1051 matches found
CVE-Vulnerability-Information-Downloader - Downloads Information From NIST (CVSS), First.Org (EPSS), And CISA (Exploited Vulnerabilities) And Combines Them Into One List
Common Vulnerability Scoring System CVSS is a free and open industry standard for assessing the severity of computer system security vulnerabilities. Exploit Prediction Scoring System EPSS estimates the likelihood that a software vulnerability will be exploited in the wild. CISA publishes a list ...
SUSE CVE-2011-1597
OpenVAS Manager v2.0.3 allows plugin remote code execution...
SUSE CVE-2011-3351
openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this flaw to conduct symlink attacks to overwrite arbitrary files on the system...
SUSE CVE-2012-5520
The sendtosourcefire function in managesql.c in OpenVAS Manager 3.x before 3.0.4 allows remote attackers to execute arbitrary commands via the 1 IP address or 2 port number field in an OMP request...
SUSE CVE-2013-6765
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENTAUTHENTIC, as demonstrated by the ompxmlhandleendelemen...
SUSE CVE-2014-9220
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modifyschedule OMP command...
PT-2022-7007 · Mariadb +5 · Mariadb +6
Name of the Vulnerable Software and Affected Versions: MariaDB affected versions not specified Description: A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service. The issue is related to uncontrolled resourc...
Xerror - Fully Automated Pentesting Tool
Xerror is an automated penetration tool , which will helps security professionals and non professionals to automate their pentesting tasks. Xerror will perform all tests and, at the end generate two reports for executives and analysts. Xerror provides GUI easy to use menu driven options.Iinternal...
Killchain - A Unified Console To Perform The "Kill Chain" Stages Of Attacks
What is “Kill Chain”? From Wikipedia: The term kill chain was originally used as a military concept related to the structure of an attack; consisting of target identification, force dispatch to target, decision, order to attack the target, and finally the destruction of the target. Reconnaissance...
CVE-2011-1597
OpenVAS Manager v2.0.3 allows plugin remote code execution...
CVE-2011-1597
OpenVAS Manager v2.0.3 allows plugin remote code execution...
Remote code execution
OpenVAS Manager v2.0.3 allows plugin remote code execution...
CVE-2011-1597
OpenVAS Manager v2.0.3 allows plugin remote code execution...
CVE-2011-1597
CVE-2011-1597 affects OpenVAS Manager 2.0.3. The vulnerability is described as a plugin remote code execution flaw, exploitable over the network with low attack complexity and no user interaction required (per CVSS2/3 metrics). Impacted components are the OpenVAS plugin handling subsystem; root c...
CVE-2011-3351
openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this flaw to conduct symlink attacks to overwrite arbitrary files on the system...
CVE-2011-3351
openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this flaw to conduct symlink attacks to overwrite arbitrary files on the system...
Code injection
openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this flaw to conduct symlink attacks to overwrite arbitrary files on the system...
CVE-2011-3351
openvas-scanner before 2011-09-11 creates a temporary file insecurely when generating OVAL system characteristics document with the ovaldi integrated tool enabled. A local attacker could use this flaw to conduct symlink attacks to overwrite arbitrary files on the system...
CVE-2011-3351
CVE-2011-3351 affects OpenVAS Scanner. OpenVAS-Scanner before 2011-09-11 creates a temporary file insecurely while generating the OVAL system characteristics document using the ovaldi tool, enabling a local attacker to perform symlink attacks and overwrite arbitrary files. The linked OpenVAS entr...
VulnWhisperer - Create Actionable Data From Your Vulnerability Scans
Createactionable data from your vulnerability scans VulnWhisperer is a vulnerability management tool and report aggregator. VulnWhisperer will pull all the reports from the different Vulnerability scanners and create a file with a unique filename for each one, using that data later to sync with...