Lucene search
K

7 matches found

CNNVD
CNNVD
added 2024/08/06 12:0 a.m.4 views

Mozilla多款产品 安全漏洞

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A security bypass vulnerability exists in a number of Mozilla products, whic...

8.1CVSS6.6AI score0.00492EPSS
Exploits0References9
GithubExploit
GithubExploit
added 2023/05/27 5:6 a.m.399 views

Exploit for Cross-site Scripting in Ourphp

PoC exploit for CVE-2023-30212, a Cross-Site Scripting XSS vul...

6.1CVSS5.5AI score0.08115EPSS
Exploits9
CNNVD
CNNVD
added 2021/10/04 12:0 a.m.7 views

Lodging Reservation Management System SQL注入漏洞

Lodging Reservation Management System is an open source accommodation reservation management system that is vulnerable to attackers using SQL injection to bypass authentication via username and password fields to grant any user access to privileges...

9.8CVSS5.9AI score0.03235EPSS
Exploits1References8
CNNVD
CNNVD
added 2021/07/08 12:0 a.m.4 views

MDT AutoSave SQL注入漏洞

MDT AutoSave is a software application. It provides an automated change management function. MDT AutoSave suffers from a SQL injection vulnerability that originates from an attacker being able to utilize SQL commands to create a new user on the system and update the user's privileges, granting th...

9.8CVSS8.6AI score0.0117EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2005/04/13 12:0 a.m.32 views

Mandrake Linux Security Advisory : MySQL (MDKSA-2005:070)

A vulnerability in MySQL would allow a user with grant privileges to a database with a name containing an underscore character '' to have the ability to grant privileges to other databases with similar names. This problem was previously discovered and fixed, but a new case where the problem still...

6.8CVSS5.3AI score0.02425EPSS
Exploits0References1
Cvelist
Cvelist
added 2004/07/21 4:0 a.m.26 views

CVE-2004-0703

Unknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users with "grant membership" privileges to grant memberships to groups that the user does not control...

6.5AI score0.01118EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2000/02/15 12:0 a.m.41 views

MySQL 3.22.27/3.22.29/3.23.8 - GRANT Global Password Changing

source: https://www.securityfocus.com/bid/926/info MySQL is a popular RDBMS used by many websites as a back-end. It is possible for users with GRANT access to change passwords for every user in the database including the mysql superuser. MySQL also ships with a default "test" account which has...

7.4AI score
Exploits0
Rows per page
Query Builder