Lucene search
K

29 matches found

ATTACKERKB
ATTACKERKB
added 2024/01/23 9:15 p.m.6 views

CVE-2023-51200

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability...

5.8AI score
Exploits0References6
Code423n4
Code423n4
added 2023/11/10 12:0 a.m.7 views

Vote power can be manipulated to propose and/or pass needed proposals

Lines of code Vulnerability details Impact The PartyGovernance contract is susceptible to vote manipulation, as an attacker could potentially acquire a substantial loan, even without collateral, within a single block before submitting a proposal. The voting process solely considers this particula...

7.5AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.4 views

SUSE CVE-2009-4124

Heap-based buffer overflow in the rbstrjustify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving 1 Stringljust, 2 Stringcenter, or 3 Stringrjust. NOTE: some of these details are obtained from third...

10CVSS8.4AI score0.03875EPSS
Exploits1References4
Imperva Blog
Imperva Blog
added 2021/12/02 1:56 p.m.18 views

The cost of data security – it’s not just about the numbers

Organizations striving to improve their security posture often find this a multi-faceted challenge. In addition to the security product evaluation itself, security budgets are tight and justification is a necessary step. Financial language, however, is not everyone’s forte - and fiscal presentati...

0.5AI score
Exploits0
Hacker One
Hacker One
added 2020/06/22 6:9 a.m.14 views

U.S. Dept Of Defense: Access to requests and approvals via /█████ allows sensitive information gathering

Summary: An adversary is able to view/modify requests and approvals via ████████/████████. Step-by-step Reproduction Instructions 1. Browse to █████ and create an account or sign in. 2. Browse to ███████/██████████. You can now view current/past requests. 3. Clicking on these requests seems to...

2.6AI score
Exploits0
Pen Test Partners Blog
Pen Test Partners Blog
added 2018/10/31 8:15 a.m.54 views

Ghost hardware. Device No.1, the Ghost Pro

Colloquially known as a “Ghost Pro” this full spectrum camera is supposed to allow you to see beyond the visible spectrum, into the infrared and ultraviolet ranges. This one has Wi-Fi as well, for ease of remote control. There’s a few questions we wanted to answer with this one. Who’s the camera...

7.1AI score
Exploits0
OSV
OSV
added 2014/06/11 10:57 a.m.3 views

UBUNTU-CVE-2014-1536

The PropertyProvider::FindJustificationRange function in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via unspecified vectors...

10CVSS7.3AI score0.05936EPSS
Exploits0References4
Fedora
Fedora
added 2010/05/25 6:40 p.m.11 views

[SECURITY] Fedora 12 Update: html2ps-1.0-0.4.b5.fc12

An HTML to PostScript converter written in Perl. Many possibilities to control the appearance. Support for processing multiple documents. A table of contents can be generated. Configurable page headers/footers. Automatic hyphenation and text justification can be selected...

0.6AI score
Exploits0
Fedora
Fedora
added 2010/05/25 6:37 p.m.13 views

[SECURITY] Fedora 11 Update: html2ps-1.0-0.3.b5.fc11

An HTML to PostScript converter written in Perl. Many possibilities to control the appearance. Support for processing multiple documents. A table of contents can be generated. Configurable page headers/footers. Automatic hyphenation and text justification can be selected...

0.6AI score
Exploits0
Rows per page
Query Builder