Lucene search
K

216 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:15 a.m.2 views

SUSE CVE-2006-1729

Mozilla Firefox 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to read arbitrary files by 1 inserting the target filename into a text box, then turning that box into a file upload control, or 2 changing the type of the...

4.3CVSS8.7AI score0.02234EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:5 a.m.6 views

SUSE CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

5.1CVSS7.1AI score0.00337EPSS
Exploits0References10
Veracode
Veracode
added 2023/02/02 6:49 a.m.23 views

Deserialization Of Untrusted Data

manager-pojo is vulnerable to Deserialization Of Untrusted Data. The vulnerability exists because the filterSensitive function of MySQLSinkDTO.java does not properly decode the user input MySQL JDBC URLs, allowing an attacker to control the current state or the flow of the execution...

9.8CVSS8.8AI score0.01409EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/10 12:0 a.m.28 views

SAP BusinessObjects Business Intelligence Platform 4.1 < 4.1 SP12 P9 / 4.2 < 4.2 SP8 P5 XSS (2965154)

The version of SAP BusinessObjects Business Intelligence Platform installed on the remote Windows host is prior to 4.1 SP12 P9, 4.2 SP8 P5 or 4.2 SP9 P0. It is, therefore, affected by a XSS vulnerability. An authenticated attacker is allowed to inject malicious JavaScript payload into the custom...

5.4CVSS6.5AI score0.00529EPSS
Exploits0References2
GitLab Advisory Database
GitLab Advisory Database
added 2022/12/28 12:0 a.m.20 views

Use of Weak Hash

XML Digital Signatures generated and validated using this package use SHA-1, which may allow an attacker to craft inputs which cause hash collisions depending on their control over the input...

5.3CVSS2.1AI score0.00296EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/12/27 9:13 p.m.25 views

CVE-2020-36563 Weak hash (SHA-1) in github.com/RobotsAndPencils/go-saml

XML Digital Signatures generated and validated using this package use SHA-1, which may allow an attacker to craft inputs which cause hash collisions depending on their control over the input...

5.2AI score0.00296EPSS
Exploits0References2
Huntr
Huntr
added 2022/12/15 8:38 p.m.20 views

Stored XSS in Roles

Description Stored cross-site scripting vulnerabilities arise when user input is stored and later embedded into the application's responses in an unsafe way. An attacker can use the vulnerability to inject malicious JavaScript code into the application, which will execute within the browser of an...

4.3CVSS5.4AI score0.00473EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/12/14 12:0 a.m.7 views

ASUS Aura Sync 缓冲区错误漏洞

ASUS Aura Sync is a hardware light synchronization plug-in from the Chinese company Asus ASUS. A security vulnerability exists in ASUS Sync version v1.07.79, which stems from the failure of the MsIo64.sys component to properly validate inputs, allowing an attacker to trigger memory corruption and...

7.8CVSS7.4AI score0.00371EPSS
Exploits1References5
NVD
NVD
added 2022/12/06 7:15 p.m.14 views

CVE-2022-46161

pdfmake is an open source client/server side PDF printing in pure JavaScript. In versions up to and including 0.2.5 pdfmake contains an unsafe evaluation of user controlled input. Users of pdfmake are thus subject to arbitrary code execution in the context of the process running the pdfmake code...

10CVSS0.01585EPSS
Exploits1References2
Veracode
Veracode
added 2022/11/25 3:39 a.m.40 views

Remote Code Execution

yiisoft/yii is vulnerable to remote code execution. The vulnerability exists in the wakeup function of CDbCriteria.php, due to improper deserialization of untrusted user input, which allows the attacker to control the state or the flow of execution...

9.8CVSS9.4AI score0.01133EPSS
Exploits0References3Affected Software1
WPVulnDB
WPVulnDB
added 2022/09/26 12:0 a.m.16 views

Drag and Drop Multiple File Upload < 1.3.6.5 - File Upload Size Limit Bypass

The plugin does not properly check for the upload size limit set in forms, taking the value from user input sent when submitting the form. As a result, attackers could control the file length limit and bypass the limit set by admins in the contact form. PoC curl -X POST -F "sizelimit=10485760" -F...

4.3CVSS0.00543EPSS
Exploits2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/05/26 5:15 p.m.4 views

CVE-2022-27777

A XSS Vulnerability in Action View tag helpers = 5.2.0 and 5.2.0 which would allow an attacker to inject content if able to control input into specific attributes...

6.1CVSS5.9AI score0.01485EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/24 5:4 p.m.23 views

Treekill Enables OS Command Injection

A Code Injection exists in treekill and tree-kill on Windows which allows a remote code execution when an attacker is able to control the input into the command. Steps To Reproduce: Create the following PoC file: js var kill = require'treekill'; kill'3333332 & echo "HACKED" HACKED.txt & '; Execut...

9.8CVSS10AI score0.02742EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2022/05/13 1:31 a.m.25 views

GHSA-CQP7-HWM3-CFG7 XSS vulnerability in Jenkins Warnings Next Generation Plugin

A cross-site scripting vulnerability exists in Jenkins Warnings Next Generation Plugin 1.0.1 and earlier in src/main/java/io/jenkins/plugins/analysis/core/model/DetailsTableModel.java, src/main/java/io/jenkins/plugins/analysis/core/model/SourceDetail.java,...

6.1CVSS6AI score0.01041EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/25 5:15 p.m.4 views

CVE-2022-1441

MP4Box is a component of GPAC-2.0.0, which is a widely-used third-party package on RPM Fusion. When MP4Box tries to parse a MP4 file, it calls the function diSTboxread to read from video. In this function, it allocates a buffer str with fixed length. However, content read from bs is controllable ...

7.8CVSS7.8AI score0.00935EPSS
Exploits1References4
OSV
OSV
added 2022/04/15 6:15 p.m.20 views

CVE-2021-44488

An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can control the size and input to calls to memcpy in opfnfnumber in srport/opfnfnumber.c in order to corrupt memory or crash the application...

9.1CVSS6.8AI score
Exploits0References1
Cvelist
Cvelist
added 2022/04/15 5:23 p.m.17 views

CVE-2021-44488

An issue was discovered in YottaDB through r1.32 and V7.0-000. Using crafted input, attackers can control the size and input to calls to memcpy in opfnfnumber in srport/opfnfnumber.c in order to corrupt memory or crash the application...

9.3AI score0.01011EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/02/09 11:15 p.m.6 views

CVE-2022-22546

Due to improper HTML encoding in input control summary, an authorized attacker can execute XSS vulnerability in SAP Business Objects Web Intelligence BI Launchpad - version 420...

5.4CVSS6.1AI score0.00489EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/02/09 11:15 p.m.4 views

CVE-2022-22546

Due to improper HTML encoding in input control summary, an authorized attacker can execute XSS vulnerability in SAP Business Objects Web Intelligence BI Launchpad - version 420...

5.4CVSS6.1AI score0.00489EPSS
Exploits0References2
NVD
NVD
added 2022/02/03 2:15 p.m.34 views

CVE-2022-21739

Tensorflow is an Open Source Machine Learning Framework. The implementation of QuantizedMaxPool has an undefined behavior where user controlled inputs can trigger a reference binding to null pointer. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow...

6.5CVSS0.00783EPSS
Exploits1References3
Rows per page
Query Builder