Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Packet Storm
Packet Stormadded 2021/10/06 12:0 a.m.293 views

G Data EndpointProtection Enterprise 17.08.2021 Privilege Escalation

DATA Anti-Virus: Abusing OpenSSL to get local admin Metadata =================================================== Release Date: 05-Oct-2021 Author: Florian Bogner @ https://bee-itsecurity.at Affected product: G Data’s Security Client “EndpointProtection Enterprise” Fixed in: all versions after...

0.9AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2010/10/06 12:0 a.m.16 views

FreeBSD : horde-base -- XSS and CSRF vulnerabilities (8fc55043-cb1e-11df-9c1b-0011098ad87f)

The Horde team reports : Thanks to Naumann IT Security Consulting for reporting the XSS vulnerability. Thanks to Secunia for releasing an advisory for the new CSRF protection in the preference interface The major changes compared to Horde version 3.3.8 are : Fixed XSS vulnerability in...

5.4AI score
Exploits0References4
securityvulns
securityvulnsadded 2010/09/12 12:0 a.m.172 views

XSS in Horde Application Framework <=3.3.8, icon_browser.php

Hi, Horde Application Framework v3.3.8 and lower are subject to a cross site scripting XSS vulnerability. The iconbrowser.php script fails to properly sanitize user supplied input to the 'subdir' URL parameter before printing it out as part of a HTML formatted error message. The following URL can...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2010/09/08 12:0 a.m.40 views

Horde Application Framework 3.3.8 Cross Site Scripting

Hi, Horde Application Framework v3.3.8 and lower are subject to a cross site scripting XSS vulnerability. The iconbrowser.php script fails to properly sanitize user supplied input to the 'subdir' URL parameter before printing it out as part of a HTML formatted error message. The following URL can...

7.4AI score
Exploits0
FreeBSD
FreeBSDadded 2010/06/03 12:0 a.m.12 views

horde-base -- XSS and CSRF vulnerabilities

The Horde team reports: Thanks to Naumann IT Security Consulting for reporting the XSS vulnerability. Thanks to Secunia for releasing an advisory for the new CSRF protection in the preference interface The major changes compared to Horde version 3.3.8 are: Fixed XSS vulnerability in...

3.6AI score
Exploits0References4
Positive Technologies
Positive Technologiesadded 2009/01/01 12:0 a.m.15 views

PT-2009-11: SlySoft Multiple Products ElbyCDIO.sys Denial of Service

Vulnerability Description Positive Technologies Research Team has discovered multiple memory corruption vulnerabilities in SlySoft products. The IOCTL handler in ElbyCDIO.sys 6.0.2.0 and earlier, shipped with AnyDVD, Virtual CloneDrive, CloneDVD and CloneCD, uses the METHODNEITHER communication...

4.9CVSS8.3AI score0.00725EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2009/01/01 12:0 a.m.8 views

PT-2009-05: CA Internet Security Suite Denial of Service Vulnerability

Positive Technologies Research Team has discovered a denial of service DoS vulnerability in CA Internet Security Suite. The IOCTL handler in vetmonnt.sys does not properly validate buffer data associated with the Irp object, which allows local users to crash the system. Solution Install latest...

4.9CVSS6.2AI score0.0035EPSS
Exploits1References4
Rows per page
Query Builder