Lucene search
+L

255 matches found

BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.8 views

The vulnerability of the ezxml_ent_ok function in the XML document syntax analysis library ezXML allows a attacker to cause a service failure.

The vulnerability of the ezxmlentok function in the XML document syntax analysis library ezXML is related to an uncontrolled recursion. Exploiting this vulnerability allows a malicious actor to cause service failures through a specially created XML file...

7.8CVSS6.5AI score0.01085EPSS
Exploits1References8Affected Software5
Amazon
Amazon
added 2023/03/22 12:0 a.m.24 views

Medium: rust

Issue Overview: Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To reco rd when an extraction is successful, Cargo writes "ok" to the...

8.1CVSS8.2AI score0.01041EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.4 views

SUSE CVE-2019-20919

An issue was discovered in the DBI module before 1.643 for Perl. The hvfetch documentation requires checking for NULL and the code does that. But, shortly thereafter, it calls SvOKprofile, causing a NULL pointer dereference...

7.5CVSS7.2AI score0.00505EPSS
Exploits0References9
Openbugbounty
Openbugbounty
added 2022/11/11 11:33 a.m.9 views

ok-bergbahnen.com Cross Site Scripting vulnerability OBB-3049245

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2022/10/25 7:0 a.m.4 views

GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der.

...

9.1CVSS7.5AI score0.02062EPSS
Exploits1
OSV
OSV
added 2022/09/14 6:15 p.m.3 views

DEBIAN-CVE-2022-36113

Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...

8.1CVSS8.8AI score0.01041EPSS
Exploits0References1
OSV
OSV
added 2022/09/14 6:15 p.m.6 views

UBUNTU-CVE-2022-36113

Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...

8.1CVSS6.5AI score0.01041EPSS
Exploits0References4
OSV
OSV
added 2022/09/14 12:0 a.m.27 views

CVE-2022-36113 Extracting malicious crates can corrupt arbitrary files

Cargo is a package manager for the rust programming language. After a package is downloaded, Cargo extracts its source code in the /.cargo folder on disk, making it available to the Rust projects it builds. To record when an extraction is successful, Cargo writes "ok" to the .cargo-ok file at the...

4.6CVSS8.6AI score0.01041EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/08/25 10:15 p.m.8 views

CVE-2022-36719

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php...

9.8CVSS7.4AI score0.00873EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/08/25 9:55 p.m.21 views

CVE-2022-36719

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the ok parameter at /admin/history.php...

10AI score0.00873EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/08/25 12:0 a.m.7 views

PT-2022-23580 · Unknown · Library Management System

Name of the Vulnerable Software and Affected Versions: Library Management System version 1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the ok parameter at the "/admin/history.php" API endpoint. Recommendations: For Library Manageme...

9.8CVSS9.6AI score0.00873EPSS
Exploits1References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/07/25 11:10 a.m.3 views

Malicious code in nishant-ok-angularjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2e140476dbeb0aeb5aca6d3d4448c7ddfd3e9828d6be965517c8619e6563e9b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2022/06/23 9:26 a.m.3 views

Malicious Package

Overview nishant-ok-angularjs is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:23 p.m.5 views

Malicious code in deneuve-package-ok (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c04436786a198745e54118ae2037fa2d77222f85d62ff9bda812919ce324450 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:23 p.m.6 views

MAL-2022-2418 Malicious code in deneuve-package-ok (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9c04436786a198745e54118ae2037fa2d77222f85d62ff9bda812919ce324450 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:20 p.m.2 views

Malicious code in ok-messenger-emoji (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04de26831924657f1e3bb1783bac5174d96a3e54b4a2297537f17aa065439f66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:20 p.m.6 views

Malicious code in ok-message-parser (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a80a6a3a1ffdd474bf80a592d152a61ed541b41acd3be180d2c1bd91be1fb7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:20 p.m.8 views

MAL-2022-5047 Malicious code in ok-messenger-emoji (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 04de26831924657f1e3bb1783bac5174d96a3e54b4a2297537f17aa065439f66 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:20 p.m.7 views

Malicious code in ok-messenger-model (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bcdfc9b070b703c4308d68ecabf68a9973d878d832021df11f5fd788327178 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:20 p.m.8 views

MAL-2022-5048 Malicious code in ok-messenger-model (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bcdfc9b070b703c4308d68ecabf68a9973d878d832021df11f5fd788327178 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder