Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Metasploit
Metasploitadded 2023/06/02 7:50 p.m.635 views

ManageEngine ADManager Plus ChangePasswordAction Authenticated Command Injection

ManageEngine ADManager Plus prior to build 7181 is vulnerable to an authenticated command injection due to insufficient validation of user input when performing the ChangePasswordAction function before passing it into a string that is later used as an OS command to execute. By making a POST reque...

7.2CVSS8AI score0.93878EPSS
Exploits2
Veracode
Veracodeadded 2020/10/01 3:53 a.m.26 views

Configuration Issues

webkitgtk4 has configuration issues. The vulnerability exists as it failed to properly apply configured HTTP proxy settings when downloading livestream video of HLS, DASH, or Smooth Streaming...

5.3CVSS0.9AI score0.01893EPSS
Exploits0References14Affected Software1
OSV
OSVadded 2019/04/10 9:29 p.m.21 views

CVE-2019-11070

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, or Smooth Streaming, an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded...

5.3CVSS6.5AI score
Exploits0References10
Debian CVE
Debian CVEadded 2019/04/10 8:15 p.m.26 views

CVE-2019-11070

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, or Smooth Streaming, an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded...

5.3CVSS6.5AI score0.01893EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2019/04/10 8:15 p.m.45 views

CVE-2019-11070

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, or Smooth Streaming, an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded...

5.3CVSS6.8AI score0.01893EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2012/08/01 12:0 a.m.37 views

Scientific Linux Security Update : java-1.6.0-openjdk on SL5.x i386/x86_64

These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Integer overflow flaws were found in the way Java2D parsed JPEG images and user-supplied fonts. An attacker could use these flaws to execute arbitrary code with the privileges of the user...

10CVSS8.2AI score0.12941EPSS
Exploits0References8
Metasploit
Metasploitadded 2012/06/19 1:57 p.m.32 views

Windows Gather TortoiseSVN Saved Password Extraction

This module extracts and decrypts saved TortoiseSVN passwords. In order for decryption to be successful this module must be executed under the same privileges as the user which originally encrypted the password. This module requires Metasploit: https://metasploit.com/download Current source:...

7AI score
Exploits0
Rows per page
Query Builder