CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4502 matches found

Debian•added 2005/07/10 5:41 p.m.•54 views

[SECURITY] [DSA 747-1] New egroupware packages fix remote command execution

------------------------------------------------------------------------ Debian Security Advisory DSA 747-1 [email protected] http://www.debian.org/security/ Michael Stone July 10, 2005 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

7.5CVSS6.7AI score0.79071EPSS

Exploits5

securityvulns•added 2005/06/30 12:0 a.m.•33 views

[SA15864] Comdev News Publisher Cross-Site Scripting and PHP Code Execution

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.7AI score

Exploits0

securityvulns•added 2005/06/30 12:0 a.m.•32 views

[SA15819] NateOn Messenger Directory Listing Disclosure Vulnerability

0.5AI score

Exploits0

FreeBSD•added 2005/06/28 12:0 a.m.•35 views

phpbb -- remote PHP code execution vulnerability

FrSIRT Advisory reports: A vulnerability was identified in phpBB, which may be exploited by attackers to compromise a vulnerable web server. This flaw is due to an input validation error in the "viewtopic.php" script that does not properly filter the "highlight" parameter before calling the...

7.5CVSS6.7AI score0.85366EPSS

Exploits9References2

securityvulns•added 2005/06/22 12:0 a.m.•44 views

[Full-disclosure] iDEFENSE Security Advisory 06.22.05: Multiple Vendor Cacti config_settings.php Remote Code Execution Vulnerability

Multiple Vendor Cacti configsettings.php Remote Code Execution Vulnerability iDEFENSE Security Advisory 06.22.05 www.idefense.com/application/poi/display?id=266&type=vulnerabilities June 22, 2005 I. BACKGROUND Cacti is a round-robin database RRD tool that helps create graphs from database...

7.5CVSS0.4AI score0.16552EPSS

Exploits0

securityvulns•added 2005/05/10 12:0 a.m.•415 views

[Full-disclosure] Easy Message Board Directory Traversal and Remote Command

============================================================ ============================================================ Title: Easy Message Board Directory Traversal and Remote Command Execution Vulnerability discovery: SoulBlack - Security Research - http://soulblack.com.ar Date: 08/05/2005...

1.8AI score

Exploits0

securityvulns•added 2005/05/10 12:0 a.m.•165 views

Easy Message Board Directory Traversal and Remote Command

1.9AI score

Exploits0

exploitpack•added 2005/05/07 12:0 a.m.•19 views

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities because the software fails to properly sanitize user-supplied data. Exploits will allow arbitrary HTML and script code to run in a...

4.3CVSS0.3AI score0.0172EPSS

Exploits4

Exploit DB•added 2005/05/07 12:0 a.m.•42 views

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities because the software fails to properly sanitize user-supplied data. Exploits will allow arbitrary HTML and script code to run in a victim's browser, allowing the attacker to steal cookie-based credentials a...

4.3CVSS7AI score0.0172EPSS

Exploits4

securityvulns•added 2005/04/13 12:0 a.m.•52 views

iDEFENSE Security Advisory 04.12.05: Microsoft Windows Internet Explorer Long Hostname Heap Corruption Vulnerability

Microsoft Windows Internet Explorer Long Hostname Heap Corruption Vulnerability iDEFENSE Security Advisory 04.12.05 www.idefense.com/application/poi/display?id=229&type=vulnerabilities April 12, 2005 I. BACKGROUND Internet Explorer is a set of core technologies in Microsoft Windows operating...

7.5CVSS7.8AI score0.5791EPSS

Exploits0

securityvulns•added 2005/04/11 12:0 a.m.•33 views

[SA14851] Logics Software LOG-FT File Transfer Arbitrary File Disclosure

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Logics Software LOG-FT File Transfer Arbitrary File...

7AI score

Exploits0

securityvulns•added 2005/03/24 12:0 a.m.•26 views

[SA14677] Sun Java System Application Server Cross-Site Scripting

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Sun Java System Application Server Cross-Site Scriptin...

0.3AI score

Exploits0

exploitpack•added 2005/03/12 12:0 a.m.•15 views

HolaCMS 1.21.4.x Voting Module - Remote File Corruption

HolaCMS 1.21.4.x Voting Module - Remote File Corruption source: https://www.securityfocus.com/bid/12789/info HolaCMS is prone to a vulnerability that may allow remote users to corrupt files on the server. This is due an input validation error that allows users to submit voting data to an...

7.5AI score

Exploits0

Tenable Nessus•added 2005/03/11 12:0 a.m.•14 views

Oracle MySQL Multiple Vulnerabilities

Binary data 2696.prm...

4.6CVSS7.3AI score0.1844EPSS

Exploits3References8

FreeBSD•added 2005/02/28 12:0 a.m.•25 views

postnuke -- cross-site scripting (XSS) vulnerabilities

A cross-site scripting vulnerability is present in the PostNuke PHP content management system. By passing data injected through exploitable errors in input validation, an attacker can insert code which will run on the machine of anybody viewing the page. It is feasible that this attack could be...

4.3CVSS6.1AI score0.01164EPSS

Exploits0References2

securityvulns•added 2005/02/24 12:0 a.m.•23 views

[SA14373] ginp Directory Traversal Vulnerability

TITLE: ginp Directory Traversal Vulnerability SECUNIA ADVISORY ID: SA14373 VERIFY ADVISORY: http://secunia.com/advisories/14373/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: ginp 0.x http://secunia.com/product/4566/ DESCRIPTION: A...

1AI score

Exploits0

securityvulns•added 2005/01/24 12:0 a.m.•27 views

[SA13971] Xerox WorkCentre Pro PostScript Directory Traversal

TITLE: Xerox WorkCentre Pro PostScript Directory Traversal SECUNIA ADVISORY ID: SA13971 VERIFY ADVISORY: http://secunia.com/advisories/13971/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: From local network OPERATING SYSTEM: Xerox WorkCentre Pro...

1.6AI score

Exploits0

Tenable Nessus•added 2005/01/21 12:0 a.m.•12 views

Squid < 2.5.STABLE8 DoS

Binary data 2520.prm...

7.5CVSS7.3AI score0.69661EPSS

Exploits0References10

CERT•added 2005/01/18 12:0 a.m.•42 views

Veritas NetBackup "bpjava-susvc" process contains an input validation error

Overview Veritas NetBackup Administrative Assistant interface may allow users to execute arbitrary commands with elevated privileges. Description The Veritas NetBackup Administrative Assistant interface bpjava-susvc contains an input validation vulnerability. According to Veritas Alert 271727 :Wh...

7.5AI score

Exploits0References3

securityvulns•added 2004/12/15 12:0 a.m.•35 views

STG Security Advisory: [SSA-20041209-13] UseModWiki XSS vulnerability

STG Security Advisory: SSA-20041209-13 UseModWiki XSS vulnerability Revision 1.0 Date Published: 2004-12-09 KST Last Update: 2004-12-09 Disclosed by SSR Team [email protected] Summary ======== UseModWiki is one of famous wiki web applications. It has a cross-site scripting vulnerability...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by