Lucene search
K

8688 matches found

CNVD
CNVD
added 2017/09/07 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Hospitality OPERA 5 Property Services Component (CNVD-2017-31738)

Oracle Hospitality Applications is a suite of business applications, servers and storage solutions for hotel management from Oracle Corporation. The solution provides human resource cost management, tracking and management of services throughout a customer's journey to improve customer...

4.4CVSS5.3AI score0.01501EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/09/06 12:0 a.m.29 views

openSUSE Security Update : cacti / cacti-spine (openSUSE-2017-999)

This update for cacti and cacti-spine fixes security issues and bugs. The following vulnerabilities were fixed : - CVE-2017-12927: Cross-site scripting vulnerability in methodparameter bsc1054390 - CVE-2017-12978:Cross-site scripting vulnerability via the title field bsc1054742 It also contains a...

6.1CVSS6.3AI score0.01374EPSS
Exploits0References4
CNVD
CNVD
added 2017/08/29 12:0 a.m.2 views

Framadate CSV Export Input Validation Vulnerability

Framadate is a free polling software developed by the Framadate team.CSV Export is one of the CVS Comma Separated Values export components. A security vulnerability exists in CSV Export in Framadate version 1.0. An attacker can exploit this vulnerability to obtain information and execute code...

9.8CVSS9.3AI score0.02625EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/29 12:0 a.m.4 views

XWiki labs CryptPad pad export cross-site scripting vulnerability

XWiki labs CryptPad is an editor from XWiki labs. pad export is one of the modules for exporting files in pad format. A cross-site scripting vulnerability exists in pad export in XWiki labs CryptPad versions prior to 1.1.1. A remote attacker can exploit this vulnerability to inject arbitrary web...

6.1CVSS6AI score0.01157EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/28 12:0 a.m.2 views

Kaspersky Internet Security for Android Security Bypass Vulnerability

Kaspersky Internet Security for Android is a set of security software based on the Android platform developed by the Russian Kaspersky Lab Kaspersky Lab with both antivirus and firewall functions. A security vulnerability exists in version 11.12.4.1622 of Kaspersky Internet Security for Android,...

9.8CVSS9.3AI score0.01505EPSS
Exploits0References1
n0where
n0where
added 2017/08/15 6:30 a.m.46 views

Open Distributed Threat Intelligence: Yeti

Yeti is a platform meant to organize observables, indicators of compromise, TTPs, and knowledge on threats in a single, unified repository. Yeti will also automatically enrich observables e.g. resolve domains, geolocate IPs so that you don’t have to. Yeti provides an interface for humans shiny...

7.1AI score
Exploits0References2
n0where
n0where
added 2017/08/12 1:38 a.m.205 views

Visualize network Topologies From pcap Files: PcapViz

PcapViz visualizes network topologies and provides graph statistics based on pcap files. It should be possible to determine key topological nodes or data exfiltration attempts more easily. Features Draw network topologies Layer 2 and communication graphs Layer 3 and 4 Network topologies contain...

6.7AI score
Exploits0References1
FreeBSD
FreeBSD
added 2017/08/10 12:0 a.m.30 views

GitLab -- two vulnerabilities

GitLab reports: Remote Command Execution in git client An external code review performed by Recurity-Labs identified a remote command execution vulnerability in git that could be exploited via the "Repo by URL" import option in GitLab. The command line git client was not properly escaping command...

8.8CVSS9.2AI score0.0354EPSS
Exploits1References1
OSV
OSV
added 2017/08/08 3:29 p.m.3 views

CVE-2017-10195

Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications subcomponent: Import/Export. The supported version that is affected is 2.8. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hospitality...

4.3CVSS7.3AI score0.01685EPSS
Exploits0References3
NVD
NVD
added 2017/08/08 3:29 p.m.15 views

CVE-2017-10182

Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications subcomponent: OPERA Export Functionality. Supported versions that are affected are 5.4.0.x, 5.4.1.x and 5.4.3.x. Difficult to exploit vulnerability allows high privileged attacker with...

4.4CVSS3.4AI score0.01501EPSS
Exploits0References3
OSV
OSV
added 2017/08/08 3:29 p.m.3 views

CVE-2017-10182

Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications subcomponent: OPERA Export Functionality. Supported versions that are affected are 5.4.0.x, 5.4.1.x and 5.4.3.x. Difficult to exploit vulnerability allows high privileged attacker with...

4.4CVSS7.3AI score0.01501EPSS
Exploits0References3
CVE
CVE
added 2017/08/08 3:0 p.m.53 views

CVE-2017-10195

Oracle Hospitality Simphony (Import/Export subcomponent) in Oracle Hospitality Applications is affected, specifically version 2.8. The vulnerability allows unauthenticated network access over HTTP to compromise Simphony, with attacks requiring user interaction and potentially enabling unauthorize...

4.3CVSS4.1AI score0.01685EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2017/08/04 12:0 a.m.2 views

Oracle Hospitality Simphony Remote Vulnerability (CNVD-2017-26286)

Oracle Hospitality Applications is a suite of business applications, servers and storage solutions for hospitality management from Oracle Corporation. Oracle Hospitality Simphony is one of the cloud-based mobile food and beverage sales components of the solution, which provides human resource cos...

7.5CVSS7.8AI score0.0191EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/04 12:0 a.m.4 views

Pegasystem PEGA Platform Access Control Vulnerability

Pegasystem PEGA Platform is a suite of application development platforms from Pegasystem UK. The platform is used to develop applications for BPM Business Process Management, Case Management, Real Time Decision Making and CRM Customer Relationship Management. A security vulnerability exists in th...

6.5CVSS6.1AI score0.03503EPSS
Exploits4References1
OSV
OSV
added 2017/08/02 7:29 p.m.2 views

CVE-2017-11356

The application distribution export functionality in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information by leveraging a missing access control...

6.5CVSS5.8AI score0.03503EPSS
Exploits4References3
CVE
CVE
added 2017/08/02 7:0 p.m.67 views

CVE-2017-11356

The CVE-2017-11356 entry describes an improper access control in the Pegasystem PEGA Platform, where the application distribution export function in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information due to a m...

6.5CVSS5.9AI score0.03503EPSS
Exploits4References3Affected Software1
Malwarebytes
Malwarebytes
added 2017/08/01 3:0 p.m.69 views

Learning PowerShell: some basic commands

My first Powershell script The first PowerShell script I wrote see below was a quick fix to remove certificates from the “Untrusted” registry key after a Vonteera infection. After some initial commands, this script basically loops back for every certificate that doesn’t belong under a certain key...

6.8AI score
Exploits0
Kitploit
Kitploit
added 2017/07/28 9:34 p.m.15 views

RastLeak - Tool To Automatic Leak Information Using Hacking With Engine Searches

Tool to automatic leak information using Hacking with engine searches. How to install Install requirements with: pip install -r requirements.txt How to use: python rastleak.py Usage: $ python rastleak.py -h usage: rastleak.py -h -d DOMAIN -o OPTION -n SEARCH -e EXT -f EXPORT This script searchs...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2017/07/27 12:0 a.m.2 views

Unspecified Vulnerability in Oracle Hospitality Simphony (CNVD-2017-20294)

Oracle Hospitality Applications is a suite of business applications, servers and storage solutions for hospitality management from Oracle Corporation, of which Hospitality Simphony is a cloud-based hospitality management component. A security vulnerability exists in the Import/Export subcomponent...

4.3CVSS6.7AI score0.01685EPSS
Exploits0References1
Talos
Talos
added 2017/07/19 12:0 a.m.78 views

Open Fire User Import Export Plugin XML External Entity Injection

Summary An exploitable XML entity injection vulnerability exists in OpenFire User Import Export Plugin 2.6.0. A specially crafted web request can cause the retrieval of arbitrary files or denial of service. An authenticated attacker can send a crafted web request to trigger this vulnerability...

8.1CVSS8.1AI score0.00933EPSS
Exploits1
Rows per page
Query Builder