Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

SUSE SLES12 Security Update : giflib (SUSE-SU-2026:2667-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:2667-1 advisory. This update for giflib fixes the following issue - CVE-2026-26740: heap out-of-bounds read when processing a specially crafted GIF file containing a GC...

8.2CVSS7.2AI score0.00618EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-5767

Malware in sbrugna...

6.8CVSS6.4AI score0.02846EPSS
Exploits2References6
OSV
OSV
added 2021/05/04 5:15 p.m.1 views

CVE-2021-26804

Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to ".gif", then uploading it in the "Administration/ Parameters/ Images" section of the application...

6.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2014/01/19 5:16 p.m.0 views

DEBIAN-CVE-2013-4231

Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service out-of-bounds write via a crafted 1 extension block in a GIF image or 2 GIF raster image to tools/gif2tiff.c or 3 a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are...

4.3CVSS6.9AI score0.07399EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2011/03/19 12:0 a.m.38 views

TailoredWeb Shell Upload

Title : TailoredWeb FileShell Upload Vulnerability Author: eXeSoul Home : www.indishell.in or www.andhrahackers.com Email : [email protected] date : 19/3/2011 D0rk : Developed By TailoredWeb.com category : Web Apps php .-" "-. / \ | eXeSoul | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 /...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2010/12/18 12:0 a.m.102 views

MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload

============================================== File Upload Vulnerability Plugins tinymce ============================================== http://tinymce.moxiecode.com/pluginsfilemanager.php Major version 3 Minor version 2.2.3 Author : Vladimir Vorontsov Contact : d0znpp at gmail dot com Greetz : GN...

7.4AI score
Exploits0
NVD
NVD
added 2010/09/07 5:0 p.m.17 views

CVE-2010-2802

Cross-site scripting XSS vulnerability in MantisBT before 1.2.2 allows remote authenticated users to inject arbitrary web script or HTML via an HTML document with a .gif filename extension, related to inline attachments...

3.5CVSS5.2AI score0.00887EPSS
Exploits0References5
OSV
OSV
added 2009/03/02 8:30 p.m.2 views

DEBIAN-CVE-2009-0749

Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service application crash via a crafted GIF image that causes the realloc function to return a new pointer, which...

7.8CVSS5.7AI score0.01553EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/06/21 11:0 p.m.17 views

CVE-2006-3128

choosefile.php in easy-CMS 0.1.2, when modmime is installed, does not restrict uploads of filenames with multiple extensions, which allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a GIF file extension, then directly accessing that file in the Repositories...

7.6AI score0.01221EPSS
Exploits0References8
Prion
Prion
added 2006/05/25 10:2 a.m.13 views

Design/Logic Flaw

Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. NOTE: due to lack of specific information about attack vectors do not depend on the existence of another vulnerability, it is not clear whether this is a vulnerability...

5CVSS6.8AI score0.01354EPSS
Exploits0References4
NVD
NVD
added 2006/05/25 10:2 a.m.17 views

CVE-2006-2588

Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. NOTE: due to lack of specific information about attack vectors do not depend on the existence of another vulnerability, it is not clear whether this is a vulnerability...

5CVSS6.5AI score0.01354EPSS
Exploits0References4
CVE
CVE
added 2006/05/25 10:0 a.m.44 views

CVE-2006-2588

CVE-2006-2588 involves Russcom PHPImages, with multiple sources describing that remote attackers could upload files of arbitrary types by using a file with a .gif extension. The entries repeatedly warn that, due to lack of specific information about attack vectors, it is not clear whether this co...

5CVSS6.5AI score0.01354EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/05/25 10:0 a.m.24 views

CVE-2006-2588

Russcom PHPImages allows remote attackers to upload files of arbitrary types by uploading a file with a .gif extension. NOTE: due to lack of specific information about attack vectors do not depend on the existence of another vulnerability, it is not clear whether this is a vulnerability...

6.5AI score0.01354EPSS
Exploits0References4
Rows per page
Query Builder