148 matches found
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
Open redirect
Rejected reason: This candidate is unused by its CNA...
DRUPAL-CONTRIB-2023-011
The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read:...
SUSE CVE-2008-4456
Cross-site scripting XSS vulnerability in the command-line client in MySQL 5.0.26 through 5.0.45, and other versions including versions later than 5.0.45, when the --html option is enabled, allows attackers to inject arbitrary web script or HTML by placing it in a database cell, which might be...
CVE-2022-34006
An issue was discovered in TitanFTP aka Titan FTP NextGen before 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...
CVE-2022-34006
An issue was discovered in TitanFTP aka Titan FTP NextGen before 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...
OS Command Injection in git-promise
All versions of package git-promise is vulnerable to Command Injection due to an inappropriate fix of a prior vulnerability in this package. Note: Please note that the vulnerability will not be fixed. The README file was updated with a warning regarding this issue. Credits @lirantal for discoveri...
PT-2021-7906 · Aom +4 · Aom +4
Name of the Vulnerable Software and Affected Versions: AOM version 2.0.1 Description: The issue is related to a NULL pointer dereference in the av1/av1 dx iface.c component of the AOM library, which implements the AV1 codec. This could allow a remote attacker to cause a denial of service. The...
Open redirect
Rejected reason: Unused CVE for 2020...
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet.
...
CVE-2019-1010180
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...
Zurmo 3.2.6 Open Redirection
Open Redirection Vulnerability in Zurmo 3.2.6 Information -------------------- Advisory by Netsparker Name: Open Redirection Vulnerability in Zurmo Affected Software: Zurmo Affected Versions: 3.2.6 Homepage: http://zurmo.org Vulnerability: Open Redirection Severity: Medium Status: Not Fixed...
CVE-2019-1010180
GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet...