Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3094 matches found

RedHat Linux
RedHat Linuxadded 2012/01/31 10:57 p.m.3 views

tomcat: security manager restrictions bypass

Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service infinite lo...

4.4CVSS6.1AI score0.00699EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2012/01/31 10:56 p.m.4 views

tomcat: security manager restrictions bypass

Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service infinite lo...

4.4CVSS6.1AI score0.00699EPSS
Exploits1References4
Nmap
Nmapadded 2012/01/31 8:22 p.m.447 views

http-qnap-nas-info NSE Script

Attempts to retrieve the model, firmware version, and enabled services from a QNAP Network Attached Storage NAS device. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline,...

10CVSS9.2AI score0.99448EPSS
Exploits33
RedHat Linux
RedHat Linuxadded 2012/01/19 5:21 p.m.3 views

tomcat: security manager restrictions bypass

Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service infinite lo...

4.4CVSS6.1AI score0.00699EPSS
Exploits1References4
OSV
OSVadded 2011/12/15 3:57 a.m.5 views

CVE-2011-4598

The handlerequestinfo function in channels/chansip.c in Asterisk Open Source 1.6.2.x before 1.6.2.21 and 1.8.x before 1.8.7.2, when automon is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted sequence of SIP requests...

6.3AI score
Exploits0References6
OSV
OSVadded 2011/12/15 3:57 a.m.3 views

DEBIAN-CVE-2011-4598

The handlerequestinfo function in channels/chansip.c in Asterisk Open Source 1.6.2.x before 1.6.2.21 and 1.8.x before 1.8.7.2, when automon is enabled, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a crafted sequence of SIP requests...

4.3CVSS6.5AI score0.02443EPSS
Exploits0References1
The Hacker News
The Hacker Newsadded 2011/12/08 7:11 p.m.13 views

Hack a webcam and a film camera into a USB microscope

Hack a webcam and a film camera into a USB microscope Have you ever wanted to inspect or photograph something up close, but could not find amagnifying glass or did not have enough light on your subject? Well read on, because this project will do the job for you at little or no cost called "My...

6.6AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2011/12/05 5:39 p.m.3 views

tomcat: security manager restrictions bypass

Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service infinite lo...

4.4CVSS6.1AI score0.00699EPSS
Exploits1References4
Prion
Prionadded 2011/11/29 12:55 a.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in includes/templates/templatedefault/common/tplheadertestinfo.php in Zen Cart 1.3.9h, when debugging is enabled, might allow remote attackers to inject arbitrary web script or HTML via the 1 mainpage parameter or 2 PATHINFO, a different...

4.3CVSS5.9AI score0.0161EPSS
Exploits2References3Affected Software1
Exploit DB
Exploit DBadded 2011/10/12 12:0 a.m.83 views

Mozilla Firefox - 'Array.reduceRight()' Integer Overflow (1)

Title: Mozilla Firefox Array.reduceRight Integer Overflow Exploit Date: 12 Oct 2011 Author: Matteo Memelli ryujin -AT- offensive-security.com CVE-2011-2371 Full exploit package: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/17974.zip ff-i- Title: Mozilla Firefox...

10CVSS7AI score0.75691EPSS
Exploits17
OpenVAS
OpenVASadded 2011/09/27 12:0 a.m.12 views

Fedora Update for nss FEDORA-2011-12300

Check for the Version of nss OpenVAS Vulnerability Test Fedora Update for nss FEDORA-2011-12300 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

7.4AI score
Exploits0References2
Packet Storm
Packet Stormadded 2011/08/07 12:0 a.m.107 views

HP JetDirect PJL Interface Universal Path Traversal

Exploit Title: HP JetDirect PJL Interface Universal Path Traversal Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial...

7.8CVSS0.2AI score0.1313EPSS
Exploits14
Exploit DB
Exploit DBadded 2011/08/07 12:0 a.m.119 views

HP JetDirect PJL - Interface Universal Directory Traversal (Metasploit)

Exploit Title: HP JetDirect PJL Interface Universal Path Traversal Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial...

7.8CVSS6.6AI score0.1313EPSS
Exploits14
Positive Technologies
Positive Technologiesadded 2011/07/14 12:0 a.m.8 views

PT-2011-3914 · Apache +3 · Apache Tomcat +3

Name of the Vulnerable Software and Affected Versions: Apache Tomcat versions 5.5.x through 5.5.33 Apache Tomcat versions 6.x through 6.0.32 Apache Tomcat versions 7.x through 7.0.18 Description: The issue allows local users to bypass intended file access restrictions or cause a denial of service...

7.5CVSS5.8AI score0.9444EPSS
Exploits38References111
OSV
OSVadded 2011/07/08 8:55 p.m.5 views

CVE-2011-2465

Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone RPZ contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service named daemon crash via an unspecified query...

2.6CVSS6.5AI score0.0888EPSS
Exploits1References11
OSV
OSVadded 2011/07/08 8:55 p.m.1 views

DEBIAN-CVE-2011-2465

Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is enabled and the Response Policy Zone RPZ contains DNAME or certain CNAME records, allows remote attackers to cause a denial of service named daemon crash via an unspecified query...

2.6CVSS6.4AI score0.0888EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2011/06/28 12:0 a.m.66 views

ManageEngine ServiceDesk Plus Detection

The remote web server hosts ManageEngine ServiceDesk Plus, a web-based help desk management application written in Java. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid55444; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/03/15...

5.4AI score
Exploits0References1
OSV
OSVadded 2011/05/09 10:55 p.m.8 views

CVE-2011-1907

ISC BIND 9.8.x before 9.8.0-P1, when Response Policy Zones RPZ RRset replacement is enabled, allows remote attackers to cause a denial of service assertion failure and daemon exit via an RRSIG query...

5CVSS6.5AI score0.05368EPSS
Exploits1References7
RedHat Linux
RedHat Linuxadded 2011/02/16 3:18 p.m.30 views

Low: Red Hat Security Advisory: fence security, bug fix, and enhancement update

An updated fence package that fixes multiple security issues, several bugs, and adds two enhancements is now available for Red Hat Cluster Suite 4. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which...

6.9CVSS5.7AI score0.00711EPSS
Exploits0References18
Prion
Prionadded 2011/02/03 5:0 p.m.8 views

Design/Logic Flaw

Smarty before 3.0.0, when security is enabled, does not prevent access to the 1 dynamic and 2 private object members of an assigned object, which has unspecified impact and remote attack vectors...

9.3CVSS7.3AI score0.01656EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder