Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-5010

Malware in sbrugna...

6.1CVSS6.2AI score0.01433EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-6017

Malware in sbrugna...

10CVSS9.3AI score0.0675EPSS
Exploits3References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-8375

Malware in sbrugna...

5.3CVSS5.3AI score0.01466EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/16 12:0 a.m.5 views

PT-2025-29780 · Unknown · Md Yeasin Ul Haider Url Shortener

Name of the Vulnerable Software and Affected Versions: Md Yeasin Ul Haider URL Shortener versions through 3.0.7 Description: The software contains a deserialization of untrusted data issue that allows object injection. Recommendations: Update Md Yeasin Ul Haider URL Shortener to a version later...

9.8CVSS6.3AI score0.00503EPSS
Exploits0References3
Prion
Prion
added 2024/01/30 3:15 p.m.17 views

Command injection

TOTOLINK A3300R V17.0.0cu.557B20221024 was discovered to contain a command injection vulnerability via the url parameter in the setUrlFilterRules function...

7.5CVSS8.2AI score0.0173EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/06/02 5:15 p.m.18 views

Code injection

Due to URL previews in the network panel of developer tools improperly storing URLs, query parameters could potentially be used to overwrite global objects in privileged code. This vulnerability affects Firefox 110...

6.8CVSS7.9AI score0.00557EPSS
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2023/02/10 12:50 a.m.459 views

Exploit for CVE-2022-25765

Exploit for CVE-2022-25765 pdfkit - Command Injection !Git...

9.8CVSS9.5AI score0.38924EPSS
Exploits11
NVD
NVD
added 2022/09/09 5:15 a.m.21 views

CVE-2022-25765

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized...

9.8CVSS0.38924EPSS
Exploits11References7
OSV
OSV
added 2022/02/20 7:15 p.m.5 views

CVE-2022-22126

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Web Page” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

6.1CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2020/04/02 10:15 p.m.18 views

CVE-2020-7625

op-browser through 1.0.6 is vulnerable to Command Injection. It allows execution of arbitrary commands via the url function...

9.8CVSS9.8AI score0.04118EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2017/12/14 4:0 p.m.19 views

CVE-2017-17511

KildClient 3.1.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, related to prefs.c and worldgui.c...

8.8CVSS8.5AI score0.01685EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/12/14 4:0 p.m.17 views

CVE-2017-17517

libsylph/utils.c in Sylpheed through 3.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

8.8CVSS8.5AI score0.01221EPSS
Exploits0
Cvelist
Cvelist
added 2016/01/08 9:0 p.m.29 views

CVE-2016-1498

Cross-site scripting XSS vulnerability in the OCS discovery provider component in ownCloud Server before 7.0.12, 8.0.x before 8.0.10, 8.1.x before 8.1.5, and 8.2.x before 8.2.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a URL...

6.2AI score0.01089EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2010/06/11 7:30 p.m.21 views

CVE-2010-0544

Cross-site scripting XSS vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to inject arbitrary web script or HTML via vectors related to a malformed URL...

4.3CVSS6AI score0.02933EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2008/12/14 12:0 a.m.2597 views

FLDS 1.2a - 'redir.php' SQL Injection

Free Links Directory Script id SQL Injection Vulnerability Author: nuclear site: http://flds-script.com vuln: http://localhost/path/redir.php?id=-1%20UNION%20SELECT%201,2,@@version,4,5,6,7,8,9,10,11/ vulnerable code: $ida = $GET'id'; $link = mysqlfetcharraymysqlquery"select from links where...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/12/02 12:0 a.m.70 views

BBS E-Market Professional - Full Path Disclosure File Inclusion

BBS E-Market Professional - Full Path Disclosure File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV06$2004 --------------------------------------------------------------------------- Multiple vulnerabilities 1n BBS E-Market Professional...

7.4AI score
Exploits0
Rows per page
Query Builder