Lucene search
+L

5055 matches found

openvas
openvas
added 2008/08/22 12:0 a.m.24 views

Opera Web Browser Multiple Security Vulnerabilities Aug-08 (Windows)

The remote host is running Opera Web Browser, which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoperamultvulnaug08win900038.nasl 5375 2017-02-20 16:39:23Z cfi $ Description: Opera Web Browser Multiple Security Vulnerabilities Aug-08 Windows Authors: Chandan S...

5CVSS8.8AI score0.01961EPSS
Exploits0References7
exploitdb
exploitdb
added 2008/07/29 12:0 a.m.34 views

Gregarius 0.5.4 - SQL Injection

GulfTech Security Research July 29, 2008 Vendor : Marco Bonetti URL : http://www.gregarius.net/ Version : Gregarius populate" noti.unread & ". RSSMODEUNREADSTATE ." and i.cid= $cid", "", 0, 2, ITEMSORTHINTREAD; $readItems - setTitleLBLH2RECENTITEMS; $readItems - setRenderOptionsILTITLENOESCAPE;...

7.4AI score
Exploits0
fedora
fedora
added 2008/07/18 8:7 a.m.20 views

[SECURITY] Fedora 8 Update: liferea-1.4.15-3.fc8

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.05284EPSS
Exploits2
jvn
jvn
added 2008/07/08 3:14 a.m.5 views

Cybozu Garoon vulnerable to arbitrary script execution

Overview Cybozu Garoon, a groupware from Cybozu, contains a vulnerability that allows an attacker to execute an arbitrary script when a user views RSS feed. Yoshiki Kawada of LAC Little eArth Corporation reported this vulnerability to IPA. JPCERT/CC coordinated with the vendors under Information...

4.3CVSS7AI score0.01292EPSS
Exploits0References8
jvn
jvn
added 2008/06/27 12:0 a.m.36 views

JVN#52363223: Cybozu Garoon vulnerable to arbitrary script execution

Cybozu Garoon, a groupware from Cybozu, contains a vulnerability that allows an attacker to execute an arbitrary script when a user views RSS feed. Impact An arbitrary script could be executed on the user's web browser. Solution Update the Software Apply the latest update provided by the vendor...

4.3CVSS6.6AI score0.01292EPSS
Exploits0
fedora
fedora
added 2008/04/22 10:45 p.m.33 views

[SECURITY] Fedora 8 Update: liferea-1.4.13-3.fc8

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.02897EPSS
Exploits1
fedora
fedora
added 2008/04/22 10:40 p.m.28 views

[SECURITY] Fedora 7 Update: liferea-1.4.13-3.fc7

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.02897EPSS
Exploits1
gentoo
gentoo
added 2008/04/14 12:0 a.m.47 views

Opera: Multiple vulnerabilities

Background Opera is a fast web browser that is available free of charge. Description Michal Zalewski reported two vulnerabilities, memory corruption when adding news feed sources from a website CVE-2008-1761 as well as when processing HTML CANVAS elements to use scaled images CVE-2008-1762...

9.3CVSS7.5AI score0.07595EPSS
Exploits1
fedora
fedora
added 2008/03/26 5:11 p.m.45 views

[SECURITY] Fedora 7 Update: liferea-1.4.13-2.fc7

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.06055EPSS
Exploits2
fedora
fedora
added 2008/02/13 5:4 a.m.32 views

[SECURITY] Fedora 8 Update: liferea-1.4.11-2.fc8

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.08633EPSS
Exploits4
fedora
fedora
added 2008/02/13 4:51 a.m.34 views

[SECURITY] Fedora 7 Update: liferea-1.4.9-2.fc7

Liferea Linux Feed Reader is an RSS/RDF feed reader. It's intended to be a clone of the Windows-only FeedReader. It can be used to maintain a list of subscribed feeds, browse through their items, and show their contents...

9.3CVSS2AI score0.08633EPSS
Exploits4
osv
osv
added 2008/01/25 1:0 a.m.1 views

DEBIAN-CVE-2008-0456

CRLF injection vulnerability in the modnegotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP respons...

2.6CVSS7.2AI score0.19036EPSS
Exploits1References1
exploitdb
exploitdb
added 2008/01/20 12:0 a.m.39 views

Toshiba Surveillance - 'MeIpCamX.dll 1.0.0.4' Remote Buffer Overflow

///add su one, user: sun pass: tzu shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u3749%u4949" + "%u4949%u4949%u4949%u4949%u4949%u4949%u5a51%u456a" + "%u5058%u4230%u4231%u6b41%u4141%u3255%u4241%u3241" + "%u4142%u4230%u5841%u3850%u4241%u6d75%u6b39%u494c" +...

7.4AI score
Exploits0
ubuntucve
ubuntucve
added 2008/01/15 8:0 p.m.40 views

CVE-2008-0272

Cross-site request forgery CSRF vulnerability in the aggregator module in Drupal 4.7.x before 4.7.11 and 5.x before 5.6 allows remote attackers to delete items from a feed as privileged users...

4.3CVSS5.9AI score0.0117EPSS
Exploits0References1
cvelist
cvelist
added 2008/01/15 7:0 p.m.42 views

CVE-2008-0272

Cross-site request forgery CSRF vulnerability in the aggregator module in Drupal 4.7.x before 4.7.11 and 5.x before 5.6 allows remote attackers to delete items from a feed as privileged users...

6.6AI score0.0117EPSS
Exploits0References9
osv
osv
added 2008/01/10 12:46 a.m.4 views

DEBIAN-CVE-2008-0191

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to the default URI, which reveals the full path and the SQL database structure...

5CVSS7.2AI score0.02576EPSS
Exploits0References1
drupal
drupal
added 2008/01/10 12:0 a.m.14 views

SA-2008-002 - Atom - Access bypass

The Atom module provides a list of node titles, and teasers or bodies as part of a syndication feed. In certain conditions, the titles, teasers, and body were not respecting access permissions, potentially exposing content to syndication not available otherwise. Versions affected Atom for Drupal...

7AI score
Exploits0References5
drupal
drupal
added 2008/01/10 12:0 a.m.508 views

SA-2008-005 - Drupal core - Cross site request forgery

The aggregator module fetches items from RSS feeds and makes them available on the site. The module provides an option to remove items from a particular feed. This has been implemented as a simple GET request and is therefore vulnerable to cross site request forgeries. For example: Should a...

6.7AI score
Exploits0References5
nvd
nvd
added 2007/12/19 9:46 p.m.26 views

CVE-2007-5859

Unspecified vulnerability in Safari RSS in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service application termination or execute arbitrary code via a crafted feed: URL that triggers memory corruption...

9.3CVSS7.4AI score0.05589EPSS
Exploits1References9
prion
prion
added 2007/12/19 9:46 p.m.22 views

Memory corruption

Unspecified vulnerability in Safari RSS in Apple Mac OS X 10.4.11 allows remote attackers to cause a denial of service application termination or execute arbitrary code via a crafted feed: URL that triggers memory corruption...

9.3CVSS7.6AI score0.05589EPSS
Exploits1References9
Rows per page
Query Builder