Lucene search
K

34 matches found

CVE
CVE
added 2025/03/11 2:54 p.m.159 views

CVE-2024-45324

CVE-2024-45324 describes an externally-controlled format string vulnerability (CWE-134) in Fortinet products, allowing a privileged attacker to execute unauthorized code via specially crafted HTTP/HTTPS commands. Affected are FortiOS (versions 7.4.0–7.4.4; 7.2.0–7.2.9; 7.0.0–7.0.15 and before 6.4...

7.2CVSS7.1AI score0.00679EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/10 12:0 a.m.7 views

PT-2024-5533 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.4R3-S6 Junos OS 22.2 versions prior to 22.2R3-S3 Junos OS 22.3 versions prior to 22.3R3-S3 Junos OS 22.4 versions prior to 22.4R3 Junos OS 23.2 versions prior to 23.2R2 Description: A Use of Externally-Controlled...

8.7CVSS7.2AI score0.00476EPSS
Exploits0References8
OSV
OSV
added 2024/05/14 5:15 p.m.3 views

CVE-2023-36640

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiPAM versions 1.0.0 through 1.0.3, FortiOS versions 7.2.0, 7.0.0 through 7.0.12, 6.4.0...

6.7CVSS5.9AI score0.00276EPSS
Exploits0References1
OSV
OSV
added 2023/12/13 7:15 a.m.4 views

CVE-2023-36639

A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, FortiOS versions 7.4.0, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiPAM versions 1.0.0 through 1.0.3 allows...

8.8CVSS5.9AI score0.01059EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/08 12:0 a.m.5 views

PT-2023-7697 · Fortinet · Fortiproxy +2

Name of the Vulnerable Software and Affected Versions: FortiProxy versions 7.2.0 through 7.2.4 FortiProxy versions 7.0.0 through 7.0.10 FortiOS versions 7.4.0 FortiOS versions 7.2.0 through 7.2.4 FortiOS versions 7.0.0 through 7.0.11 FortiOS versions 6.4.0 through 6.4.12 FortiOS versions 6.2.0...

8.8CVSS8.8AI score0.01059EPSS
Exploits0References13
NVD
NVD
added 2023/06/13 9:15 a.m.23 views

CVE-2022-43953

A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS all versions 7.0, FortiOS all versions 6.4, FortiOS all versions 6.2, FortiProxy version 7.2.0 through 7.2.1, FortiProxy version 7.0.0 through 7.0.7 allows attacker to execute unauthorized code o...

7.8CVSS7.3AI score0.00249EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.5 views

Fortinet FortiOS 格式化字符串错误漏洞

Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with a variety of security features such as firewall, antivirus, IPSec/SSLVPN, Web content filtering, and anti-spam. A security...

7.8CVSS7.4AI score0.00249EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:19 a.m.3 views

SUSE CVE-2015-3178

Cross-site scripting XSS vulnerability in the externalformattext function in lib/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML into an external application via a...

3.5CVSS6.6AI score0.01459EPSS
Exploits0References3
OSV
OSV
added 2018/04/23 6:29 p.m.3 views

DEBIAN-CVE-2016-9586

curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the printf functions. If there are any application that accepts a format string from the outside without necessary input filtering, it could allow remote attacks...

8.1CVSS9.5AI score0.04935EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2018/04/23 6:0 p.m.5 views

CVE-2016-9586

curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the printf functions. If there are any application that accepts a format string from the outside without necessary input filtering, it could allow remote attacks...

5.9CVSS6.1AI score0.04935EPSS
Exploits0References11
OSV
OSV
added 2016/02/22 5:59 a.m.4 views

UBUNTU-CVE-2015-3274

Cross-site scripting XSS vulnerability in the usergetuserdetails function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to inject arbitrary web script or HTML by leveraging absence of an externalformattext call in ...

6.1CVSS7.2AI score0.01465EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2015/08/07 12:0 a.m.8 views

The vulnerability of the Moodle learning management system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the externalformattext function in the lib/externallib.php component of the Moodle learning management system exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject any desired web or...

3.5CVSS7.2AI score0.01459EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2015/06/05 12:0 a.m.3 views

Moodle 'lib/externallib.php' Cross-Site Scripting Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A cross-site scripting vulnerability exists in the 'externalformattext' function in the Moodle 'lib/externallib.php' script. A remote...

3.5CVSS6AI score0.01459EPSS
Exploits0References1
OSV
OSV
added 2015/06/01 7:59 p.m.3 views

UBUNTU-CVE-2015-3178

Cross-site scripting XSS vulnerability in the externalformattext function in lib/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 allows remote authenticated users to inject arbitrary web script or HTML into an external application via a...

3.5CVSS7.2AI score0.01459EPSS
Exploits0References4
Rows per page
Query Builder