Lucene search
+L

971 matches found

cvelist
cvelist
•added 2017/12/14 4:0 p.m.•30 views

CVE-2017-17514

boxes.c in nip2 8.4.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a software maintainer indicates that this product does not use the BROWSER...

8.6AI score0.01685EPSS
Exploits0References2
debiancve
debiancve
•added 2017/12/14 4:0 p.m.•53 views

CVE-2017-17514

boxes.c in nip2 8.4.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a software maintainer indicates that this product does not use the BROWSER...

8.8CVSS8.6AI score0.01685EPSS
Exploits0
osv
osv
•added 2017/11/29 7:29 a.m.•8 views

CVE-2017-17058

The WooCommerce plugin through 3.x for WordPress has a Directory Traversal Vulnerability via a /wp-content/plugins/woocommerce/templates/emails/plain/ URI, which accesses a parent directory. NOTE: a software maintainer indicates that Directory Traversal is not possible because all of the template...

7.5CVSS7.6AI score
Exploits0References3
drupal
drupal
•added 2017/08/09 12:0 a.m.•16 views

Better field descriptions - Critical - XSS - SA-CONTRIB-2017-064

This module enables you to add themeable descriptions to fields in forms. The module doesn't sufficiently sanitize descriptions. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "add better descriptions to fields". CVE identifiers issued ACVE...

7AI score
Exploits0References12
cvelist
cvelist
•added 2017/07/27 6:0 a.m.•27 views

CVE-2017-9614

The fillinputbuffer function in jdatasrc.c in libjpeg-turbo 1.5.1 allows remote attackers to cause a denial of service invalid memory access and application crash or possibly have unspecified other impact via a crafted jpg file. NOTE: Maintainer asserts the issue is due to a bug in downstream cod...

9AI score0.08152EPSS
Exploits4References4
nvd
nvd
•added 2017/06/09 4:29 p.m.•22 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.9CVSS6.8AI score0.00551EPSS
Exploits0References5
osv
osv
•added 2017/06/09 4:29 p.m.•6 views

UBUNTU-CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.7CVSS6.7AI score0.00551EPSS
Exploits0References7
debiancve
debiancve
•added 2017/06/09 4:0 p.m.•58 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.9CVSS6.8AI score0.00551EPSS
Exploits0
cvelist
cvelist
•added 2017/06/09 4:0 p.m.•32 views

CVE-2017-9525

In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs...

6.7AI score0.00551EPSS
Exploits0References5
hackerone
hackerone
•added 2017/06/02 2:29 p.m.•26 views

Ruby: Ruby 2.3.x and 2.2.x still bundle DoS vulnerable verision of libYAML

libYAML 0.1.6 and 0.1.5 has a DoS vulnerablitity known as CVE-2014-9130. Now Ruby 2.4.x bundles fixed version 0.1.7, but 2.3.x and 2.2.x still bundle 0.1.6. Note that I'm the maintainer of Ruby 2.3.x and 2.2.x. Therefore, this report is a kind of remainder...

5CVSS6.4AI score0.13195EPSS
Exploits1
ubuntucve
ubuntucve
•added 2017/05/23 4:29 a.m.•13 views

CVE-2017-9200

libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:528:63...

9.8CVSS7.2AI score0.02262EPSS
Exploits0References2
ubuntucve
ubuntucve
•added 2017/05/23 4:29 a.m.•29 views

CVE-2017-9171

libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-bmp.c:492:24...

9.8CVSS7.3AI score0.02173EPSS
Exploits0References2
drupal
drupal
•added 2017/04/12 12:0 a.m.•13 views

Scheduler Workbench Integration - Critical - Unsupported - SA-CONTRIB-2017-39

Updates 20170414 - A new module maintainer has been found and a new release for this module has been published. Provides integration between the Scheduler module and the Workbench Moderation module. The security team is marking this module unsupported. There is a known security issue with the...

7.1AI score
Exploits0References8
drupal
drupal
•added 2017/02/08 12:0 a.m.•18 views

Storage API stream wrappers - Moderately Critical - Access bypass - SA-CONTRIB-2017-010

This module provides stream wrappers to integrate Storage API with Drupal, as an alternative to Storage API's corebridge submodule. It provides two stream wrappers: "Storage API Public" and "Storage API Private". The private storage API doesn't sufficiently performs access control allowing...

7.1AI score
Exploits0References14
debian
debian
•added 2016/12/18 9:12 a.m.•83 views

[SECURITY] [DSA 3738-1] tomcat7 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3738-1 [email protected] https://www.debian.org/security/ Sebastien Delafond December 18, 2016 https://www.debian.org/security/faq -...

9.8CVSS9.9AI score0.90338EPSS
Exploits7
nodejs
nodejs
•added 2016/12/01 5:27 p.m.•27 views

Downloads Resources over HTTP

Overview Affected versions of haxe-dev insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on...

9.3CVSS4.9AI score0.01752EPSS
Exploits0Affected Software1
nessus
nessus
•added 2016/05/31 12:0 a.m.•18 views

Debian DLA-492-1 : pdns security update

It was discovered that the maintainer scripts of pdns-backend-mysql grant too wide database permissions for the pdns user. Other backends are not affected. For Debian 7 'Wheezy', these problems have been fixed in version 3.1-4.1+deb7u1. Note that if you're running the pdns server with the mysql...

9.8CVSS5.5AI score0.00433EPSS
Exploits0References3
osv
osv
•added 2016/05/29 12:0 a.m.•9 views

DLA-492-1 pdns - security update

Bulletin has no description...

9.8CVSS6.5AI score0.00433EPSS
Exploits0
drupal
drupal
•added 2016/04/06 12:0 a.m.•10 views

Drupal Commerce - Less Critical - Information disclosure - SA-CONTRIB-2016-019

This module enables you to build an online store that uses nodes to display products through the use of product reference fields. The default widget for those fields is an autocomplete textfield similar to the taxonomy term reference field's autocomplete widget. As you type in the textfield, the...

7AI score
Exploits0References13
drupal
drupal
•added 2016/03/16 12:0 a.m.•19 views

Fast Autocomplete - Critical - DOS vulnerability - SA-CONTRIB-2016-016

This module enables you to show IMDB-like suggestions when entering terms into an input field using json files to "cache" suggestions making the autocomplete very fast. The module doesn't sufficiently validate the incoming language parameter in the request path when a json file of the module is...

7.1AI score
Exploits0References14
Rows per page
Query Builder