Lucene search
K

229 matches found

CVE
CVE
added 2011/03/18 4:0 p.m.55 views

CVE-2010-4767

CVE-2010-4767 affects Open Ticket Request System (OTRS) prior to version 2.3.6. The issue arises in how the system processes email messages where the From header contains UTF-8 characters with diacritical marks alongside an invalid charset, enabling a remote attacker to cause a DoS by sending a c...

5CVSS6.7AI score0.01694EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2011/03/18 4:0 p.m.21 views

CVE-2010-4767

Open Ticket Request System OTRS before 2.3.6 does not properly handle e-mail messages in which the From line contains UTF-8 characters associated with diacritical marks and an invalid charset, which allows remote attackers to cause a denial of service duplicate tickets and duplicate auto-response...

5CVSS6.1AI score0.01694EPSS
Exploits0
myhack58
myhack58
added 2010/12/16 12:0 a.m.41 views

PHP168 V6. 01/6. 0 2 elevation of privilege and storm the local path vulnerability-vulnerability warning-the black bar safety net

PHP168 whole Station is the PHP field of the current most powerful build system, The code is all open source, can be extremely convenient for secondary development, all modules can be freely installed and removed, individual users completely free to use PHPCMS V6. 0 1 There is a serious security...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2007/01/05 12:0 a.m.26 views

igcal10-sql.txt

SQL Injection in ig-Calendar. This works regardless of magicquotesgpc! Dumps mysql login informaion: http://127.0.0.1/ig-calendar/user.php?id=999%20union%20select%201,User,Password,Host,Filepriv,0%20from%20mysql.user ./user.php line 52: $query = 'SELECT FROM users WHERE id='.$id; Should have used...

7.4AI score
Exploits0
CVE
CVE
added 2003/12/11 5:0 a.m.42 views

CVE-2003-0980

CVE-2003-0980 is an XSS vulnerability in FreeScripts VisitorBook LE (visitorbook.pl). The issue permits remote attackers to inject arbitrary HTML or JavaScript via (1) the do parameter, (2) the user parameter from a host with a malicious reverse DNS name, and (3) quote marks or ampersands in othe...

4.3CVSS6AI score0.00938EPSS
Exploits0References2Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.9 views

CVE-2026-48760: HtmlSanitizer URL Parser Deny Gates Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass Visual-Spoofing Defense

More info at https://symfony.com/cve-2026-48760...

5.8AI score0.00025EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.8 views

CVE-2026-48760: HtmlSanitizer URL Parser Deny Gates Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass Visual-Spoofing Defense

More info at https://symfony.com/cve-2026-48760...

5.8AI score0.00025EPSS
Exploits0Affected Software1
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.6 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 1970/01/01 12:0 a.m.8 views

Security update 1970-01-01

...

5.3AI score
Exploits0
Rows per page
Query Builder