CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11252 matches found

VMware•added 2010/12/19 12:0 a.m.•60 views

VMSA-2010-0020:VMware ESXi 4.1 Update Installer SFCB Authentication Flaw

VMSA-2010-0020.1 VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0020.1 VMware Security Advisory Synopsis: VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory Issue date: 2010-12-21...

9.3CVSS6.5AI score0.02516EPSS

Exploits0Affected Software1

ThreatPost•added 2010/11/19 3:40 p.m.•8 views

Apple Patches Safari Browser Holes

Apple on Thursday issued updates for its Safari Web browser to fix more than two dozen vulnerabilities that left the browser open to Web-based attacks. The company released Safari versions 5.0.3 and 4.1.3 for Mac OS X and Windows XP SP2, Vista and Windows 7. The updated versions fix 27 reported...

1.1AI score

Exploits0References4

securityvulns•added 2010/11/10 12:0 a.m.•102 views

Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway (UAG) Could Allow Elevation of Privilege (2316074)

Microsoft Security Bulletin MS10-089 - Important Vulnerabilities in Forefront Unified Access Gateway UAG Could Allow Elevation of Privilege 2316074 Published: November 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves four privately reported vulnerabilities...

5.8CVSS0.4AI score0.19111EPSS

Exploits0

Microsoft KB•added 2010/11/10 12:0 a.m.•112 views

Description of the hotfix rollup package for System Center Data Protection Manager 2010: November 10, 2010

None None...

5.8AI score

Exploits0

ThreatPost•added 2010/10/04 7:52 p.m.•14 views

Hack in the Box (HITB)

Kuala Lumpur, Malaysia Booked as “Asia’s Premier Deep Knowledge Security Conference,” HITB is in its 8th year and has since expanded into other countries in the Middle East and Europe. Modeled on shows like Black Hat, HITB offers both training sessions and a multi track security conference and...

1.8AI score

Exploits0References2

0day.today•added 2010/08/03 12:0 a.m.•22 views

68KB v1.0.0rc4 Remote File Include Vulnerability

Exploit for php platform in category web applications ================================================ 68KB v1.0.0rc4 Remote File Include Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\...

7.1AI score

Exploits0

Packet Storm•added 2010/08/03 12:0 a.m.•27 views

60KB 1.0.0.rc4 Remote File Inclusion

==================================================== 68KB v1.0.0rc4 Remote File Include Vulnerability ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ ...

7.4AI score

Exploits0

Packet Storm•added 2010/08/03 12:0 a.m.•26 views

68KB 1.0.0rc4 Remote File Inclusion

================================================ 68KB v1.0.0rc4 Remote File Include Vulnerability ================================================ 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /...

7.4AI score

Exploits0

Saint•added 2010/07/29 12:0 a.m.•14 views

Yahoo Messenger WScript.Shell ActiveX control command execution

Added: 07/29/2010 Background Yahoo! Messenger is an instant messaging application. It includes the WScript.Shell ActiveX control. Problem The Execute method of the WScript.Shell ActiveX control allows command execution when a malicious web page is loaded in Internet Explorer. Resolution Set the...

7.4AI score

Exploits0

Saint•added 2010/07/29 12:0 a.m.•18 views

Yahoo Messenger WScript.Shell ActiveX control command execution

7.4AI score

Exploits0

Saint•added 2010/07/29 12:0 a.m.•78 views

Yahoo Messenger WScript.Shell ActiveX control command execution

7.3AI score

Exploits0

CVE•added 2010/07/13 10:7 p.m.•55 views

CVE-2010-0836

CVE-2010-0836 affects Oracle Knowledge Management in Oracle E-Business Suite (11.5.10.2, 12.0.6, 12.1.2). The vulnerability is reachable over HTTP without authentication, with an impact to integrity (partial) and no impact on confidentiality or availability per the CVSS data. The Oracle CPU July ...

2.6CVSS6.1AI score0.01223EPSS

Exploits0References1Affected Software1

exploitpack•added 2010/06/28 12:0 a.m.•25 views

Netartmedia iBoutique.MALL - SQL Injection

Netartmedia iBoutique.MALL - SQL Injection Name : Netartmedia iBoutique.MALL SQLi Vulnerability Date : june, 28 2010 Critical Level : HIGH Vendor Url : http://www.netartmedia.net/mall/ Author : Sid3^effects aKa HaRi special thanks to : r0073r inj3ct0r.com,L0rd...

0.9AI score

Exploits0

securityvulns•added 2010/06/09 12:0 a.m.•137 views

Microsoft Security Bulletin MS10-039 - Important Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2028554)

Microsoft Security Bulletin MS10-039 - Important Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege 2028554 Published: June 08, 2010 Version: 1.0 General Information Executive Summary This security update resolves one publicly disclosed and two privately reported...

6.8CVSS0.2AI score0.28707EPSS

Exploits2

exploitpack•added 2010/05/10 12:0 a.m.•21 views

PHPKB Knowledge Base Software 2.0 - Multilanguage Support Multiple SQL Injections

PHPKB Knowledge Base Software 2.0 - Multilanguage Support Multiple SQL Injections + In The Name Of Allah The Mercifull + Tybe: PHPKB Knowledge Base Software v2 Multilanguage Support Multi SQL Injection Vulnerabilities Vendor: www.knowledgebase-script.com + Software:PHPKB Knowledge Base Software v...

8.1AI score

Exploits0

Packet Storm•added 2010/05/10 12:0 a.m.•29 views

PHPKB Knowledge Base Software 2 SQL Injection

? ?????????????????????????In The Name Of Allah The Mercifull?????????????????????? ? Tybe:PHPKB Knowledge Base Software v2 Multilanguage Supportcomment.php IDsuffer from Sql Injection Vulnerability Vendor: www.knowledgebase-script.com ? Software: PHPKB Knowledge Base Software v2 Multilanguage...

7.4AI score

Exploits0

Exploit DB•added 2010/05/10 12:0 a.m.•27 views

PHPKB Knowledge Base Software 2.0 - Multilanguage Support Multiple SQL Injections

In The Name Of Allah The Mercifull + Tybe: PHPKB Knowledge Base Software v2 Multilanguage Support Multi SQL Injection Vulnerabilities Vendor: www.knowledgebase-script.com + Software:PHPKB Knowledge Base Software v2 Multilanguage Support - + author: R3d-D3v!L + TEAM: ArAB!AN !NFORMAT!ON SeCuR!TY...

7.4AI score

Exploits0

OpenVAS•added 2010/04/26 12:0 a.m.•41 views

Microsoft SMTP Service and Exchange Routing Engine Buffer Overflow Vulnerability

The Microsoft Windows 2003 SMTP Service and Exchange Routing Engine have been reported prone to a buffer overflow. This occurs during the processing responses to DNS lookups. Successful exploitation could allow for remote code execution in the context of the vulnerable service. OpenVAS...

10CVSS0.5AI score0.30291EPSS

Exploits0References3

Exploit DB•added 2010/04/24 12:0 a.m.•40 views

Alstrasoft AskMe Pro 2.1 - 'que_id' SQL Injection

/ / / \ \ \ \ \ / / \\ \ \ \ \ // /// \ \ / / \ //|\ / \ \ \ \ \ \ / / \ \ / / \ | | | \ | | || | | |/ / \ V / || |\ V / / \ | / \ | /| | | || / | | | | . | ' || / | || // \ // \|||/|||||||||\ .WEB.ID ----------------------------------------------------------------------- AskMe Pro...

7.4AI score

Exploits0

Packet Storm•added 2010/04/13 12:0 a.m.•27 views

Aladdin eToken PKI Client 4.5 Virtual File Handling Unspecified Memory Corruption

!/usr/bin/perl -w Title: Aladdin eToken PKI Client v4.5 Virtual File Handling Unspecified Memory Corruption PoC Summary: The eToken PKI Client is the software that enables eToken USB operation and the implementation of eToken PKI-based solutions. These solutions include certificate-based strong...

0.6AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by