Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

348 matches found

UbuntuCve
UbuntuCveadded 2012/01/08 3:55 p.m.27 views

CVE-2012-0393

The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public constructors, which allows remote attackers to create or overwrite arbitrary files via a crafted parameter that triggers the creation of a Java object...

6.4CVSS7.3AI score0.38261EPSS
Exploits1References3
CVE
CVEadded 2012/01/08 3:0 p.m.74 views

CVE-2012-0393

CVE-2012-0393 concerns Apache Struts 2.x. The vulnerability lies in the ParameterInterceptor component not preventing access to public constructors, allowing a remote attacker to cause the creation of Java objects and thus “trigger” the creation or overwrite of arbitrary files via a crafted param...

6.4CVSS8.8AI score0.38261EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCveadded 2009/06/12 12:0 a.m.31 views

CVE-2009-1837

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

9.3CVSS7.5AI score0.04331EPSS
Exploits2References2
CVE
CVEadded 2002/11/14 5:0 a.m.59 views

CVE-2002-1295

The CVE-2002-1295 entry concerns the Microsoft Java VM used by Internet Explorer. The vulnerability arises when HTML applet tags bypass Java class restriction checks by supplying the class name in the code parameter, allowing remote attackers to cause a crash (denial of service) and potentially p...

7.5CVSS6.8AI score0.15443EPSS
Exploits0References5Affected Software1
securityvulns
securityvulnsadded 2000/10/26 12:0 a.m.23 views

Очередная уязвимость в Internet Explorer (Java Object)

Через OBJECT c CLASSID="JAVA" можно обращаться к локальным документам...

0.8AI score
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2000/10/13 12:0 a.m.31 views

Очередная серьезная дырка в Internet Explorer (Microsoft VM ActiveX Component)

Один из встроенных JAVA-объектов позволяет выполнение любых ActiveX-компонент, в т.ч. не помеченные как безопасные...

0.6AI score
Exploits0References2Affected Software1
exploitpack
exploitpackadded 2000/10/05 12:0 a.m.7 views

Microsoft Virtual Machine 2000310032003300 Series - com.ms.activeX.ActiveXComponent Arbitrary Program Execution

Microsoft Virtual Machine 2000310032003300 Series - com.ms.activeX.ActiveXComponent Arbitrary Program Execution source: https://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute...

0.7AI score
Exploits0
Exploit DB
Exploit DBadded 2000/10/05 12:0 a.m.23 views

Microsoft Virtual Machine 2000/3100/3200/3300 Series - 'com.ms.activeX.ActiveXComponent' Arbitrary Program Execution

source: https://www.securityfocus.com/bid/1754/info If a malicious website operator were to embed a specially crafted java object into a HTML document, it would be possible to execute arbitrary programs on a target host viewing the webpage through either Microsoft Internet Explorer or Outlook. Th...

7.4AI score
Exploits0
Rows per page
Query Builder