Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-0771

Malware in sbrugna...

5.1CVSS6.4AI score0.01159EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-54664

Malicious code in bioql PyPI...

5.4CVSS6.1AI score0.00395EPSS
Exploits2References1
AlpineLinux
AlpineLinux
added 2024/06/11 1:15 p.m.17 views

CVE-2024-5692

On Windows 10, when using the 'Save As' functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as .url by including an invalid character in the extension. Note: This issue only affected Windows operating systems. Other operating systems are...

6.5CVSS6.1AI score0.0062EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2023/10/16 7:39 p.m.5 views

CVE-2023-4821 Drag and Drop Multiple File Upload < 1.1.1 - Unauthenticated Stored Cross-Site Scripting

The Drag and Drop Multiple File Upload for WooCommerce WordPress plugin before 1.1.1 does not filter all potentially dangerous file extensions. Therefore, an attacker can upload unsafe .shtml or .svg files containing malicious scripts...

7.1AI score0.00395EPSS
Exploits2References1
Debian CVE
Debian CVE
added 2023/06/19 10:3 a.m.27 views

CVE-2023-29542

A newline in a filename could have been used to bypass the file extension security mechanisms that replace malicious file extensions such as .lnk with .download. This could have led to accidental execution of malicious code. This bug only affects Firefox and Thunderbird on Windows. Other versions...

9.8CVSS8.1AI score0.0094EPSS
Exploits0
Prion
Prion
added 2008/01/17 2:0 a.m.11 views

Design/Logic Flaw

Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the 1 Core application or 2 MIME module...

7.5CVSS7.7AI score0.02007EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2006/02/18 2:2 a.m.17 views

Design/Logic Flaw

GUI display truncation vulnerability in ICQ Inc. formerly Mirabilis ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions, bypass Windows security warnings via a filename that is all uppercase and of a...

5.1CVSS7.3AI score0.01159EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2006/02/18 2:0 a.m.16 views

CVE-2006-0766

ICQ Inc. formerly Mirabilis ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote attackers to hide malicious file extensions and bypass Windows security warnings via a filename that ends in an assumed-safe extension such as JPG, and possibly...

6.9AI score0.01159EPSS
Exploits0References2
Rows per page
Query Builder