Lucene search
+L

216 matches found

NVD
NVD
added 2017/05/25 5:29 p.m.23 views

CVE-2016-5007

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

7.5CVSS7.6AI score0.02837EPSS
Exploits0References4
Prion
Prion
added 2017/05/25 5:29 p.m.25 views

Authorization

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

5CVSS6.9AI score0.02837EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2017/05/25 5:29 p.m.5 views

UBUNTU-CVE-2016-5007

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

7.5CVSS7.1AI score0.02837EPSS
Exploits0References3
OSV
OSV
added 2017/05/25 5:29 p.m.5 views

DEBIAN-CVE-2016-5007

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

7.5CVSS7.6AI score0.02837EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/25 5:0 p.m.31 views

CVE-2016-5007

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

7.6AI score0.02837EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2017/05/25 5:0 p.m.50 views

CVE-2016-5007

Both Spring Security 3.2.x, 4.0.x, 4.1.0 and the Spring Framework 3.2.x, 4.0.x, 4.1.x, 4.2.x rely on URL pattern mappings for authorization and for mapping requests to controllers respectively. Differences in the strictness of the pattern matching mechanisms, for example with regards to space...

7.5CVSS7.6AI score0.02837EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/05/11 1:7 p.m.5 views

pcre: workspace overflow for (*ACCEPT) with deeply nested parentheses (8.39/13, 10.22/12)

The compilebranch function in pcrecompile.c in PCRE 8.x before 8.39 and pcre2compile.c in PCRE2 before 10.22 mishandles patterns containing an ACCEPT substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service stack-based...

9.8CVSS7.7AI score0.0843EPSS
Exploits1References4
Kitploit
Kitploit
added 2015/10/28 7:53 p.m.26 views

LMD - Linux Malware Detect

Linux Malware Detect LMD is a malware scanner for Linux released under the GNU GPLv2 license, that is designed around the threats faced in shared hosted environments. It uses threat data from network edge intrusion detection systems to extract malware that is actively being used in attacks and...

7AI score
Exploits0References1
Fedora
Fedora
added 2015/02/15 3:2 a.m.36 views

[SECURITY] Fedora 21 Update: mutt-1.5.23-7.fc21

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

5CVSS1AI score0.09694EPSS
Exploits1
Fedora
Fedora
added 2015/02/15 2:57 a.m.40 views

[SECURITY] Fedora 20 Update: mutt-1.5.23-4.fc20

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

5CVSS1AI score0.09694EPSS
Exploits1
n0where
n0where
added 2014/12/12 10:47 a.m.47 views

Next Generation Snort IPS: Snort3

The Snort++ project has been hard at work for a while now and we have released the third alpha of the next generation Snort IPS Intrusion Prevention System. This file will show you what Snort++ has to offer and guide you through the steps from download to demo. If you are unfamiliar with Snort yo...

6.9AI score
Exploits0References3
Fedora
Fedora
added 2014/05/06 9:33 p.m.34 views

[SECURITY] Fedora 20 Update: mutt-1.5.23-1.fc20

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

5CVSS1AI score0.05155EPSS
Exploits1
seebug.org
seebug.org
added 2014/02/24 12:0 a.m.19 views

ThinkSAAS SQL注入漏洞打包6-10

简要描述: 详细说明: 上个注入大礼包,终于走了一个大厂商! 看来还是打包来的划算,最后一个注入大礼包了。 这个漏洞完了,回给出修复方案,求给力! 第一处SQL注入 /app/group/action/add.php // 执行发布帖子 case "do" : if $POST 'token' != $SESSION 'token' tsNotice '非法操作!' ; $authcode = strtolower $POST 'authcode' ; if $TSSITE 'base' 'isauthcode' if $authcode != $SESSION 'verify'...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2013/11/20 12:56 p.m.10 views

[ipset_list] ipset set listing wrapper script

Features: Calculate sum of set members and match on that count. List only members of a specified set. Choose a delimiter character for separating members. Show only sets containing a specific glob matching header. Arithmetic comparison on headers with an integer value. Match members using a...

7.3AI score
Exploits0References1
n0where
n0where
added 2013/11/15 7:10 p.m.596 views

nMap Vulnerability Scanner: Vulscan

Vulscan is a module which enhances nmap to a vulnerability scanner. The nmap option -sV enables version detection per service which is used to determine potential flaws according to the identified product. The data is looked up in an offline version scip VulDB. Version 2.0 of Nmap NSE Vulscan is...

0.5AI score
Exploits0
Kitploit
Kitploit
added 2013/09/20 11:39 p.m.20 views

[Arachni v0.4.5.1-0.4.2] Open Source Web Application Security Scanner Framework

Arachni is a Free/Open Source project, the code is released under the Apache License Version 2.0 and you are free to use it as you see fit. Initially started as an educational exercise, it has since evolved into a powerful and modular framework allowing for fast, accurate and flexible...

9AI score
Exploits0
Fedora
Fedora
added 2013/04/27 3:5 a.m.30 views

[SECURITY] Fedora 19 Update: haproxy-1.4.23-2.fc19

HA-Proxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests depending on statically assigned cookies - spread the load among several servers while assuring server persistence through the use of HTTP cookies - switch t...

5.1CVSS0.7AI score0.05464EPSS
Exploits0
Fedora
Fedora
added 2012/10/23 1:56 a.m.35 views

[SECURITY] Fedora 17 Update: haproxy-1.4.22-1.fc17

HA-Proxy is a TCP/HTTP reverse proxy which is particularly suited for high availability environments. Indeed, it can: - route HTTP requests depending on statically assigned cookies - spread the load among several servers while assuring server persistence through the use of HTTP cookies - switch t...

5.1CVSS0.7AI score0.05413EPSS
Exploits0
Prion
Prion
added 2012/10/22 11:55 p.m.18 views

Directory traversal

Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. dot dot in a repository name...

4.6CVSS6.8AI score0.02069EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2011/07/12 12:0 a.m.27 views

Fedora Update for mutt FEDORA-2011-7739

Check for the Version of mutt OpenVAS Vulnerability Test Fedora Update for mutt FEDORA-2011-7739 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

5.8CVSS6.4AI score0.01475EPSS
Exploits0References2
Rows per page
Query Builder