Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

PyPA
PyPAadded 2015/12/07 8:59 p.m.4 views

PYSEC-2015-11

The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...

5CVSS6.8AI score0.03006EPSS
Exploits0References14Affected Software1
OSV
OSVadded 2015/11/24 5:0 p.m.0 views

UBUNTU-CVE-2015-8213

The getformat function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x before 1.8.7, and 1.9.x before 1.9rc2 might allow remote attackers to obtain sensitive application secrets via a settings key in place of a date/time format setting, as demonstrated by SECRETKEY...

5CVSS7.1AI score0.03006EPSS
Exploits0References4
seebug.org
seebug.orgadded 2014/12/30 12:0 a.m.19 views

PHPok v4.1 /framework/www/project/control.php SQL注入漏洞

/framework/www/projectcontrol.php $ext = $this-get"ext"; if$ext && isarray$ext $c = ''; foreach$ext AS $key=$value if$key && $value $c = "ext.".$key." LIKE '%".$value."%'"; $pageurl .= "ext".$key."=".rawurlencode$value."&"; if$c $dt'sqlext' = implode" AND ",$c; $this-assign'ext',$ext;...

7.1AI score
Exploits0
Prion
Prionadded 2010/06/01 8:30 p.m.22 views

Integer overflow

Multiple integer overflows in the strfmon implementation in the GNU C Library aka glibc or libc6 2.10.1 and earlier allow context-dependent attackers to cause a denial of service memory consumption or application crash via a crafted format string, as demonstrated by a crafted first argument to th...

5CVSS6.2AI score0.19061EPSS
Exploits3References13Affected Software1
Prion
Prionadded 2007/12/07 11:46 a.m.14 views

Stack overflow

Stack-based buffer overflow in emacs allows user-assisted attackers to cause a denial of service application crash and possibly have unspecified other impact via a large precision value in an integer format string specifier to the format function, as demonstrated via a certain "emacs -batch -eval...

10CVSS7.6AI score0.02999EPSS
Exploits0References15
0day.today
0day.todayadded 2006/10/24 12:0 a.m.16 views

HP-UX 11i (swask) Format String Local Root Exploit

Exploit for hp-ux platform in category local exploits ================================================== HP-UX 11i swask Format String Local Root Exploit ================================================== / HP-UX swask format string local root exploit ============================================...

6.8AI score
Exploits0
Cvelist
Cvelistadded 2004/12/22 5:0 a.m.14 views

CVE-2004-1301

Buffer overflow in the bookformatsql function in format.c for xlreader 0.9.0 allows remote attackers to execute arbitrary code via a crafted Excel XLS file...

7.8AI score0.20596EPSS
Exploits1References2
Rows per page
Query Builder