Lucene search
K

35 matches found

OSV
OSV
added 2021/03/25 12:0 a.m.5 views

UBUNTU-CVE-2021-23986

A malicious extension with the 'search' permission could have installed a new search engine whose favicon referenced a cross-origin URL. The response to this cross-origin request could have been read by the extension, allowing a same-origin policy bypass by the extension, which should not have...

6.5CVSS6.8AI score0.00436EPSS
Exploits0References4
Veracode
Veracode
added 2020/04/10 1:7 a.m.24 views

Privilege Escalation

nfs-utils is vulnerable to privilege escalation. A flaw was found in the way nfs-utils performed IP based authentication of mount requests. In configurations where a directory was exported to a group of systems using a DNS wildcard or NIS Network Information Service netgroup, an attacker could...

7.5CVSS2.1AI score0.02543EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2016/12/11 2:59 a.m.9 views

CVE-2016-6624

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

5.9CVSS7.4AI score
Exploits0References4
Prion
Prion
added 2016/12/11 2:59 a.m.19 views

Design/Logic Flaw

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

4.3CVSS6.9AI score0.02025EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2016/12/11 2:59 a.m.27 views

CVE-2016-6624

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

5.9CVSS6.9AI score0.02025EPSS
Exploits0References2
CVE
CVE
added 2016/12/11 2:0 a.m.112 views

CVE-2016-6624

CVE-2016-6624 affects phpMyAdmin: IPv6 in proxy setups can bypass IP-based authentication when the proxy is allowed but the client is not. Affected versions are 4.6.x before 4.6.4, 4.4.x before 4.4.15.8, and 4.0.x before 4.0.10.17. The vulnerability allows the attacking host to connect despite IP...

5.9CVSS7.2AI score0.02025EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2016/12/11 2:0 a.m.25 views

CVE-2016-6624

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

7.3AI score0.02025EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2016/12/11 2:0 a.m.33 views

CVE-2016-6624

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

5.9CVSS7.6AI score0.02025EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.35 views

CVE-2016-6624

An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the...

5.9CVSS7.5AI score0.02025EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.46 views

Scientific Linux Security Update : nfs-utils on SL6.x i386/x86_64

The nfs-utils packages provide a daemon for the kernel Network File System NFS server, and related tools such as the mount.nfs, umount.nfs, and showmount programs. A flaw was found in the way nfs-utils performed IP based authentication of mount requests. In configurations where a directory was...

7.5CVSS5.4AI score0.02543EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/07/09 12:0 a.m.51 views

RedHat Update for nfs-utils RHSA-2011:1534-03

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.5CVSS7.5AI score0.02543EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/07/09 12:0 a.m.28 views

RedHat Update for nfs-utils RHSA-2011:1534-03

Check for the Version of nfs-utils OpenVAS Vulnerability Test RedHat Update for nfs-utils RHSA-2011:1534-03 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

7.5CVSS7.5AI score0.02543EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2010/04/21 12:0 a.m.25 views

e107 0.7.19 Source IP Address Spoof

Vulnerability ID: HTB22343 Reference: http://www.htbridge.ch/advisory/ipaddressspoofingine107.html Product: e107 Website System Vendor: e107 Vulnerable Version: 0.7.19 and Probably Prior Versions Vendor Notification: 05 April 2010 Vulnerability Type: Application Logic Error Status: Not Fixed,...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2009/06/08 12:0 a.m.37 views

News Server (NNTP) Anonymous Read Access

The remote NNTP server seems to be open to outsiders. Some people like open NNTP servers as they allow one to read Usenet news articles anonymously. Unwanted connections could waste your bandwidth. Note that it is very common for NNTP servers to use IP-based authentication so this may be a false...

5.5AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.14 views

Open News server

The remote server seems open to outsiders. Some people love open public NNTP servers to be able to read and/or post articles anonymously. Keep in mind that robots are harvesting such open servers on Internet, so you cannot hope that you will stay hidden for long. Unwanted connections could waste...

7.1AI score
Exploits0
Rows per page
Query Builder