CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CNVD•added 2021/11/04 12:0 a.m.•21 views

S-Cart code issue vulnerability

S-cart, a Php-based e-commerce management platform from the S-cart community, is vulnerable in S-Cart v6.4.1 and below, which can be exploited by attackers to execute arbitrary code via a crafted IMG file...

8.8CVSS6.5AI score0.00865EPSS

Exploits0References1

OSV•added 2021/11/01 3:15 p.m.•11 views

CVE-2021-38847

S-Cart v6.4.1 and below was discovered to contain an arbitrary file upload vulnerability in the Editor module on the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted IMG file...

8.8CVSS8.1AI score

Exploits0References1

NVD•added 2021/11/01 3:15 p.m.•14 views

CVE-2021-38847

8.8CVSS0.00865EPSS

Exploits0References1

ThreatPost•added 2019/11/22 1:32 p.m.•312 views

Raccoon Stealer Malware Scurries Past Microsoft Messaging Gateways

Criminals behind malware dubbed Raccoon Stealer have adopted a simple and effective technique to circumvent Microsoft and Symantec anti-spam messaging gateways. The technique has been used in a recent campaign targeting financial institutions via business email compromise BEC attacks. According t...

9.3CVSS0.1AI score0.94216EPSS

Exploits14References6

Prion•added 2009/04/07 11:30 p.m.•10 views

Stack overflow

Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service crash or execute arbitrary code via a crafted 1 CCD or 2 IMG file...

9.3CVSS8.3AI score0.74522EPSS

Exploits3References6Affected Software1

Cvelist•added 2009/04/07 11:0 p.m.•11 views

CVE-2009-1260

Multiple stack-based buffer overflows in UltraISO 9.3.3.2685 and earlier allow remote attackers to cause a denial of service crash or execute arbitrary code via a crafted 1 CCD or 2 IMG file...

7.7AI score0.74522EPSS

Exploits3References6

securityvulns•added 2007/09/19 12:0 a.m.•34 views

WinImage 8.10 vulnerabilities

Team Vexillium Security Advisory http://vexillium.org/ Name : WinImage 8.10 Multiple Vulnerabilities Class : Denial of Service and Directory Traversal Threat level : LOW DoS, MED Dir. traversal vuln Discovered : 2007-08-31 Published : 2007-09-15 Credit : j00ru//vx Vulnerable : WinImage 8.10,...

6.8AI score

Exploits0

NVD•added 2007/09/18 10:17 p.m.•12 views

CVE-2007-4964

WinImage 8.10 and earlier allows remote attackers to cause a denial of service infinite loop via an invalid BPBBytsPerSec field in the header of a .IMG file...

5CVSS6.6AI score0.04592EPSS

Exploits1References5

CVE•added 2007/09/18 10:0 p.m.•43 views

CVE-2007-4964

CVE-2007-4964 affects WinImage 8.10 and earlier. A malformed BPB_BytsPerSec field in the header of a .IMG file can allow remote attackers to cause a denial of service via an infinite loop. The available connected documents confirm the affected product and the underlying cause, but do not provide ...

5CVSS6.6AI score0.04592EPSS

Exploits1References5Affected Software1

Cvelist•added 2007/09/18 10:0 p.m.•19 views

CVE-2007-4963

Visual truncation vulnerability in WinImage 8.10 and earlier allows remote attackers to spoof a destination filename via a long sequence of space characters in a filename within a 1 .IMG or 2 .ISO file. NOTE: this can be leveraged with a separate directory traversal vulnerability to trick a caref...

6.7AI score0.00495EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by