Lucene search
+L

1800 matches found

BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.7 views

The vulnerability of Google Chrome’s browser allows a malicious actor to replace the user interface.

Google Chrome browser contains a vulnerability in the ScrollView::paint function located in platform/scroll/ScrollView.cpp. This vulnerability allows malicious actors to remotely replace the user interface by expanding the scroll bar on the parent frame...

5CVSS7.5AI score0.01525EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2016/06/17 9:7 a.m.10 views

SUSE-SU-2016:1602-1 Security update for ntp

ntp was updated to version 4.2.8p8 to fix five security issues. These security issues were fixed: - CVE-2016-4953: Bad authentication demobilizes ephemeral associations bsc982065. - CVE-2016-4954: Processing spoofed server packets bsc982066. - CVE-2016-4955: Autokey association reset bsc982067. -...

7.5CVSS7AI score0.44936EPSS
Exploits1References14
NVD
NVD
added 2016/05/14 3:59 p.m.19 views

CVE-2016-2016

Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mishandles ACL inheritance for default:class: entries, default:other: entries, and default:user:...

5.5CVSS5.5AI score0.00457EPSS
Exploits0References2
OSV
OSV
added 2016/04/12 4:59 p.m.4 views

DEBIAN-CVE-2016-3172

SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...

8.8CVSS8.9AI score0.02827EPSS
Exploits1References1
OSV
OSV
added 2016/04/12 4:59 p.m.4 views

UBUNTU-CVE-2016-3172

SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...

8.8CVSS7.7AI score0.02827EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2016/04/12 4:0 p.m.62 views

CVE-2016-3172

SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...

8.8CVSS8.9AI score0.02827EPSS
Exploits1
OSV
OSV
added 2016/04/08 3:59 p.m.5 views

CVE-2016-3983

McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...

7.5CVSS5.8AI score0.00606EPSS
Exploits0References1
Prion
Prion
added 2016/04/08 3:59 p.m.14 views

Authentication flaw

McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...

5CVSS7.1AI score0.00606EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/04/08 3:0 p.m.26 views

CVE-2016-3983

McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...

7.5AI score0.00606EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/02/25 12:0 a.m.36 views

Apache Tomcat Limited Directory Traversal Vulnerability (Feb 2016) - Linux

Apache Tomcat is prone to a limited directory traversal vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS7AI score0.12555EPSS
Exploits0References5
Exploit DB
Exploit DB
added 2016/01/02 12:0 a.m.26 views

TCP Bindshell with Password Prompt - 162 bytes

TCP Bindshell with Password Prompt - 162 bytes. Shellcode exploit for linux platform /--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/01/02 12:0 a.m.34 views

x86_64 Linux bind TCP port shellcode

x8664 Linux bind TCP port shellcode. Shellcode exploit for linx86-64 platform /--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Dat...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2015/12/28 12:0 a.m.34 views

webkit -- UI spoof

webkit reports: The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame...

5CVSS6.2AI score0.01525EPSS
Exploits0References1
myhack58
myhack58
added 2015/12/26 12:0 a.m.15 views

Joomla 3.4.3 version SQL injection vulnerability analysis-vulnerability warning-the black bar safety net

0x00 vulnerability analysis Vulnerability trigger code is located at:/administrator/components/comcontenthistory/models/history.php, the getListQueryfunction: ! 4cf1a8d2985c5601fbdeb7a9e4a09234077751bf Through the SQL and the error message, you can know that our injected payload is inserted into...

1.3AI score
Exploits0
exploitpack
exploitpack
added 2015/12/18 12:0 a.m.10 views

Adobe Flash TextField.tabIndex Setter - Use-After-Free

Adobe Flash TextField.tabIndex Setter - Use-After-Free Source: https://code.google.com/p/google-security-research/issues/detail?id=574 There is a use-after-free in the TextField.tabIndex setter. If the integer parameter is an object with valueOf defined, then it can free the TextField's parent,...

Exploits0
exploitpack
exploitpack
added 2015/12/18 12:0 a.m.13 views

Adobe Flash TextField.replaceText - Use-After-Free

Adobe Flash TextField.replaceText - Use-After-Free Source: https://code.google.com/p/google-security-research/issues/detail?id=584 There is a use-after-free in the TextField.replaceText function. If the function is called with a string parameter with toString defined, or an integer parameter with...

0.2AI score
Exploits0
0day.today
0day.today
added 2015/12/18 12:0 a.m.63 views

Adobe Flash TextField.replaceSel - Use-After-Free

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=585 There is a use-after-free in TextField.replaceSel. If the string parameter of the method is set to an object with toString defined, this method can delete the...

10CVSS0.3AI score0.43408EPSS
Exploits1
0day.today
0day.today
added 2015/12/18 12:0 a.m.48 views

Adobe Flash TextField.tabIndex Setter - Use-After-Free

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=574 There is a use-after-free in the TextField.tabIndex setter. If the integer parameter is an object with valueOf defined, then it can free the TextField's parent, leadi...

10CVSS0.1AI score0.43408EPSS
Exploits1
Exploit DB
Exploit DB
added 2015/12/18 12:0 a.m.20 views

Adobe Flash TextField.replaceText - Use-After-Free

Source: https://code.google.com/p/google-security-research/issues/detail?id=584 There is a use-after-free in the TextField.replaceText function. If the function is called with a string parameter with toString defined, or an integer parameter with valueOf defined, the parent object of the TextFiel...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/12/18 12:0 a.m.26 views

Adobe Flash TextField.replaceSel - Use-After-Free

Source: https://code.google.com/p/google-security-research/issues/detail?id=585 There is a use-after-free in TextField.replaceSel. If the string parameter of the method is set to an object with toString defined, this method can delete the TextField's parent, leading to a use-after-free. A minimal...

7.4AI score
Exploits0
Rows per page
Query Builder