Lucene search
K

66 matches found

CNNVD
CNNVD
added 2025/01/06 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel. The vulnerability originates from the fact that when the "kernel IBT no ENDBR" self-test is triggered in the x86/fred modul...

5.5CVSS6.8AI score0.00219EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.23 views

openSUSE: Security Advisory for binutils (SUSE-SU-2023:3825-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.01103EPSS
Exploits16References2
CNNVD
CNNVD
added 2023/10/11 12:0 a.m.4 views

shadow Security breach

shadow is a suite of tools for maintaining Debian systems. utils is a utility program by Fred Smith, a personal developer. A security vulnerability exists in shadow-utils that stems from an inability to clear the buffer used to store the first entry, which could allow an attacker with sufficient...

5.5CVSS7AI score0.00257EPSS
Exploits0References8
Openbugbounty
Openbugbounty
added 2023/06/20 9:41 p.m.16 views

roots.fred-baltus.nl Cross Site Scripting vulnerability OBB-3450485

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

10AI score
Exploits0
CNNVD
CNNVD
added 2023/05/30 12:0 a.m.8 views

utils 安全漏洞

utils is a utility program by Fred Smith Personal Developer. A security vulnerability exists in versions of utils prior to 0.7.3 that stems from the presence of prototype contamination...

9.8CVSS6.3AI score0.00991EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2023/01/11 11:14 a.m.15 views

fredverophotography.com Cross Site Scripting vulnerability OBB-3142014

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/01/09 5:14 p.m.14 views

secure.fredhutch.org Cross Site Scripting vulnerability OBB-3137639

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Trellix
Trellix
added 2022/07/12 12:0 a.m.12 views

Get to Know Fred House

Meet Fred House Senior Director, Product Detection and Research By Michael Alicea · July 12, 2022 At Trellix, we celebrate and champion our people. For a long time now, I’ve been looking forward to connecting with Fred House, a Senior Director at Trellix Threat Labs and a consummate and “driven”...

7.3AI score
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/17 4:50 a.m.10 views

com.coherentlogic.fred.client:fred-client-webstart-application (>=0.9.11 <=1.0.9-RELEASE), com.nimbusds:common (>=1.70 <=1.74) +116 more potentially affected by CVE-2013-4112 via org.jgroups:jgroups (>=3.3.0.CR1 <=3.3.2.Final)

org.jgroups:jgroups MAVEN version =3.3.0.CR1, =0.9.11, =1.70, =1.0, =1.5.1, =1.1, =1.1, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.5.0, =2.5.0, =2.5.0, =2.5.0, =2.5.3 and more Source cves: CVE-2013-4112 Source advisory: OSV:GHSA-CC62-496P-HRR7...

5.4CVSS5.8AI score0.01607EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/14 2:54 a.m.7 views

com.coherentlogic.fred.client:fred-client-core (=0.9.3), com.coherentlogic.fred.client:fred-client-core-it (=0.9.3) +36 more potentially affected by CVE-2013-6235 via com.jamonapi:jamon (>=1.0 <=2.75)

com.jamonapi:jamon MAVEN version =1.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.1.4, =0.9.0, =0.9.1 and more Source cves: CVE-2013-6235 Source advisory: OSV:GHSA-QPR7-5M63-HQ2Chttps://vulners.com/osv/OSV:GHSA...

4.3CVSS5.8AI score0.02232EPSS
Exploits2
Openbugbounty
Openbugbounty
added 2020/02/08 4:14 a.m.9 views

fred.mediagiants.ca Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1087337 Security Researcher haxmov Helped patch 708 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting fred.mediagiants.ca website a...

0.1AI score
Exploits0
Prion
Prion
added 2019/07/24 2:15 p.m.11 views

Design/Logic Flaw

Fred MODX Revolution 1.0.0-beta5 is affected by: Incorrect Access Control - CWE-648. The impact is: Remote Code Execution. The component is: assets/components/fred/web/elfinder/connector.php. The attack vector is: Uploading a PHP file or change data in the database. The fixed version is:...

7.5CVSS9.6AI score0.04585EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/07/24 1:50 p.m.134 views

CVE-2019-1010178

CVE-2019-1010178 affects MODX Revolution ≤ 1.0.0-beta4/β5 via the Fred add-on (assets/components/fred/web/elfinder/connector.php). The root cause is Incorrect Access Control (CWE-648), enabling Remote Code Execution. The attack vector involves uploading a PHP file or altering data in the database...

9.8CVSS9.6AI score0.04585EPSS
Exploits1References1Affected Software1
Carbon Black Blog
Carbon Black Blog
added 2017/10/17 1:40 p.m.35 views

October 17, 2017 – Morning Cyber Coffee Headlines – “The Flintstones” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! October 17, 2017 - Headlines Carbon Black in the News: Dark Web Ransomware...

6.5AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:46 a.m.10 views

Running Fred - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Running Fred published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.9 views

Centrinity FirstClass 5.50/5.77/7.0/7.1 - HTTP Server Long Version Field Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8793/info A problem has been reported in the handling of overly long HTTP version string data by Centrinity FirstClass. Because of this, it may be possible for an attacker deny service to legitimate users of a vulnerable...

7.1AI score
Exploits0
Atlassian
Atlassian
added 2009/07/31 6:6 a.m.19 views

JQL not respecting Issue Security Level "Project Lead"

While writing TestIssueSecurityLevel I found the following problem: fred is not a Project Lead HSP-3 has Issue Security Level of "Project Lead" only. empty JQL to show all visible issues doesn't show HSP-3. make fred the Project Lead same query: still no HSP-3 however: fred can browse to HSP-3 an...

1.4AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2009/07/31 6:6 a.m.30 views

JQL not respecting Issue Security Level "Project Lead"

While writing TestIssueSecurityLevel I found the following problem: fred is not a Project Lead HSP-3 has Issue Security Level of "Project Lead" only. empty JQL to show all visible issues doesn't show HSP-3. make fred the Project Lead same query: still no HSP-3 however: fred can browse to HSP-3 an...

1.4AI score
Exploits0Affected Software1
NVD
NVD
added 2008/11/28 7:0 p.m.16 views

CVE-2008-5271

Cross-site scripting XSS vulnerability in index.php in Fred Stuurman SyndeoCMS 2.6.0 allows remote attackers to inject arbitrary web script or HTML via the section parameter...

4.3CVSS5.7AI score0.01524EPSS
Exploits0References4
Prion
Prion
added 2008/11/28 7:0 p.m.12 views

Directory traversal

Multiple directory traversal vulnerabilities in Fred Stuurman SyndeoCMS 2.6.0 allow remote authenticated users to read arbitrary files via a .. dot dot in the template parameter to 1 starnet/editors/fckeditor/studenteditor.php; 2 starnet/modules/snnews/editcontent.php, reached through...

4CVSS7AI score0.05618EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder