Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2024/09/09 7:7 p.m.404 views

CVE-2024-45296

The Jira Service Management Data Center/Server DoS issue (CVE-2024-45296) stems from the path-to-regexp dependency, which can generate pathological regular expressions causing DoS on the main thread. Affected: Jira Service Management DC/Server versions 10.2.0–10.5.0. CVSS 3.1 vector: AV:N/AC:L/PR...

7.5CVSS7.1AI score0.00066EPSS
Exploits0References4
seebug.org
seebug.orgadded 2016/01/26 12:0 a.m.67 views

泛微E-Office /inc/priv_user_list/priv_xml.php SQL注入漏洞

0x01 框架概述 泛微e-office是泛微公司面向中小型组织推出的OA产品,简单易用高效,部署快、投资少。提供免费试用体验。至今已为超过一万家客户提供方便高效的办公体验. 官方主页: www.weaver.com.cn 主页截图如下。 0x02 漏洞信息 先对系统进行解密。 /inc/privuserlist/privxml.php 大概18行开始 $pararr = explodestpar $REQUEST'par' ; $userpriv = $pararr'userpriv'; ... if $pararr'viewtype' == 0 unset $deptnameutf8...

7AI score
Exploits0
seebug.org
seebug.orgadded 2015/04/20 12:0 a.m.18 views

某政府在用系统任意文件上传getshell

简要描述: 某政府在用系统任意文件上传getshell 详细说明: 问题厂商:深圳太极软件有限公司 一套专门的政务服务系统 该系统的使用量非常大。由于该系统的fckeditor版本教老,可直接上传任意文件至服务器 /FCKeditor/editor/filemanager/connectors/jsp/upload.jsp?Type=File 保持如下内容为upload.htm 上传任意文件即可 None...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2014/09/22 12:0 a.m.24 views

海天OA系统存在SQL注入(sa权限)

简要描述: RT 详细说明: 海天OA存在一处sql注入 海天OA官网:http://www.haitiansoft.com:8080/ 前人也有提交过我就不写那么多案例了,下面就用5个案例来做安全测试! SQL注入点: Documents/FolderInfor.asp?POAID=1 漏洞证明: 1.http://180...94/Documents/FolderInfor.asp?POAID=1 2.http://oa.tu.edu.cn/Documents/FolderInfor.asp?POAID=1...

7.1AI score
Exploits0
seebug.org
seebug.orgadded 2012/02/27 12:0 a.m.13 views

PHPCMS V9 libs-functions-global.func.php sql注入漏洞

No description provided by source...

7.1AI score
Exploits0
0day.today
0day.todayadded 2010/12/14 12:0 a.m.29 views

Crystal Reports Viewer 12.0.0.549 Activex Exploit (PrintControl.dll)

Exploit for windows platform in category remote exploits ==================================================================== Crystal Reports Viewer 12.0.0.549 Activex Exploit PrintControl.dll ==================================================================== //payload is windows/exec...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2009/12/31 12:0 a.m.15 views

AwingSoft Winds3D Player 3.5 SceneURL Download and Execute

$Id: awingsoftwinds3dsceneurl.rb 7724 2009-12-06 05:50:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.4AI score
Exploits0
seebug.org
seebug.orgadded 2007/03/24 12:0 a.m.13 views

IASystemInfo.DLL ActiveX控件缓冲区溢出漏洞

InterActual Player用于播放DVD等视频的媒体播放程序,CinePlayer也是功能强大的媒体播放程序。 InterActual Player/CinePlayer包含的ActiveX控件存在缓冲区溢出问题,远程攻击者可以利用漏洞以应用程序进程权限执行任意指令。 问题存在于IASystemInfo.dll ActiveX控件处理"ApplicationType"属性存在边界错误,超长的超过260字节的字符串可触发漏洞,可导致以应用程序进程权限执行任意指令。 Roxio CinePlayer 3.2 InterActual Technologies InterActual...

7.1AI score
Exploits0
Rows per page
Query Builder