Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Veracode
Veracodeadded 2024/01/13 8:25 a.m.24 views

Cross Site Scripting(XSS)

sympa:sid is vulnerable to cross-site scripting. The vulnerability due to Inappropriate use of the cookie parameter is both a salt for stored passwords. It leads to XSS due to parameter may also not provide sufficient security...

7.5CVSS5.5AI score0.00097EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2020/02/28 2:7 p.m.22 views

CVE-2019-10064

hostapd before 2.6, in EAP mode, makes calls to the rand and random standard library functions without any preceding srand or srandom call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743...

7.5AI score0.01405EPSS
Exploits1References7
NVD
NVDadded 2017/10/27 5:29 a.m.15 views

CVE-2017-5120

Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...

6.5CVSS6.3AI score0.00869EPSS
Exploits0References7
UbuntuCve
UbuntuCveadded 2017/10/27 5:29 a.m.24 views

CVE-2017-5121

Inappropriate use of JIT optimisation in V8 in Google Chrome prior to 61.0.3163.100 for Linux, Windows, and Mac allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page, related to the escape analysis phase...

8.8CVSS7.4AI score0.05118EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2017/09/06 8:23 a.m.42 views

CVE-2017-5120

Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...

6.5CVSS1.2AI score0.00869EPSS
Exploits0References2
Hacker One
Hacker Oneadded 2016/05/08 10:10 p.m.24 views

ThisData: Host Header Poisoning in thisdata.com

ThisData made inappropriate use of the user-supplied host header, which could have resulted in a user being redirected to an arbitrary domain under some circumstances. On other pages, the header was used within metadata values like the canonical URL. 7H0R4PP4N was very thorough and helpful as we...

0.8AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2012/02/16 12:0 a.m.34 views

FreeBSD : chromium -- multiple vulnerabilities (2f5ff968-5829-11e1-8288-00262d5ed8ee)

Google Chrome Releases reports : 105803 High CVE-2011-3015: Integer overflows in PDF codecs. Credit to Google Chrome Security Team scarybeasts. 106336 Medium CVE-2011-3016: Read-after-free with counter nodes. Credit to miaubiz. 108695 High CVE-2011-3017: Possible use-after-free in database...

7.5CVSS7.9AI score0.43757EPSS
Exploits5References15
Rows per page
Query Builder