Lucene search
+L

258 matches found

Openbugbounty
Openbugbounty
added 2023/11/30 6:56 p.m.5 views

enfieldinnct.com Improper Access Control vulnerability OBB-3798873

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/25 9:9 p.m.9 views

antlersinnvernal.com Improper Access Control vulnerability OBB-3793036

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/09/11 9:43 a.m.11 views

travellersinndawsoncreek.net Cross Site Scripting vulnerability OBB-3669251

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/19 8:43 p.m.15 views

dogs-inn.de Cross Site Scripting vulnerability OBB-3593625

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.6 views

SUSE CVE-2011-1550

The default configuration of logrotate on SUSE openSUSE Factory uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard link attacks by leveraging logrotate's lack of support for untrusted directories, as...

6.3CVSS6.7AI score0.0035EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.3 views

SUSE CVE-2012-3523

The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection"...

6.8CVSS7.1AI score0.03233EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.3 views

SUSE CVE-2019-3692

The packaging of inn on SUSE Linux Enterprise Server 11; openSUSE Factory, Leap 15.1 allows local attackers to escalate from user inn to root via symlink attacks. This issue affects: SUSE Linux Enterprise Server 11 inn version 2.4.2-170.21.3.1 and prior versions. openSUSE Factory inn version...

7CVSS6.9AI score0.005EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.3 views

SUSE CVE-2020-8026

A Incorrect Default Permissions vulnerability in the packaging of inn in openSUSE Leap 15.2, openSUSE Tumbleweed, openSUSE Leap 15.1 allows local attackers with control of the new user to escalate their privileges to root. This issue affects: openSUSE Leap 15.2 inn version 2.6.2-lp152.1.26 and...

7.8CVSS6.9AI score0.00362EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:41 a.m.2 views

SUSE CVE-2021-31998

A Incorrect Default Permissions vulnerability in the packaging of inn of SUSE Linux Enterprise Server 11-SP3; openSUSE Backports SLE-15-SP2, openSUSE Leap 15.2 allows local attackers to escalate their privileges from the news user to root. This issue affects: SUSE Linux Enterprise Server 11-SP3 i...

7.3CVSS6.8AI score0.00318EPSS
Exploits1References7
Openbugbounty
Openbugbounty
added 2022/11/30 7:29 a.m.15 views

westerninnsuitesdouglasga.us Cross Site Scripting vulnerability OBB-3079477

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/11/29 7:19 a.m.10 views

travellersinndawsoncreek.net Cross Site Scripting vulnerability OBB-3078182

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/10/05 5:15 a.m.12 views

executiveinntullahoma.us Cross Site Scripting vulnerability OBB-2977904

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2022/10/05 5:11 a.m.10 views

executiveinncrossville.us Cross Site Scripting vulnerability OBB-2977899

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2022/10/05 5:1 a.m.9 views

economyinngarnett.us Cross Site Scripting vulnerability OBB-2977887

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2022/07/19 12:55 a.m.15 views

fit-inn-pruem.de Cross Site Scripting vulnerability OBB-2796016

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2022/06/13 11:15 p.m.4 views

CVE-2021-41662

The South Gate Inn Online Reservation System v1.0 contains an SQL injection vulnerability that can be chained with a malicious PHP file upload, which is caused by improper file handling in the editImg function. This vulnerability leads to remote code execution...

9.8CVSS6AI score0.02013EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/13 10:45 p.m.21 views

CVE-2021-41662

The South Gate Inn Online Reservation System v1.0 contains an SQL injection vulnerability that can be chained with a malicious PHP file upload, which is caused by improper file handling in the editImg function. This vulnerability leads to remote code execution...

10AI score0.02013EPSS
Exploits1References1
CVE
CVE
added 2022/06/13 10:45 p.m.70 views

CVE-2021-41662

CVE-2021-41662 affects South Gate Inn Online Reservation System v1.0. The vulnerability is an SQL injection that can be chained with a malicious PHP file upload caused by improper file handling in the editImg function, enabling remote code execution. Documented CVSSv3.1 impact is Critical (9.8) w...

9.8CVSS9.8AI score0.02013EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.5 views

South Gate Inn Online Reservation System SQL注入漏洞

South Gate Inn Online Reservation System is a hotel online reservation system by Janobe Individual Developer. A security vulnerability exists in South Gate Inn Online Reservation System v1.0, which stems from improper file handling in the editImg function and can be exploited by an attacker to...

9.8CVSS8.3AI score0.02013EPSS
Exploits1References2
Openbugbounty
Openbugbounty
added 2022/04/27 6:4 a.m.13 views

orderonline.pizzainn.net.au Cross Site Scripting vulnerability OBB-2563773

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder