CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-0184

Malware in sbrugna...

7.8CVSS7.7AI score0.00076EPSS

Exploits0References7

Kitploit•added 2019/02/15 12:39 p.m.•694 views

SSRFmap - Automatic SSRF Fuzzer And Exploitation Tool

SSRF are often used to leverage actions on other services, this framework aims to find and exploit these services easily. SSRFmap takes a Burp request file as input and a parameter to fuzz. Server Side Request Forgery or SSRF is a vulnerability in which an attacker forces a server to perform...

7.7AI score

Exploits0References3

Github Security Blog•added 2018/03/05 7:32 p.m.•22 views

brbackup exposes database password to unauthorized users

lib/brbackup.rb in the brbackup gem 0.1.1 for Ruby places the database password on the mysql command line, which allows local users to obtain sensitive information by listing the process...

7.8CVSS7AI score0.00076EPSS

Exploits0References7Affected Software1

OSV•added 2018/03/05 7:32 p.m.•7 views

GHSA-VQCM-7F7F-R539 brbackup exposes database password to unauthorized users

lib/brbackup.rb in the brbackup gem 0.1.1 for Ruby places the database password on the mysql command line, which allows local users to obtain sensitive information by listing the process...

7.8CVSS7.5AI score0.00076EPSS

Exploits0References6

NVD•added 2018/01/10 6:29 p.m.•8 views

CVE-2014-5004

lib/brbackup.rb in the brbackup gem 0.1.1 for Ruby places the database password on the mysql command line, which allows local users to obtain sensitive information by listing the process...

7.8CVSS7.5AI score0.00076EPSS

Exploits0References4

Prion•added 2018/01/10 6:29 p.m.•10 views

Command injection

lib/brbackup.rb in the brbackup gem 0.1.1 for Ruby places the database password on the mysql command line, which allows local users to obtain sensitive information by listing the process...

2.1CVSS6.6AI score0.00076EPSS

Exploits0References4Affected Software1

CVE•added 2018/01/10 6:0 p.m.•36 views

CVE-2014-5004

The CVE-2014-5004 issue affects the brbackup Ruby gem (version 0.1.1) where lib/brbackup.rb places the database password on the mysql command line. This exposes the password to local users who can list the process, enabling plaintext disclosure of credentials and partial confidentiality impact. E...

7.8CVSS7.4AI score0.00076EPSS

Exploits0References4Affected Software1

myhack58•added 2011/05/31 12:0 a.m.•8 views

AlegroCart <= 1.2. x (category_next) blind defect and repair-vulnerability warning-the black bar safety net

Title : AlegroCart = 1.2. x categorynext Blind SQL Injection Vulnerability Author : KedAns-Dz E-mail : [email protected] [email protected] | [email protected] Home : HMD/AM 30008/04300 - Algeria -0 0 2 1 3 5 5 5 2 4 8 7 0 1 Web Site : www.1337day.com www.exploit-id.com www.09exploit.com Twitte...

0.1AI score

Exploits0

RedHat Linux•added 2009/09/23 9:38 p.m.•1 views

mysql: mysql command line client XSS flaw

Cross-site scripting XSS vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be...

2.6CVSS5.7AI score0.06318EPSS

Exploits2References4