Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4945

Malware in sbrugna...

5CVSS6.4AI score0.0281EPSS
Exploits1References6
CNVD
CNVD
added 2021/11/04 12:0 a.m.24 views

S-Cart code issue vulnerability

S-cart, a Php-based e-commerce management platform from the S-cart community, is vulnerable in S-Cart v6.4.1 and below, which can be exploited by attackers to execute arbitrary code via a crafted IMG file...

8.8CVSS6.5AI score0.0125EPSS
Exploits0References1
NVD
NVD
added 2021/11/01 3:15 p.m.19 views

CVE-2021-38847

S-Cart v6.4.1 and below was discovered to contain an arbitrary file upload vulnerability in the Editor module on the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted IMG file...

8.8CVSS0.0125EPSS
Exploits0References1
OSV
OSV
added 2021/11/01 3:15 p.m.16 views

CVE-2021-38847

S-Cart v6.4.1 and below was discovered to contain an arbitrary file upload vulnerability in the Editor module on the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted IMG file...

8.8CVSS8.1AI score
Exploits0References1
Prion
Prion
added 2021/11/01 3:15 p.m.28 views

Design/Logic Flaw

S-Cart v6.4.1 and below was discovered to contain an arbitrary file upload vulnerability in the Editor module on the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted IMG file...

6.5CVSS8.8AI score0.0125EPSS
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2019/11/22 1:32 p.m.315 views

Raccoon Stealer Malware Scurries Past Microsoft Messaging Gateways

Criminals behind malware dubbed Raccoon Stealer have adopted a simple and effective technique to circumvent Microsoft and Symantec anti-spam messaging gateways. The technique has been used in a recent campaign targeting financial institutions via business email compromise BEC attacks. According t...

9.3CVSS0.1AI score0.89889EPSS
Exploits14References6
Prion
Prion
added 2012/09/07 10:32 a.m.13 views

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in IsoBuster 2.8 allow local users to gain privileges via a Trojan horse 1 wnaspi32.dll or 2 ntaspi32.dll file in the current working directory, as demonstrated by a directory that contains a .img file. NOTE: the provenance of this information is...

6.9CVSS7AI score0.0042EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2012/09/07 10:0 a.m.15 views

CVE-2010-5259

Multiple untrusted search path vulnerabilities in IsoBuster 2.8 allow local users to gain privileges via a Trojan horse 1 wnaspi32.dll or 2 ntaspi32.dll file in the current working directory, as demonstrated by a directory that contains a .img file. NOTE: the provenance of this information is...

6.5AI score0.0042EPSS
Exploits0References1
Prion
Prion
added 2009/04/07 11:30 p.m.13 views

Stack overflow

Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service crash or execute arbitrary code via a crafted 1 CCD or 2 IMG file...

9.3CVSS8.3AI score0.4267EPSS
Exploits3References6Affected Software1
Cvelist
Cvelist
added 2009/04/07 11:0 p.m.19 views

CVE-2009-1260

Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service crash or execute arbitrary code via a crafted 1 CCD or 2 IMG file...

7.7AI score0.4267EPSS
Exploits3References6
securityvulns
securityvulns
added 2007/09/19 12:0 a.m.34 views

WinImage 8.10 vulnerabilities

Team Vexillium Security Advisory http://vexillium.org/ Name : WinImage 8.10 Multiple Vulnerabilities Class : Denial of Service and Directory Traversal Threat level : LOW DoS, MED Dir. traversal vuln Discovered : 2007-08-31 Published : 2007-09-15 Credit : j00ru//vx Vulnerable : WinImage 8.10,...

6.8AI score
Exploits0
NVD
NVD
added 2007/09/18 10:17 p.m.15 views

CVE-2007-4964

WinImage 8.10 and earlier allows remote attackers to cause a denial of service infinite loop via an invalid BPBBytsPerSec field in the header of a .IMG file...

5CVSS6.6AI score0.0281EPSS
Exploits1References5
Prion
Prion
added 2007/09/18 10:17 p.m.15 views

Code injection

WinImage 8.10 and earlier allows remote attackers to cause a denial of service infinite loop via an invalid BPBBytsPerSec field in the header of a .IMG file...

5CVSS7.1AI score0.0281EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2007/09/18 10:0 p.m.46 views

CVE-2007-4964

CVE-2007-4964 affects WinImage 8.10 and earlier. A malformed BPB_BytsPerSec field in the header of a .IMG file can allow remote attackers to cause a denial of service via an infinite loop. The available connected documents confirm the affected product and the underlying cause, but do not provide ...

5CVSS6.6AI score0.0281EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/09/18 10:0 p.m.21 views

CVE-2007-4964

WinImage 8.10 and earlier allows remote attackers to cause a denial of service infinite loop via an invalid BPBBytsPerSec field in the header of a .IMG file...

6.6AI score0.0281EPSS
Exploits1References5
Cvelist
Cvelist
added 2007/09/18 10:0 p.m.20 views

CVE-2007-4963

Visual truncation vulnerability in WinImage 8.10 and earlier allows remote attackers to spoof a destination filename via a long sequence of space characters in a filename within a 1 .IMG or 2 .ISO file. NOTE: this can be leveraged with a separate directory traversal vulnerability to trick a caref...

6.7AI score0.01989EPSS
Exploits0References4
Rows per page
Query Builder