Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7491 matches found

Prion
Prionadded 2014/01/15 4:11 p.m.16 views

Design/Logic Flaw

Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote attackers to affect integrity via unknown vectors related to Common Application Objects...

4.3CVSS6.3AI score0.00524EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2014/01/15 12:30 a.m.16 views

CVE-2013-5886

Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote attackers to affect integrity via unknown vectors related to Common Application Objects...

5.8AI score0.00524EPSS
Exploits0References6
CVE
CVEadded 2014/01/15 12:30 a.m.48 views

CVE-2013-5886

CVE-2013-5886 describes an unspecified vulnerability in the PeopleSoft Enterprise HRMS component of Oracle PeopleSoft Products 9.1 and 9.2 . The issue could allow remote attackers to affect integrity via unknown vectors related to Common Application Objects . The provided records show no concrete...

4.3CVSS6AI score0.00524EPSS
Exploits0References6Affected Software1
OpenVAS
OpenVASadded 2014/01/15 12:0 a.m.35 views

Microsoft Windows Kernel-Mode Drivers Privilege Escalation Vulnerability (2913602)

This host is missing an important security update according to Microsoft Bulletin MS14-003 OpenVAS Vulnerability Test $Id: secpodms14-003.nasl 34348 2014-01-15 08:49:46Z jan$ Microsoft Windows Kernel-Mode Drivers Privilege Escalation Vulnerability 2913602 Authors: Antu Sanadi Copyright: Copyright...

7.2CVSS0.6AI score0.01591EPSS
Exploits0References2
Symantec
Symantecadded 2014/01/14 12:0 a.m.29 views

Microsoft Office Word File Processing CVE-2014-0258 Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...

9.3CVSS0.8AI score0.33405EPSS
Exploits1Affected Software2
Tenable Nessus
Tenable Nessusadded 2014/01/13 12:0 a.m.56 views

PHP 5.5.x < 5.5.8 Multiple Vulnerabilities

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.8. It is, therefore, potentially affected by the following vulnerabilities : - A heap-based buffer overflow error exists in the file 'ext/date/lib/parseisointervals.c' related to handling...

5CVSS8.2AI score0.17303EPSS
Exploits0References2
Check Point Advisories
Check Point Advisoriesadded 2014/01/07 12:0 a.m.2 views

Microsoft Internet Explorer mergeAttribues Property Handling Memory Corruption - Ver2 (CVE-2007-0945)

Microsoft Internet Explorer is the most widely used Internet browser. Multiple remote code execution vulnerabilities have been reported in Microsoft Internet Explorer. The vulnerabilities are due to several memory corruption errors in Microsoft Internet Explorer when instantiating the vulnerable...

9.3CVSS7.8AI score0.59488EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2013/12/23 11:55 p.m.27 views

CVE-2013-7075

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an...

6.5CVSS6AI score0.00408EPSS
Exploits0References2
Prion
Prionadded 2013/12/23 11:55 p.m.20 views

Authorization

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an...

6.5CVSS7AI score0.00408EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2013/12/23 11:55 p.m.0 views

UBUNTU-CVE-2013-7075

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an...

6.5CVSS6AI score0.00408EPSS
Exploits0References3
Cvelist
Cvelistadded 2013/12/23 11:0 p.m.20 views

CVE-2013-7075

The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbitrary PHP objects, delete arbitrary files, and possibly have other unspecified impacts via an...

6.4AI score0.00408EPSS
Exploits0References3
OSV
OSVadded 2013/12/19 9:8 p.m.18 views

MGASA-2013-0379 Updated php packages fix multiple security vulnerabilities

Updated php packages fix security vulnerabilities: Stefan Esser discovered that PHP incorrectly parsed certificates. An attacker could use a malformed certificate to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code CVE-2013-6420. It was discovered that PHP...

7.5CVSS10AI score0.40224EPSS
Exploits8References4
Zero Day Initiative
Zero Day Initiativeadded 2013/12/15 12:0 a.m.24 views

Microsoft Internet Explorer CMarkup::Insert Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.9AI score0.22762EPSS
Exploits0References1
Ubuntu
Ubuntuadded 2013/12/12 4:19 p.m.106 views

USN-2055-1: PHP vulnerabilities

Stefan Esser discovered that PHP incorrectly parsed certificates. An attacker could use a malformed certificate to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2013-6420 It was discovered that PHP incorrectly handled DateInterval objects. An attack...

7.5CVSS7.6AI score0.40224EPSS
Exploits8
RedHat Linux
RedHat Linuxadded 2013/12/11 5:22 p.m.3 views

Mozilla: Sandbox restrictions not applied to nested object elements (MFSA 2013-107)

Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly consider the sandbox attribute of an IFRAME element during processing of a contained OBJECT element, which allows remote attackers to bypass intended sandbox restrictions via a crafted web site...

4.3CVSS6.9AI score0.00279EPSS
Exploits0References5
EUVD
EUVDadded 2013/11/28 2:0 a.m.1 views

EUVD-2013-6514

The scan function in ext/date/lib/parseisointervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service heap-based buffer over-read via a crafted interval specification...

5CVSS7.2AI score0.17303EPSS
Exploits0References17
OpenVAS
OpenVASadded 2013/11/26 12:0 a.m.35 views

Fedora Update for python3 FEDORA-2013-21418

Check for the Version of python3 OpenVAS Vulnerability Test Fedora Update for python3 FEDORA-2013-21418 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.3CVSS8AI score0.01382EPSS
Exploits1References2
NVD
NVDadded 2013/11/13 3:55 p.m.10 views

CVE-2013-6625

Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require chil...

6.8CVSS7AI score0.01509EPSS
Exploits0References13
Prion
Prionadded 2013/11/13 3:55 p.m.20 views

Design/Logic Flaw

Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require chil...

6.8CVSS7.6AI score0.01509EPSS
Exploits0References13Affected Software1
Cvelist
Cvelistadded 2013/11/13 3:0 p.m.19 views

CVE-2013-6625

Use-after-free vulnerability in core/dom/ContainerNode.cpp in Blink, as used in Google Chrome before 31.0.1650.48, allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging improper handling of DOM range objects in circumstances that require chil...

6.9AI score0.01509EPSS
Exploits0References13
Rows per page
Query Builder