomment-process SQL Injection

Ilya Birman E2 - @actionscomment-process SQL Injection source: https://www.securityfocus.com/bid/68843/info Ilya Birman E2 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to compromise the application,...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/23 12:0 a.m.34 views

Ilya Birman E2 - '/@actions/comment-process' SQL Injection

source: https://www.securityfocus.com/bid/68843/info Ilya Birman E2 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities ...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2012/07/11 8:52 p.m.10 views

Indian Officials Get Training from Hackers who cracked CERN's IT system

Two Argentina-based cyber security experts - Chris Russo and Fernando Viacanel, who claimed to have cracked the security code of IT systems involved in the discovery of 'God Particle', today conducted training sessions for Indian government officials. Both the hackers are partners of IT security...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2011/05/03 12:0 a.m.13 views

E2 Photo Gallery 0.9 - index.php Cross-Site Scripting

E2 Photo Gallery 0.9 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47697/info E2 Photo Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/05/03 12:0 a.m.22 views

E2 Photo Gallery 0.9 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47697/info E2 Photo Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Rows per page
Query Builder