Lucene search
K

59 matches found

OSV
OSV
added 2011/03/18 4:55 p.m.2 views

DEBIAN-CVE-2010-4759

Open Ticket Request System OTRS before 3.0.0-beta7 does not properly restrict the ticket ages that are within the scope of a search, which allows remote authenticated users to cause a denial of service daemon hang via a fulltext search...

4CVSS6.6AI score0.01339EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2011/03/18 4:55 p.m.37 views

CVE-2010-4759

Open Ticket Request System OTRS before 3.0.0-beta7 does not properly restrict the ticket ages that are within the scope of a search, which allows remote authenticated users to cause a denial of service daemon hang via a fulltext search...

4CVSS5.9AI score0.01339EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2011/03/18 4:0 p.m.24 views

CVE-2010-4759

Open Ticket Request System OTRS before 3.0.0-beta7 does not properly restrict the ticket ages that are within the scope of a search, which allows remote authenticated users to cause a denial of service daemon hang via a fulltext search...

4CVSS6AI score0.01339EPSS
Exploits0
Cvelist
Cvelist
added 2011/03/18 4:0 p.m.28 views

CVE-2010-4759

Open Ticket Request System OTRS before 3.0.0-beta7 does not properly restrict the ticket ages that are within the scope of a search, which allows remote authenticated users to cause a denial of service daemon hang via a fulltext search...

6.1AI score0.01339EPSS
Exploits0References2
CVE
CVE
added 2011/03/18 4:0 p.m.57 views

CVE-2010-4759

OTRS before 3.0.0-beta7 is affected by a DoS in fulltext ticket search due to improper restriction of ticket ages within a search scope. Impact: remote authenticated users can cause a daemon hang. Affected product/version details are documented across multiple sources (OTRS

4CVSS6.3AI score0.01339EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2009/02/10 7:0 a.m.19 views

CVE-2009-0469

Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors...

7.5CVSS6.9AI score0.01359EPSS
Exploits0References4
Prion
Prion
added 2009/02/10 7:0 a.m.12 views

Design/Logic Flaw

Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors...

7.5CVSS7.5AI score0.01359EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2009/02/06 1:0 a.m.46 views

CVE-2009-0469

The CVE-2009-0469 issue affects futomi’s CGI Cafe Fulltext search CGI (ver. 1.1.2). A vulnerability in Fulltext search CGI allows a remote attacker to gain administrative privileges, effectively impersonating an administrator. The underlying vectors are not specified in the base CVE description; ...

7.5CVSS7.1AI score0.01359EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/02/06 1:0 a.m.20 views

CVE-2009-0469

Unspecified vulnerability in futomi's CGI Cafe Fulltext search CGI 1.1.2 allows remote attackers to gain administrative privileges via unknown vectors...

6.9AI score0.01359EPSS
Exploits0References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/01/28 6:25 a.m.3 views

Fulltext search CGI vulnerability allows third party to gain administrative privileges

Overview Fulltext search CGI from futomi's CGI Cafe contains a vulnerability that allows an attacker to gain administrative privileges. Fulltext search CGI is a website search software from futomi's CGI Cafe. Fulltext search CGI contains a vulnerability that allows an attacker to gain...

7.5CVSS6.8AI score0.01359EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2009/01/23 12:0 a.m.26 views

JVN#80771386 Fulltext search CGI vulnerability allows third party to gain administrative privileges

Fulltext search CGI is a website search software from futomi's CGI Cafe. Fulltext search CGI contains a vulnerability that allows an attacker to gain administrative privileges. Impact A remote attacker could impersonate an administrator of fulltext search CGI. Solution Update the Software Update ...

7.5CVSS6.5AI score0.01359EPSS
Exploits0
NVD
NVD
added 2008/12/31 11:30 a.m.15 views

CVE-2008-5786

Cross-site scripting XSS vulnerability in the Silva Find extension 1.1.5 and earlier in Silva 1.x before 1.6.3.2, Silva 2.0 before 2.0.12.2, and Silva 2.1 before 2.1.0.2 allows remote attackers to inject arbitrary web script or HTML via the fulltext parameter...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6
CVE
CVE
added 2008/12/31 11:0 a.m.42 views

CVE-2008-5786

CVE-2008-5786 describes a cross-site scripting (XSS) vulnerability in the Silva Find extension. The issue affects Silva Find extension 1.1.5 and earlier within Silva 1.x up to 1.6.3.2, Silva 2.0 up to 2.0.12.2, and Silva 2.1 up to 2.1.0.2, where an attacker could inject arbitrary web script or HT...

4.3CVSS5.7AI score0.01223EPSS
Exploits0References6Affected Software2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.2 views

Fulltext search CGI from futomi's CGI Cafe vulnerable to cross-site scripting

Overview Fulltext search CGI from futomi's CGI Cafe contains a cross-site scripting vulnerability. Fulltext search CGI, website search software from futomi's CGI Cafe, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution...

4.3CVSS6.3AI score
Exploits0References2
NVD
NVD
added 2008/03/24 11:44 p.m.14 views

CVE-2008-1486

SQL injection vulnerability in Phorum before 5.2.6, when mysqluseft is disabled, allows remote attackers to execute arbitrary SQL commands via the non-fulltext search...

6.8CVSS8.3AI score0.00999EPSS
Exploits0References4
Prion
Prion
added 2008/03/24 11:44 p.m.17 views

Sql injection

SQL injection vulnerability in Phorum before 5.2.6, when mysqluseft is disabled, allows remote attackers to execute arbitrary SQL commands via the non-fulltext search...

6.8CVSS8.8AI score0.00999EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/03/24 11:0 p.m.17 views

CVE-2008-1486

SQL injection vulnerability in Phorum before 5.2.6, when mysqluseft is disabled, allows remote attackers to execute arbitrary SQL commands via the non-fulltext search...

8.3AI score0.00999EPSS
Exploits0References4
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2007/09/03 12:0 a.m.16 views

JVN#43091983 Fulltext search CGI from futomi's CGI Cafe vulnerable to cross-site scripting

Fulltext search CGI, website search software from futomi's CGI Cafe, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Apply the latest updates provided by the vendor. Products Affected Ver 1.1.0 and...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/10/28 12:0 a.m.12 views

Oracle MySQL < 4.0.21 Remote FULLTEXT Search DoS

Binary data 2369.prm...

5CVSS7.3AI score0.03715EPSS
Exploits0References8
Rows per page
Query Builder